Design for Side-channel Deployment of a Database Encryption System Based on Kyber

Design for Side-channel Deployment of a Database Encryption System Based on Kyber

연구 분야: Databases

학회: 2024 4th International Conference on Electronic Information Engineering and Computer Communication (EIECC)

In the process of promoting China’s big data strategy and the development of the data element market, privacy databases play a crucial role in building a system for data openness, sharing, and governance. However, existing encryption algorithms still face the dual challenges of quantum security threats and the balance between efficiency and security. This paper proposes an innovative privacy database architecture that achieves efficient and secure field-level data encryption by deploying a proxy gateway between the database server and the network switch. The proxy gateway can intercept SQL requests issued by users, identify the type of SQL statements in the data packet, and determine whether the SQL statement involves tables or fields with encryption configurations, then reconstruct the SQL statement and send it to the privacy database server. The paper further introduces the Kyber post-quantum encryption algorithm based on lattices, an advanced quantum-resistant cryptographic technology that significantly enhances the security of key management. Combined with the B+ Tree retrieval structure, we have designed a new key generation, encryption, decryption, and retrieval scheme (KB+ERS) that effectively addresses the risks of quantum computing and optimizes the performance of encryption and decryption operations, ensuring the secure storage of sensitive data in ciphertext. This solution is compatible with mainstream database systems such as MYSQL, ORACLE, SQLSERVER, not only enhancing the security of databases but also maintaining the efficiency and scalability of the system. In particular, the strategy proposed in this paper has broad applicability and is highly suitable for industrial fields with extremely high security requirements.