TY - JOUR
T1 - SecPQ
T2 - Secure Prediction Queries on Encrypted Outsourced Databases
AU - Liang, Jinwen
AU - Guo, Song
AU - Hong, Zicong
AU - Zhou, Enyuan
AU - Zhang, Chuan
AU - Xiao, Bin
N1 - Publisher Copyright:
© 2004-2012 IEEE.
PY - 2025
Y1 - 2025
N2 - Prediction queries have revolutionized data search by integrating machine learning models and traditional data processing operations for advanced analytics. However, existing prediction query frameworks for outsourced databases face a critical security vulnerability: data flows are processed in plaintext on semi-honest servers, making them susceptible to data breaches. The main challenge in achieving secure prediction queries is that machine learning inference and data processing operations are distinct functionalities, while most current cryptographic frameworks support only a single type of operation on specific encrypted data. To bridge this crucial gap, we propose SecPQ, the first framework tailored for secure prediction queries. Our approach unifies decision tree pipelines and data processing operations, such as selection, projection, and equality-joining, through equality matching on encrypted outsourced data. This enables the design of secure prediction queries with decision tree pipelines operating on encrypted data. We provide formal security definitions and proofs for SecPQ. To further optimize the efficiency of secure prediction queries, we leverage order-preserving encryption to construct SecPQope, which offers improved query efficiency at the expense of weaker security properties compared with SecPQ. Extensive experimental evaluations on billions of records demonstrate the feasibility and effectiveness of both SecPQ and SecPQope.
AB - Prediction queries have revolutionized data search by integrating machine learning models and traditional data processing operations for advanced analytics. However, existing prediction query frameworks for outsourced databases face a critical security vulnerability: data flows are processed in plaintext on semi-honest servers, making them susceptible to data breaches. The main challenge in achieving secure prediction queries is that machine learning inference and data processing operations are distinct functionalities, while most current cryptographic frameworks support only a single type of operation on specific encrypted data. To bridge this crucial gap, we propose SecPQ, the first framework tailored for secure prediction queries. Our approach unifies decision tree pipelines and data processing operations, such as selection, projection, and equality-joining, through equality matching on encrypted outsourced data. This enables the design of secure prediction queries with decision tree pipelines operating on encrypted data. We provide formal security definitions and proofs for SecPQ. To further optimize the efficiency of secure prediction queries, we leverage order-preserving encryption to construct SecPQope, which offers improved query efficiency at the expense of weaker security properties compared with SecPQ. Extensive experimental evaluations on billions of records demonstrate the feasibility and effectiveness of both SecPQ and SecPQope.
KW - Encrypted Databases
KW - Machine Learning Models
KW - Prediction Queries
KW - Searchable Encryption
UR - http://www.scopus.com/inward/record.url?scp=86000612759&partnerID=8YFLogxK
U2 - 10.1109/TDSC.2025.3549052
DO - 10.1109/TDSC.2025.3549052
M3 - Article
AN - SCOPUS:86000612759
SN - 1545-5971
JO - IEEE Transactions on Dependable and Secure Computing
JF - IEEE Transactions on Dependable and Secure Computing
ER -