Selective sharing

ESCUDO-CLOUD introduces solutions for selective sharing between multiple participants. The techniques are based on two building blocks:

  • Secure Multiparty Computation (Garbled Circuit, Secret Sharing and Homomorphic encryption)
  • Order-Preserving encryption


Selective Sharing



As stated by above figure the selective sharing solutions are proven along an industrial use case for evaluation of maintenance efforts between Airlines and Maintenance providers through a cloud application. Here, ESCUDO-CLOUD selective sharing technologies serve to collaboratively execute encrypted SQL queries over the outsourced database.

The innovation delivered by ESCUDO-CLOUD lies especially in the novel oblivious OPE protocol. ESCUDO-CLOUD techniques empower multiple parties to jointly evaluate a decision tree in the cloud without revealing any individual information to each other. Furthermore, we developed techniques to combine RFID authentication with selective encryption to allow secure and efficient selective sharing in supply chain scenarios.

Related Publications

  • Florian Kerschbaum "Frequency-Hiding Order-Preserving Encryption" in Proc. of the 22nd ACM Conference on Computer and Communications Security (CCS 2015), Denver, Colorado, USA, October 12-16, 2015
  • Isabelle Hang, Florian Kerschbaum, Ernesto Damiani "ENKI: Access Control for Encrypted Query Processing" in Proc. of the 34th ACM International Conference on Management of Data (SIGMOD), Melbourne, Victoria, Australia, May 31- June 4, 2015
  • Anselme K. Tueno, Florian Kerschbaum, Daniel Bernau, Sara Foresti "Selective Access for Supply Chain Management in the Cloud" in Proc. of the 3rd Workshop on Security and Privacy in the Cloud (SPC 2017) Las Vegas, NV, USA, October 11, 2017
  • Fabian Taigel, Anselme K. Tueno, Richard Pibernik "Privacy-Preserving Condition-based Forecasting Using Machine Learning" in Journal of Business Economics, 2018