Privacy-preserving Content Delivery Networks

Shujie Cui; Muhammad Rizwan Asghar; Giovanni Russello

doi:10.1109/LCN.2017.27

Privacy-preserving Content Delivery Networks

Shujie Cui, Muhammad Rizwan Asghar, Giovanni Russello

Research output: Chapter in Book/Report/Conference proceeding › Conference Paper › Research

2 Citations (Scopus)

Abstract

A Content Delivery Network (CDN) is a distributed system composed of a large number of nodes that allows users to request objects from nearby nodes. CDN not only reduces the end-to-end latency on the user side but also offloads Content Providers (CPs) providing resilience against Distributed Denial of Service (DDoS) attacks. However, by caching objects and processing users' requests, CDN service providers could infer user preferences and the popularity of objects, thus resulting in information leakage. Unfortunately, such information leakage may result in compromising users' privacy and reveal business-specific information to untrusted or potentially malicious CDN providers. State-of-the-art Searchable Encryption (SE) schemescan protect the content of sensitive objects but cannot preventthe CDN providers from inferring users' preferences and thepopularity of objects. In this work, we present a privacy-preserving encrypted CDN system not only to hide the content of objects and users' requests, but also to protect users' preferences and the popularity of objects from curious CDN providers. We encrypt the objects and user requests in a way that both the CDNs and CPs can perform the search operations without accessing those objects and requests in cleartext. Our proposed system is based on a scalable key management approach for multi-user access, where no key regeneration and data re-encryption are needed for user revocation.

Original language	English
Title of host publication	Proceedings - 2017 IEEE 42nd Conference on Local Computer Networks, LCN 2017
Editors	Kemal Akkaya, Soumaya Cherkaoui
Place of Publication	Piscataway NJ USA
Publisher	IEEE, Institute of Electrical and Electronics Engineers
Pages	607-610
Number of pages	4
ISBN (Electronic)	9781509065226, 9781509065240
ISBN (Print)	9781509065233
DOIs	https://doi.org/10.1109/LCN.2017.27
Publication status	Published - 2017
Externally published	Yes
Event	IEEE Conference on Local Computer Networks 2017 - Singapore, Singapore Duration: 9 Oct 2017 → 12 Oct 2017 Conference number: 42nd https://ieeexplore.ieee.org/xpl/conhome/8108703/proceeding (Proceedings) https://www.ieeelcn.org/prior/LCN42/index.html (Website)

Conference

Conference	IEEE Conference on Local Computer Networks 2017
Abbreviated title	LCN 2017
Country	Singapore
City	Singapore
Period	9/10/17 → 12/10/17
Internet address	https://ieeexplore.ieee.org/xpl/conhome/8108703/proceeding (Proceedings) https://www.ieeelcn.org/prior/LCN42/index.html (Website)

Keywords

CDN
object popularity
Searchable encryption
User preference

Access to Document

10.1109/LCN.2017.27

Link to publication in Scopus

Cite this

@inproceedings{99a82498503b442482290f796bfa0496,

title = "Privacy-preserving Content Delivery Networks",

abstract = "A Content Delivery Network (CDN) is a distributed system composed of a large number of nodes that allows users to request objects from nearby nodes. CDN not only reduces the end-to-end latency on the user side but also offloads Content Providers (CPs) providing resilience against Distributed Denial of Service (DDoS) attacks. However, by caching objects and processing users' requests, CDN service providers could infer user preferences and the popularity of objects, thus resulting in information leakage. Unfortunately, such information leakage may result in compromising users' privacy and reveal business-specific information to untrusted or potentially malicious CDN providers. State-of-the-art Searchable Encryption (SE) schemescan protect the content of sensitive objects but cannot preventthe CDN providers from inferring users' preferences and thepopularity of objects. In this work, we present a privacy-preserving encrypted CDN system not only to hide the content of objects and users' requests, but also to protect users' preferences and the popularity of objects from curious CDN providers. We encrypt the objects and user requests in a way that both the CDNs and CPs can perform the search operations without accessing those objects and requests in cleartext. Our proposed system is based on a scalable key management approach for multi-user access, where no key regeneration and data re-encryption are needed for user revocation.",

keywords = "CDN, object popularity, Searchable encryption, User preference",

author = "Shujie Cui and Asghar, {Muhammad Rizwan} and Giovanni Russello",

year = "2017",

doi = "10.1109/LCN.2017.27",

language = "English",

isbn = "9781509065233",

pages = "607--610",

editor = "Akkaya, {Kemal } and Cherkaoui, {Soumaya }",

booktitle = "Proceedings - 2017 IEEE 42nd Conference on Local Computer Networks, LCN 2017",

publisher = "IEEE, Institute of Electrical and Electronics Engineers",

address = "United States of America",

note = "IEEE Conference on Local Computer Networks 2017, LCN 2017 ; Conference date: 09-10-2017 Through 12-10-2017",

url = "https://ieeexplore.ieee.org/xpl/conhome/8108703/proceeding, https://www.ieeelcn.org/prior/LCN42/index.html",

}

Cui, S, Asghar, MR & Russello, G 2017, Privacy-preserving Content Delivery Networks. in K Akkaya & S Cherkaoui (eds), Proceedings - 2017 IEEE 42nd Conference on Local Computer Networks, LCN 2017. IEEE, Institute of Electrical and Electronics Engineers, Piscataway NJ USA, pp. 607-610, IEEE Conference on Local Computer Networks 2017, Singapore, Singapore, 9/10/17. https://doi.org/10.1109/LCN.2017.27

Privacy-preserving Content Delivery Networks. / Cui, Shujie; Asghar, Muhammad Rizwan; Russello, Giovanni.

Proceedings - 2017 IEEE 42nd Conference on Local Computer Networks, LCN 2017. ed. / Kemal Akkaya; Soumaya Cherkaoui. Piscataway NJ USA : IEEE, Institute of Electrical and Electronics Engineers, 2017. p. 607-610.

Research output: Chapter in Book/Report/Conference proceeding › Conference Paper › Research

TY - GEN

T1 - Privacy-preserving Content Delivery Networks

AU - Cui, Shujie

AU - Asghar, Muhammad Rizwan

AU - Russello, Giovanni

N1 - Conference code: 42nd

PY - 2017

Y1 - 2017

N2 - A Content Delivery Network (CDN) is a distributed system composed of a large number of nodes that allows users to request objects from nearby nodes. CDN not only reduces the end-to-end latency on the user side but also offloads Content Providers (CPs) providing resilience against Distributed Denial of Service (DDoS) attacks. However, by caching objects and processing users' requests, CDN service providers could infer user preferences and the popularity of objects, thus resulting in information leakage. Unfortunately, such information leakage may result in compromising users' privacy and reveal business-specific information to untrusted or potentially malicious CDN providers. State-of-the-art Searchable Encryption (SE) schemescan protect the content of sensitive objects but cannot preventthe CDN providers from inferring users' preferences and thepopularity of objects. In this work, we present a privacy-preserving encrypted CDN system not only to hide the content of objects and users' requests, but also to protect users' preferences and the popularity of objects from curious CDN providers. We encrypt the objects and user requests in a way that both the CDNs and CPs can perform the search operations without accessing those objects and requests in cleartext. Our proposed system is based on a scalable key management approach for multi-user access, where no key regeneration and data re-encryption are needed for user revocation.

AB - A Content Delivery Network (CDN) is a distributed system composed of a large number of nodes that allows users to request objects from nearby nodes. CDN not only reduces the end-to-end latency on the user side but also offloads Content Providers (CPs) providing resilience against Distributed Denial of Service (DDoS) attacks. However, by caching objects and processing users' requests, CDN service providers could infer user preferences and the popularity of objects, thus resulting in information leakage. Unfortunately, such information leakage may result in compromising users' privacy and reveal business-specific information to untrusted or potentially malicious CDN providers. State-of-the-art Searchable Encryption (SE) schemescan protect the content of sensitive objects but cannot preventthe CDN providers from inferring users' preferences and thepopularity of objects. In this work, we present a privacy-preserving encrypted CDN system not only to hide the content of objects and users' requests, but also to protect users' preferences and the popularity of objects from curious CDN providers. We encrypt the objects and user requests in a way that both the CDNs and CPs can perform the search operations without accessing those objects and requests in cleartext. Our proposed system is based on a scalable key management approach for multi-user access, where no key regeneration and data re-encryption are needed for user revocation.

KW - CDN

KW - object popularity

KW - Searchable encryption

KW - User preference

UR - http://www.scopus.com/inward/record.url?scp=85040635195&partnerID=8YFLogxK

U2 - 10.1109/LCN.2017.27

DO - 10.1109/LCN.2017.27

M3 - Conference Paper

AN - SCOPUS:85040635195

SN - 9781509065233

SP - 607

EP - 610

BT - Proceedings - 2017 IEEE 42nd Conference on Local Computer Networks, LCN 2017

A2 - Akkaya, Kemal

A2 - Cherkaoui, Soumaya

PB - IEEE, Institute of Electrical and Electronics Engineers

CY - Piscataway NJ USA

T2 - IEEE Conference on Local Computer Networks 2017

Y2 - 9 October 2017 through 12 October 2017

ER -