ABSTRACT

Digital societies and markets increasingly mandate consistent procedures for the access, processing and storage of information. In the United States alone, over 10,000 such regulations can be found in financial, life sciences, health care and government sectors, including the Gramm-Leach-Bliley Act, the Health Insurance Portability and Accountability Act, the Sarbanes-Oxley Act, etc. A recurrent theme in these regulations is the need for regulatory compliant storage as an underpinning to ensure data confidentiality, access integrity and authentication; provide audit trails, guaranteed deletion, and data migration.

However, without the availability of practical, technology-backed enforcement solutions full regulatory compliance cannot be realized.

In this work we posit that the seemingly contradictory requirements of security, efficiency and low cost can in fact be reconciled gracefully via intelligent deployment of cryptographic and system security constructs.

To this end we design and prototype a number of fully functional relational database and file systems, addressing data privacy, query authentication and data retention, while offering increased functionality, higher efficiency and lower costs.

BIO

Radu is an Associate Professor of Computer Science at Stony Brook University (on leave) and currently the CEO of Private Machines Inc. He remembers when gophers were digging through the Internets and bits were running at slower paces of 512 per second. He is also interested in efficient computing with a touch of cyber-security paranoia, raising rabbits on space ships and sailing catamarans of the Hobie variety.