{"id":"https://openalex.org/W4385187216","doi":"https://doi.org/10.1109/sp46215.2023.10179359","title":"DBREACH: Stealing from Databases Using Compression Side Channels","display_name":"DBREACH: Stealing from Databases Using Compression Side Channels","publication_year":2023,"publication_date":"2023-05-01","ids":{"openalex":"https://openalex.org/W4385187216","doi":"https://doi.org/10.1109/sp46215.2023.10179359"},"language":"en","primary_location":{"id":"doi:10.1109/sp46215.2023.10179359","is_oa":false,"landing_page_url":"https://doi.org/10.1109/sp46215.2023.10179359","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2023 IEEE Symposium on Security and Privacy (SP)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5109924202","display_name":"Mathew Hogan","orcid":null},"institutions":[{"id":"https://openalex.org/I97018004","display_name":"Stanford University","ror":"https://ror.org/00f54p054","country_code":"US","type":"education","lineage":["https://openalex.org/I97018004"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Mathew Hogan","raw_affiliation_strings":["Stanford University"],"affiliations":[{"raw_affiliation_string":"Stanford University","institution_ids":["https://openalex.org/I97018004"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5072451450","display_name":"Yan Michalevsky","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Yan Michalevsky","raw_affiliation_strings":["Anjuna Security, Inc. and Cryptosat, Inc"],"affiliations":[{"raw_affiliation_string":"Anjuna Security, Inc. and Cryptosat, Inc","institution_ids":[]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5063950675","display_name":"Saba Eskandarian","orcid":null},"institutions":[{"id":"https://openalex.org/I1333535994","display_name":"University of North Carolina Health Care","ror":"https://ror.org/00qz24g20","country_code":"US","type":"healthcare","lineage":["https://openalex.org/I1333535994"]},{"id":"https://openalex.org/I114027177","display_name":"University of North Carolina at Chapel Hill","ror":"https://ror.org/0130frc33","country_code":"US","type":"education","lineage":["https://openalex.org/I114027177"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Saba Eskandarian","raw_affiliation_strings":["UNC Chapel Hill"],"affiliations":[{"raw_affiliation_string":"UNC Chapel Hill","institution_ids":["https://openalex.org/I1333535994","https://openalex.org/I114027177"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5109924202"],"corresponding_institution_ids":["https://openalex.org/I97018004"],"apc_list":null,"apc_paid":null,"fwci":1.2226,"has_fulltext":false,"cited_by_count":6,"citation_normalized_percentile":{"value":0.79505477,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":94,"max":98},"biblio":{"volume":null,"issue":null,"first_page":"182","last_page":"198"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9991000294685364,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9991000294685364,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9984999895095825,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10951","display_name":"Cryptographic Implementations and Security","score":0.9983000159263611,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.828131914138794},{"id":"https://openalex.org/keywords/plaintext","display_name":"Plaintext","score":0.7391088008880615},{"id":"https://openalex.org/keywords/encryption","display_name":"Encryption","score":0.6818225383758545},{"id":"https://openalex.org/keywords/database","display_name":"Database","score":0.5964985489845276},{"id":"https://openalex.org/keywords/ciphertext","display_name":"Ciphertext","score":0.5509219169616699},{"id":"https://openalex.org/keywords/table","display_name":"Table (database)","score":0.5139965415000916},{"id":"https://openalex.org/keywords/data-compression","display_name":"Data compression","score":0.48385465145111084},{"id":"https://openalex.org/keywords/string","display_name":"String (physics)","score":0.4678049385547638},{"id":"https://openalex.org/keywords/heuristics","display_name":"Heuristics","score":0.4227412939071655},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.2716040015220642},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.21891126036643982},{"id":"https://openalex.org/keywords/algorithm","display_name":"Algorithm","score":0.2163902223110199}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.828131914138794},{"id":"https://openalex.org/C92717368","wikidata":"https://www.wikidata.org/wiki/Q1162538","display_name":"Plaintext","level":3,"score":0.7391088008880615},{"id":"https://openalex.org/C148730421","wikidata":"https://www.wikidata.org/wiki/Q141090","display_name":"Encryption","level":2,"score":0.6818225383758545},{"id":"https://openalex.org/C77088390","wikidata":"https://www.wikidata.org/wiki/Q8513","display_name":"Database","level":1,"score":0.5964985489845276},{"id":"https://openalex.org/C93974786","wikidata":"https://www.wikidata.org/wiki/Q1589480","display_name":"Ciphertext","level":3,"score":0.5509219169616699},{"id":"https://openalex.org/C45235069","wikidata":"https://www.wikidata.org/wiki/Q278425","display_name":"Table (database)","level":2,"score":0.5139965415000916},{"id":"https://openalex.org/C78548338","wikidata":"https://www.wikidata.org/wiki/Q2493","display_name":"Data compression","level":2,"score":0.48385465145111084},{"id":"https://openalex.org/C157486923","wikidata":"https://www.wikidata.org/wiki/Q1376436","display_name":"String (physics)","level":2,"score":0.4678049385547638},{"id":"https://openalex.org/C127705205","wikidata":"https://www.wikidata.org/wiki/Q5748245","display_name":"Heuristics","level":2,"score":0.4227412939071655},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.2716040015220642},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.21891126036643982},{"id":"https://openalex.org/C11413529","wikidata":"https://www.wikidata.org/wiki/Q8366","display_name":"Algorithm","level":1,"score":0.2163902223110199},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.0},{"id":"https://openalex.org/C62520636","wikidata":"https://www.wikidata.org/wiki/Q944","display_name":"Quantum mechanics","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/sp46215.2023.10179359","is_oa":false,"landing_page_url":"https://doi.org/10.1109/sp46215.2023.10179359","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2023 IEEE Symposium on Security and Privacy (SP)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.6700000166893005,"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16"}],"awards":[],"funders":[{"id":"https://openalex.org/F4320306164","display_name":"Simons Foundation","ror":"https://ror.org/01cmst727"},{"id":"https://openalex.org/F4320309327","display_name":"Google","ror":"https://ror.org/00njsd438"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":17,"referenced_works":["https://openalex.org/W28139543","https://openalex.org/W1571203384","https://openalex.org/W2024171325","https://openalex.org/W2060108852","https://openalex.org/W2099129595","https://openalex.org/W2107745473","https://openalex.org/W2138412821","https://openalex.org/W2497845670","https://openalex.org/W2752929869","https://openalex.org/W3000462278","https://openalex.org/W3011243356","https://openalex.org/W4210300416","https://openalex.org/W4307022286","https://openalex.org/W6640935840","https://openalex.org/W6684410978","https://openalex.org/W6803816272","https://openalex.org/W7047648765"],"related_works":["https://openalex.org/W2883387842","https://openalex.org/W158703891","https://openalex.org/W3204260572","https://openalex.org/W2752173704","https://openalex.org/W4213415811","https://openalex.org/W291693969","https://openalex.org/W3038678234","https://openalex.org/W2041698994","https://openalex.org/W2520840001","https://openalex.org/W2046853506"],"abstract_inverted_index":{"We":[0,41,116],"introduce":[1],"new":[2,125],"compression":[3,13],"side-channel":[4],"attacks":[5,34,46,67,138],"against":[6],"database":[7,15,31,73,131],"storage":[8,50,63],"engines":[9],"that":[10,75],"simultaneously":[11],"support":[12],"of":[14,92,104],"pages":[16],"and":[17,29,44,56,95,121,153],"encryption":[18],"at":[19],"rest.":[20],"Given":[21],"only":[22,105],"limited,":[23],"indirect":[24],"access":[25],"to":[26,71,80,129,133],"an":[27],"encrypted":[28,96,159],"compressed":[30,94],"table,":[32],"our":[33],"extract":[35,134,154],"arbitrary":[36],"plaintext":[37],"with":[38,124,149,161],"high":[39],"accuracy.":[40],"demonstrate":[42],"accurate":[43],"performant":[45],"on":[47,114],"the":[48,61,72,85,89,130],"InnoDB":[49],"engine":[51,64],"variants":[52],"found":[53],"in":[54,146],"MariaDB":[55],"MySQL":[57],"as":[58,60],"well":[59],"WiredTiger":[62],"for":[65],"MongoDB.Our":[66],"overcome":[68],"obstacles":[69],"unique":[70],"setting":[74,132],"render":[76],"previous":[77],"techniques":[78],"developed":[79],"attack":[81,126],"TLS":[82],"ineffective.":[83],"Unlike":[84],"web":[86],"setting,":[87],"where":[88],"exact":[90],"length":[91],"a":[93,142,147],"message":[97],"can":[98,139],"be":[99],"observed,":[100],"we":[101],"make":[102],"use":[103],"approximate":[106],"ciphertext":[107],"size":[108],"information":[109],"gleaned":[110],"from":[111,158],"file":[112],"sizes":[113],"disk.":[115],"amplify":[117],"this":[118],"noisy":[119],"signal":[120],"combine":[122],"it":[123],"heuristics":[127],"tailored":[128],"secret":[135],"plaintext.":[136],"Our":[137],"detect":[140],"whether":[141],"random":[143,156],"string":[144],"appears":[145],"table":[148],">":[150,162],"90%":[151],"accuracy":[152],"10-character":[155],"strings":[157],"tables":[160],"95%":[163],"success.":[164]},"counts_by_year":[{"year":2025,"cited_by_count":4},{"year":2024,"cited_by_count":2}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}