Inference Attacks on Property-Preserving Encrypted Databases

By | Uncategorized

Fascinating white paper on hacking encrypted database systems.  Particularly this excerpt:

“When the encrypted database is operating in a steady-state where enough encryption layers have been peeled to permit the application to run its queries, our experimental results show that an alarming amount of sensitive information can be recovered. In particular, our attacks correctly recovered certain OPE-encrypted attributes (e.g., age and disease severity) for more than 80% of the patient records from 95% of the hospitals; and certain DTEencrypted attributes (e.g., sex, race, and mortality risk) for more than 60% of the patient records from more than 60% of the hospitals.When the encrypted database is operating in a steady-state where enough encryption layers have been peeled to permit the application to run its queries, our experimental results show that an alarming amount of sensitive information can be recovered. In particular, our attacks correctly recovered certain OPE-encrypted attributes (e.g., age and disease severity) for more than 80% of the patient records from 95% of the hospitals; and certain DTEencrypted attributes (e.g., sex, race, and mortality risk) for more than 60% of the patient records from more than 60% of the hospitals.”

I found this white paper while reading the Forbes article: “How A 1200-Year-Old Hacking Technique Can Already Crack Tomorrow’s Encrypted Vaults“. 

Do happy people make better leaders?

By | Uncategorized

“The key link between happiness and leadership effectiveness, the researchers say, seems to be that happy people typically demonstrate a certain management style called transformational leadership.

Transformational leaders are skilled at things like inspiring and motivating their team, stimulating their team intellectually, and mentoring their subordinates. (A popular example of a transformational leader is Nelson Mandela.) Studies have found there’s a strong correlation between transformational leadership and leadership effectiveness.”

Why I’m not looking to hire computer science majors

By | Uncategorized

There is an opportunity to relieve the drought of qualified software developers that has driven up prices and is stunting startup growth: A serious alternative to the $100,000 four-year college degree wouldn’t even need to be accredited—it would merely need to teach students the skills that startups are desperate for, and that universities couldn’t care less about.

Read More