One condition is that attacker cannot select plaintext from table, but can select result of some operations like SUM, AVG etc. For protection someone‘s data, DB will filter result after SQL to avoid data source only one row. Attacker may not know any data in DB, but can use == to guess existed id and use SUM(n) and SUM(n-1) to compute target data.
-- Reply to this email directly or view it on GitHub: https://github.com/apache/incubator-teaclave/issues/721#issuecomment-1778900615 You are receiving this because you are subscribed to this thread. Message ID: <apache/incubator-teaclave/issues/721/1778900...@github.com>
