International Association for Cryptologic Research

International Association
for Cryptologic Research

IACR News item: 22 September 2015

Hung Dang, Anh Dinh, Ee-Chien Chang, Beng Chin Ooi, Shruti Tople, Prateek Saxena
ePrint Report ePrint Report
Cloud providers are realizing the outsourced database model in the form of database-as-a-service offerings. Security in terms of data privacy remains an obstacle because data storage and processing are done on an untrusted cloud. As such, providing a strong notion of security under additional constraints of functionality and performance is challenging, for which advanced encryption and recent trusted computing primitives alone prove insufficient.

This paper proposes a practical system for privacy-preserving data management, called PRAMOD, in which data is stored in encrypted form and data-dependent computations are carried out inside a trusted environment. The system supports popular algorithms underlying many data management applications, including sort, compaction, join

and group aggregation. Data privacy is ensured even when data movement between different components (caused by limited private memory) is observed by the adversary. For many algorithms, this is achieved by appending a component called scrambler which breaks the linkage between the input and output. Our experimental study indicates reasonable overheads over a baseline system with a weaker level of security. In addition, PRAMOD shows better performance

than state-of-the-art solutions with similar levels of security. For example, PRAMOD achieves 4.4× speedup over the alternative data-oblivious sorting algorithm.

Expand

Additional news items may be found on the IACR news page.