enc encryp ypted sear ed search h
play

Enc Encryp ypted Sear ed Search h Seny Kamara Brown University - PowerPoint PPT Presentation

Sep 19, 2023 •115 likes •431 views

Enc Encryp ypted Sear ed Search h Seny Kamara Brown University 2 3 4 Q: Why is this happening? 5 Big Data Industry and Governments want more data NaDonal security Machine learning Business analyDcs NLP

  1. Enc Encryp ypted Sear ed Search h Seny Kamara Brown University

  2. 2

  3. 3

  4. 4

  5. Q: Why is this happening? 5

  6. Big Data ► Industry and Governments want more data ► NaDonal security ► Machine learning ► Business analyDcs ► NLP ► LocaDon-based services ► … 6

  7. Big Data u Harder to secure u More intrusive & sensitive u NSA Bluffdale holds 2EBs! (2K PBs) u Photos, medical records u Facebook holds 300PBs of photos/ u Location data, email, videos u browsing history, voicemails u Vs. nation states, intelligence u Greater need for security agencies, organized crime, insiders, … 7

  8. Big Data u End-to-end (e2e) encryption! u Impossible to work with u Reduces attack surface u Lose search, DBs, IR u Secure small key instead of Big Data u Find your photo among 300PBs? u Rank results? 8

  9. Q: Can we search on encrypted data? 9

  10. An InteresDng QuesDon Databases Data Structures Graph Theory Cryptography InformaDon Retrieval Combinatorial OpDmizaDon 10 StaDsDcs

  11. A LucraDve QuesDon ► Startups ► Major Corporations ► Funding agencies ► CipherCloud ($30M+$50M) ► Microsoft, IBM, ► IARPA ► Navajo (Salesforce) ► Google, Yahoo ► DARPA ► SkyHigh , Vaultive, Inpher ► Hitachi, Fujitsu ► NSF ► Bitglass, Private Machines, … 11

  12. “There are a lot of advancements in things like encrypted search ...but in general it is a difficult problem” -- Edward Snowden @ SXSW‘14 12

  13. Encrypted Search SoluDons 13

  14. Usage EDB tk DB DB 14

  15. Desiderata St Storag age le leak akag age Siz Size of f EDB EDB EDB Se Sear arch h tk Dme me Siz Size of f tk tk 15 Query leakage Qu

  16. Many Approaches ► Stream ciphers [SWP01] ► BuckeDng [HILM02] ► Structured and searchable encrypDon (StE/SSE) [SWP01,CGKO06,CK10] ► Oblivious RAM (ORAM) [GO96] ► FuncDonal encrypDon (e.g., PEKS) [BCOP06] ► MulD-party computaDon (MPC) [Yao82,GMW87] ► Property-preserving encrypDon (PPE) [AKSX04,BBO06,BCLO09] ► Fully-homomorphic encrypDon [G09] 16

  17. Tradeoffs: Efficiency vs. Security Effic fficiency ST STE/SSE-based PPE-based skFE-based pkFE-based ORAM-based FHE-based Leak Leakag age e 17

  18. Tradeoffs: FuncDonality vs. Efficiency FuncDonality Fu ORAM-based SQL QL PPE PPE-based -based FHE-based STE/SSE-based SK-FE-based NoSQL QL PK-FE-based Effic fficiency 18

  19. Leakage ► TheoreDcal Cryptography [Goldwasser-Micali82,…] ► A great success story ► Helps us reason about confidenDality, integrity, … ► Focused on leakage-free cryptography ► Real-world systems security relies on tradeoffs ► No cryptographic foundaDons for tradeoffs ► Can we leak X but not Y? ► How do we model leakage? 19

  20. Leakage [Curtmola-Garay-K.-Ostrovsky06, Chase-K.10, Islam-Kuzu-Kantarcioglu12, K.15] Leakage cryptanalysis Leakage analysis Proof of security ► Leakage analysis: what is being leaked? ► Proof: prove that soluDon leaks no more ► Cryptanalysis: can we exploit the leakage? 20

  21. ApplicaDons 21

  22. Encrypted Search Engines ► Desktop search ► Windows search, Apple Spotlight ► Personal cloud storage ► Dropbox, OneDrive, iCloud, … ► Webmail ► Gmail, Yahoo! Mail, Outlook.com,… 22

  23. Encrypted DBs ► Standard DBs ► DB encrypted in memory ► Cloud DBs ► DB encrypted in cloud 23

  24. Encrypted NSA Metadata Program [K.14] 1 3 2 ► To & from numbers, Dme of call, duraDon for all US-to-US, US-to-Foreign and Foreign-to-US calls 1 ► NSA DB can only be queried by individual phone number (seed) 2 ► Analyst queries must be approved by small number of NSA officials 3

  25. Systems (Provably Secure) 25

  26. Systems ► CS2 (C++) ► BlindSeer (C++) [IARPA] ► Microsos Research, 2012 ► Columbia & Bell Labs, 2014 ► Queries: single keyword search ► Queries: boolean ► 16MB email collecDon in 53ms ► SyntheDc dataset ► Search Dme ► Fo For (w 1 an and w w 2 ): 250ms ► w 1 in 1 docs ► w 2 in 10K docs 26

  27. Systems ► IBM-UCI (C++) [IARPA] ► Clusion (Java) ► IBM Research & UC Irvine, 2013 ► Brown & Colorado St., 2016 ► Queries: conjuncDve ► Queries: Boolean ► 1.3GB email collecDon ► 1.3GB email collecDon ► Search Dme ► Search Dme ► Fo For (w 1 an and w w 2 ): 5ms ► For (w (w 1 or w or w 2 ) and (w ) and (w 3 or w or w 4 ) in ) in 1.5 1.5ms ms ► w 1 in 15 docs ► (w (w 1 or w or w 2 ) ) in 10 docs ► w 2 in 1M docs ► (w (w 3 or w or w 4 ) ) in 1M docs 27

  28. Systems ► GRECS ► Microsos Research, Boston U., Harvard & Ben Gurion, 2015 ► Queries: (approximate) shortest distance on graphs ► 1.6M nodes & 11M edges ► Query Dme: 10ms 28

  29. Conclusions ► ExciDng and acDve area of research ► Big potenDal impact in pracDce ► Lots of new research direcDons in theory and systems ► PotenDal for collaboraDon between many areas of CS ► Algorithms and data structures ► Databases ► InformaDon retrieval ► Combinatorial opDmizaDon ► StaDsDcs 29

  30. 30

Recommend

Ob Obser servati ational nal Sear Search ches f es for Hi High-z G z Galax alaxies es

Ob Obser servati ational nal Sear Search ches f es for Hi High-z G z Galax alaxies es

Ob Obser servati ational nal Sear Search ches f es for Hi High-z G z Galax alaxies es Ho Hosti sting ng Pop PopII III Star Stars s To Tohru N Nag agao ao (Ehime e Un Univ iv, Ja , Japan) De Deciph cipherin ing th

352 views • 22 slides
Risin Rising g 2L Job Sear 2L Job Search h Ov Over ervie view Harvard Law School Bernard

Risin Rising g 2L Job Sear 2L Job Search h Ov Over ervie view Harvard Law School Bernard

Risin Rising g 2L Job Sear 2L Job Search h Ov Over ervie view Harvard Law School Bernard Koteen Office of Public Interest Advising The he Bi Big Pictur g Picture HLS 3Ls continue to be very successful in landing post-graduate public

500 views • 20 slides
SEAR JIP The value of sharing of lessons learned on subsea integrity and reliability Agenda

SEAR JIP The value of sharing of lessons learned on subsea integrity and reliability Agenda

SEAR JIP The value of sharing of lessons learned on subsea integrity and reliability Agenda 1 Overview 2 Challenges 3 SEAR Reliability Database 4 SEAR Testing Program 5 Outlook 2 Overview 6 Operators participating on

609 views • 12 slides
Exploi'ng Leakage in Searchable Encryp'on and Machine

Exploi'ng Leakage in Searchable Encryp'on and Machine

Exploi'ng Leakage in Searchable Encryp'on and Machine Learning Tom Ristenpart Covering joint work with : David Cash, Paul Grubbs, Jason Perry

875 views • 56 slides
Symmetric Key Encryp.on 9/9/2009 598MAN Applied Cryptography 1 Outline Recall:

Symmetric Key Encryp.on 9/9/2009 598MAN Applied Cryptography 1 Outline Recall:

Symmetric Key Encryp.on 9/9/2009 598MAN Applied Cryptography 1 Outline Recall: defini.ons of encryp.on Perfect secrecy CPA security CCA security Today Prac.cal construc.ons 9/9/2009 598MAN Applied Cryptography

490 views • 28 slides
Un Unin informed d Se Sear arch ch Com omputer Science c cpsc sc322, Lecture 5 5 (Te

Un Unin informed d Se Sear arch ch Com omputer Science c cpsc sc322, Lecture 5 5 (Te

Un Unin informed d Se Sear arch ch Com omputer Science c cpsc sc322, Lecture 5 5 (Te Text xtboo ook k Chpt 3.5) May ay 1 18, 2 2017 CPSC 322, Lecture 5 Slide 1 Recap ap Search is a key computational mechanism in many AI

633 views • 32 slides
Su Support pport Se Sear archers chers in n Se Sear arching ching Susan Dumais

Su Support pport Se Sear archers chers in n Se Sear arching ching Susan Dumais

Us Using ng Co Cont ntext ext to to Su Support pport Se Sear archers chers in n Se Sear arching ching Susan Dumais Microsoft Research http://research.microsoft.com/~sdumais ACL/HLT June 18, 2008 Us Using ing Co Cont

477 views • 34 slides
New Encryp+on Primi+ves for Uncertain Times Thomas Ristenpart

New Encryp+on Primi+ves for Uncertain Times Thomas Ristenpart

New Encryp+on Primi+ves for Uncertain Times Thomas Ristenpart University of Wisconsin Covering joint work with: Sco@ Coull, Kevin Dyer, Ari Juels,

751 views • 54 slides
Modifying an Enciphering Scheme a3er Deployment Paul Grubbs, Thomas Ristenpart, Yuval Yarom

Modifying an Enciphering Scheme a3er Deployment Paul Grubbs, Thomas Ristenpart, Yuval Yarom

Modifying an Enciphering Scheme a3er Deployment Paul Grubbs, Thomas Ristenpart, Yuval Yarom Format-Preserving Encryp<on (FPE) Encryp<on service Client E(CCN) CCN E(CCN) E(CCN) E(CCN) Format-Preserving Encryp<on (FPE)

246 views • 24 slides
Using Fully y Homomorphic Encryp yption for St Statistical Analysi sis s of Categori rical,

Using Fully y Homomorphic Encryp yption for St Statistical Analysi sis s of Categori rical,

Using Fully y Homomorphic Encryp yption for St Statistical Analysi sis s of Categori rical, , Or Ordinal and and Num Numeric ical al Data Wen-jie Lu 1 , Shohei Kawasaki 1 , Jun Sakuma 1,2,3 1. University of Tsukuba, Japan 2. JST

540 views • 30 slides
Cr Cryp yptography: His History an and Sim imple le Enc Encryp yption Me Methods an and

Cr Cryp yptography: His History an and Sim imple le Enc Encryp yption Me Methods an and

Cr Cryp yptography: His History an and Sim imple le Enc Encryp yption Me Methods an and Pr Preliminaries 1 Cryp Cr yptography The word cryptography comes from the Greek words (hidden or secret) and

670 views • 37 slides
Le Lecture ture 4 Un Uninf nform ormed ed Se Sear arch ch St Strat ategies, egies, Se

Le Lecture ture 4 Un Uninf nform ormed ed Se Sear arch ch St Strat ategies, egies, Se

Computer Science CPSC 322 Le Lecture ture 4 Un Uninf nform ormed ed Se Sear arch ch St Strat ategies, egies, Se Sear arch h wi with h Co Costs ts (Ch Ch 3. 3.1-3.5, 3.5, 3. 3.7. 7.3) 3) 1 Announcements Assignment 1

1.04k views • 54 slides
End End-to-end File Encr Encryp yption i in n the the Web Br eb Browser er A Ca Case

End End-to-end File Encr Encryp yption i in n the the Web Br eb Browser er A Ca Case

End End-to-end File Encr Encryp yption i in n the the Web Br eb Browser er A Ca Case e Study dy Thomas Konrad, SBA Research Vue.js Meetup Vienna, Feb 11, 2020 SBA Research gGmbH, 2020 Classification: Public 1 ~ $ whoami Thomas

770 views • 50 slides
Outline : Outline : Our method to perform periodicity search Candidates of the next Geminga The

Outline : Outline : Our method to perform periodicity search Candidates of the next Geminga The

Periodicity Sear Periodicity Search of ch of the the Geming Geminga-lik -like Pulsar e Pulsars Lupin Chun-Che Lin () Institute of Astronomy, National Central University, Taiwan Outline : Outline : Our method to perform periodicity

654 views • 19 slides
Log Logic ic: : TD TD as se as sear arch ch, , Da Data talo log (v (var ariab ables)

Log Logic ic: : TD TD as se as sear arch ch, , Da Data talo log (v (var ariab ables)

Log Logic ic: : TD TD as se as sear arch ch, , Da Data talo log (v (var ariab ables) es) Computer ter Sc Science ce cpsc3 c322 22, , Lectur ture e 23 (Te Text xtbo book ok Chpt 5.2 & & some basic ic concep

647 views • 27 slides
Log Logic ic: : TD TD as se as sear arch ch, , Da Data talo log (v (var ariab ables)

Log Logic ic: : TD TD as se as sear arch ch, , Da Data talo log (v (var ariab ables)

Log Logic ic: : TD TD as se as sear arch ch, , Da Data talo log (v (var ariab ables) es) Co Computer ter Sc Scienc nce e cpsc sc322 322, , Lectu cture e 23 (Te Text xtbo book ok Chpt 5.2 & & some basic

516 views • 29 slides
Workshop: op: Create ate your r own cuddly y Audio-Tou Tour r Guide John Sear (Very!)

Workshop: op: Create ate your r own cuddly y Audio-Tou Tour r Guide John Sear (Very!)

Train the Trainers Session Game-like experiences for public spaces Workshop: op: Create ate your r own cuddly y Audio-Tou Tour r Guide John Sear (Very!) Experimental work VanGoYourself (Live) AgentInABox ZombieHolodeck 1 An NFC

510 views • 4 slides
Pr Probing new physics via via extr trem emely ely rar are e dec decay sear earch h wi

Pr Probing new physics via via extr trem emely ely rar are e dec decay sear earch h wi

Pr Probing new physics via via extr trem emely ely rar are e dec decay sear earch h wi with h GER ERDA A and nd LEGEN END Yoann KERMADIC LPSC seminar Grenoble 23 January 2020 Cru Crucial open issu ssues s in part rticle

1.01k views • 62 slides
Lectur ture e 8 In Intr tro to to CSP SP CSP as as Sear earch ch 1 Announ nouncem

Lectur ture e 8 In Intr tro to to CSP SP CSP as as Sear earch ch 1 Announ nouncem

Computer Science CPSC 322 Lectur ture e 8 In Intr tro to to CSP SP CSP as as Sear earch ch 1 Announ nouncem emen ents Assignment 1 due today @ 11:59pm solution posted 2 days after, to accommodate for late days

827 views • 68 slides
Jackie Sear What is we love about Hanwell? Hanwell Community Centre Diversity - Age -

Jackie Sear What is we love about Hanwell? Hanwell Community Centre Diversity - Age -

Getting land and matched funding from the council Jackie Sear What is we love about Hanwell? Hanwell Community Centre Diversity - Age - Culture - Housing - Skills - Economic Green Spaces Opportunities - Regeneration on 2

473 views • 23 slides
Ac,ve a4acks on CPA-secure encryp,on Dan Boneh Recap:

Ac,ve a4acks on CPA-secure encryp,on Dan Boneh Recap:

Online Cryptography Course

1.02k views • 62 slides
St Stoc ochasti hastic c Loc Local al Se Sear arch ch Var arian ants ts Computer ter

St Stoc ochasti hastic c Loc Local al Se Sear arch ch Var arian ants ts Computer ter

St Stoc ochasti hastic c Loc Local al Se Sear arch ch Var arian ants ts Computer ter Sc Science ce cpsc3 c322 22, , Lectur ture e 16 (Te Text xtbo book ok Chpt 4.8) Oct, ct, 12, 2012 CPSC 322, Lecture 16 Slide 1

285 views • 25 slides
Papa pa A. S . Seck, k, Rese sear arch ch and nd Data, ta, UN Wom omen en Overview 1.

Papa pa A. S . Seck, k, Rese sear arch ch and nd Data, ta, UN Wom omen en Overview 1.

PLANS FOR METHODOLOGICAL DEVELOPMENT OF TIER III INDICATORS: 5.1.1, 5.5.1 AND 5.C.1 Papa pa A. S . Seck, k, Rese sear arch ch and nd Data, ta, UN Wom omen en Overview 1. Definitions of indicators 2. Current work taking place 3.

230 views • 8 slides
ISQ Action Research Presentation Rese sear arch ch Q Quest stio ion How does the

ISQ Action Research Presentation Rese sear arch ch Q Quest stio ion How does the

ISQ Action Research Presentation Rese sear arch ch Q Quest stio ion How does the teachers instruction in pre- reading and close reading strategies affect male year 10 secondary school students perceptions of their reading

593 views • 21 slides

More recommend