parquet modular encryption
play

Parquet Modular Encryption Gidon Gershinsky IBM Research Haifa Lab - PowerPoint PPT Presentation

Jan 02, 2023 •19 likes •349 views

Parquet Modular Encryption Gidon Gershinsky IBM Research Haifa Lab Speaker Senior Architect at IBM Research Haifa Lab gidon@il.ibm.com Leading role in Apache Parquet work on definition of encryption format and its implementation

  1. Parquet Modular Encryption Gidon Gershinsky IBM Research – Haifa Lab

  2. Speaker Senior Architect at IBM Research – Haifa Lab gidon@il.ibm.com Leading role in Apache Parquet work on definition of encryption format and its implementation • community work, folks from many companies are involved Number of projects on secure analytics on encrypted data • connected car and healthcare usecases • Apache Spark with Parquet encryption • Spark&AI Summit talk, 2018

  3. Overview • Goals of this technology • Parquet encryption – Features • Sample usecases • How to use Parquet encryption API • Basic integration with Apache Spark • Performance implications • Roadmap

  4. Apache Parquet Popular columnar storage format Encoding, compression Advanced data filtering • columnar projection : skip columns • predicate push down : skip files, or row groups, or data pages Performance benefits • less data to fetch from storage: I/O, latency • less data to process: CPU, latency How to protect sensitive Parquet data? • in any storage - keeping projection/predicates, supporting column access control, data tamper- proofing etc.

  5. Parquet Encryption: Goals Protect sensitive data-at-rest (in storage) • data privacy/confidentiality: encryption - hiding sensitive information • data integrity: tamper-proofing sensitive information • in any storage - untrusted, cloud or private, file system, object store, archives Preserve performance of analytic engines • full Parquet capabilities (columnar projection, predicate pushdown, etc) with encrypted data Leverage encryption for fine-grained access control • per-column encryption keys • key-based access in any storage: private -> cloud -> archive

  6. Parquet Encryption: Features Privacy: Hiding sensitive information • Full encryption: all data and metadata modules • min/max values, schema, encryption key ids, list of sensitive columns, etc • Separate keys for sensitive columns • column data and metadata • column access control • Separate key for file-wide metadata • Parquet file footer – encrypted with footer key • Storage server / admin never sees encryption keys or unencrypted data • “client - side” encryption

  7. Parquet Encryption: Features Privacy: Hiding sensitive information (continued) • Multiple encryption algorithms • different security and performance trade-offs • currently two algorithms are defined and implemented • AES_GCM : encrypts and tamper-proofs everything (data and metadata) • AES_GCM_CTR : encrypts everything, tamper-proofs metadata only could be useful in platforms without AES hardware acceleration, like Java 8 • if you need a new one, talk to us • Optional plaintext footer mode for legacy readers • any (old) Parquet reader can access unencrypted columns • footer is unencrypted – but tamper-proofed • signed with footer key

  8. Parquet Encryption: Features customers-sept-2019.part0.parquet customers-jan-2014.part0.parquet Data integrity verification • File data and metadata are not tampered with • modifying data page contents • replacing one data page with another • File not replaced with wrong file • unmodified - but e.g. outdated • sign file contents and file id • Example: altering customer / billing data • Example: altering healthcare data (!) - patient record or medical sensor readings • AES GCM: “authenticated encryption” • implemented in hardware

  9. Current Status • Apache Parquet community work • Encryption specification approved in January 2019 • signed-off by PMC • Specification and Thrift format merged • in apache/parquet-format master • part of parquet-format-2.7.0 release pull request (merged too) • Implementation • C++ and Java code • pull requests being reviewed, some already merged • implementation and API that closely follows the encryption specification

  10. Parquet Encryption Usecases Same as “Parquet Usecases ” – with sensitive column data • Data queries, analytic applications - in any industry • Spark/Hive/Presto with Parquet: horizontal platform, not a vertical solution • Protect data privacy / confidentiality • personal data privacy • sensitive business data • regulations • Protect data integrity • business processes • wrong billing due to tampering with e.g. customer data • personal health • wrong treatment due to tampering with patient records or sensor readings

  11. Connected Car Usecase “ RestAssured ” – EU Horizon 2020 research project (N 731678) Project partners IBM, Adaptant, OCC, Thales, UDE, IT Innovation Project usecases • usage-based car insurance, social services • encryption: protect personal data • integrity: prevent billing tampering Spark&AI Summit EU 2018: demo shots with Spark/Parquet Encryption

  12. Healthcare Usecase “ ProTego ” – EU Horizon 2020 research project (N 826284) Project partners St Raffaele hospital, Marina Salud hospital, IBM, GFI, ITI, UAH, IMEC, KUL, ICE Project usecases • Queries / analytics on sensitive healthcare data • HL7 FHIR standard: maps nicely to Parquet • encryption: protect personal data • integrity: prevent tampering with diagnosis and treatment

  13. Encryption API • Parquet API - without encryption ParquetFileWriter fileWriter = new ParquetFileWriter(file_path , schema, …); • then write data ParquetFileReader fileReader = ParquetFileReader.open(file_path, options); • then read data • Parquet API - with encryption ParquetFileWriter fileWriter = new ParquetFileWriter(file_path , schema, …, fileEncryptionProperties ); • then write data (just like before) ParquetFileReader fileReader = ParquetFileReader.open(file_path, options, fileDecryptionProperties ); • then read data (just like before)

  14. File Encryption Properties Trivial • encrypt all columns (and footer) with key0 • tamper-proof encrypted content • enable columnar projection, predicate pushdown, etc byte[] key0 = … // e.g. 128 bit key – 16 bytes FileEncryptionProperties fileEncryptionProps = FileEncryptionProperties.builder(key0).build();

  15. File Encryption Properties Basic • encrypt columnA with key1, columnB with key2 (and footer with key0) • differential column access control • assign key IDs (key metadata) for simplified key retrieval • tamper-proof encrypted content • enable columnar projection, predicate pushdown, etc

  16. File Encryption Properties Basic • encrypt columnA with key1, column with key2 (and footer with key0) byte[] key1 = … // e.g. 128 bit key – 16 bytes ColumnEncryptionProperties encrColumnA = ColumnEncryptionProperties .builder(“ columnA") .withKey(key1) .withKeyID (”key1”) .build(); same for column B. Then file properties: FileEncryptionProperties fileEncryptionProps = FileEncryptionProperties.builder(key0) .withFooterKeyID (“key0”) .withEncryptedColumns(encryptedColumns) // list (map) of column encryption properties .build();

  17. File Encryption Properties Advanced • Protect against file replacement attacks • Replacement with untampered but e.g. outdated file (table partition) String fileID = “customers -sept- 2019.part0”; byte[] aadPrefix = fileID.getBytes(); FileEncryptionProperties fileEncryptionProps = FileEncryptionProperties.builder(key0) .withFooterKeyID (“key0”) .withAADPrefix(aadPrefix) .withEncryptedColumns(encryptedColumns) .build();

  18. File Encryption Properties Advanced • Allow legacy clients to read unencrypted columns in encrypted files • plaintext (unencrypted) footer mode • visible file metadata (schema, names of secret columns and of their keys, etc) • tamper-proof (sign) file metadata with footer key FileEncryptionProperties fileEncryptionProps = FileEncryptionProperties.builder(key0) .withFooterKeyID (“key0”) .withPlaintextFooter() .withEncryptedColumns(encryptedColumns) .build();

  19. File Encryption Properties Advanced • Use alternative encryption algorithm • better performance in old Java versions • tamper-proofing metadata only (not data) FileEncryptionProperties fileEncryptionProps = FileEncryptionProperties.builder(key0) .withFooterKeyID (“key0”) .withAlgorithm(ParquetCipher.AES_GCM_CTR_V1) .withEncryptedColumns(encryptedColumns) .build();

  20. File Decryption Properties Simpler than encryption properties • most of details are specified in file metadata StringKeyIdRetriever keyRetriever = new StringKeyIdRetriever(); keyRetriever.putKey (“key0”, key0); keyRetriever.putKey (“key1”, key1); keyRetriever.putKey (“key2”, key2); FileDecryptionProperties fileDecryptionProps = FileDecryptionProperties.builder() .withKeyRetriever(keyRetriever) .build();

  21. File Decryption Properties Advanced • Protect against file replacement attacks String fileID = “customers -sept- 2019.part0”; byte[] aadPrefix = fileID.getBytes(); FileDecryptionProperties fileDecryptionProps = FileDecryptionProperties.builder() .withKeyRetriever(keyRetriever) .withAADPrefix(aadPrefix) .build();

  22. Beyond Low Level API Low level API – full power of Parquet encryption • directly implements the approved specification features • enables any key management scheme • work with KMS instead of explicit keys • you need to build one – choosing from many options for KMS, Auth, envelope encryption (data key wrapping) • if you know how – Parquet low level encryption API is all you need • no one-size-fits-all solution for KMS/Auth/Wrapping

Recommend

Parquet in Practice & Detail What is Parquet? How is it so e ffi cient? Why should I actually

Parquet in Practice & Detail What is Parquet? How is it so e ffi cient? Why should I actually

Parquet in Practice & Detail What is Parquet? How is it so e ffi cient? Why should I actually use it? About me Data Scientist at Blue Yonder (@BlueYonderTech) Committer to Apache {Arrow, Parquet} Work in Python, Cython, C++11 and

512 views • 22 slides
Parquet data format performance Jim Pivarski Princeton University DIANA-HEP February 21,

Parquet data format performance Jim Pivarski Princeton University DIANA-HEP February 21,

Parquet data format performance Jim Pivarski Princeton University DIANA-HEP February 21, 2018 1 / 22 What is Parquet? 1974 HBOOK tabular rowwise FORTRAN first ntuples in HEP 1983 ZEBRA hierarchical rowwise FORTRAN event records

581 views • 23 slides
Ruby Monstas Session 17: Interlude: Encryption Encryption What comes to mind if you think about

Ruby Monstas Session 17: Interlude: Encryption Encryption What comes to mind if you think about

Ruby Monstas Session 17: Interlude: Encryption Encryption What comes to mind if you think about encryption? Encryption Certificates Crypto Currencies Public Key AES Encryption Privacy SSH VPN HTTPS TLS Quantum Digital Signatures

837 views • 46 slides
GTC Overflow PARQUET Cray Inc. Confidential Slide 2 Cray has a long tradition of

GTC Overflow PARQUET Cray Inc. Confidential Slide 2 Cray has a long tradition of

Introduction to the Cray compiler Example GTC Overflow PARQUET Cray Inc. Confidential Slide 2 Cray has a long tradition of high performance compilers Vectorization Parallelization Code transformation More

439 views • 19 slides
Usable Encryption Class Presentation for CMSC 818D Wei Bai S Application S Hardware

Usable Encryption Class Presentation for CMSC 818D Wei Bai S Application S Hardware

Usable Encryption Class Presentation for CMSC 818D Wei Bai S Application S Hardware Encryption S Web Encryption S Email Encryption OpenPGP S S/MIME S S Online Social Network Public Key Encryption S Encryption/Decryption

842 views • 26 slides
RSA Encryption 10 February 2012 RSA Encryption 10 February 2012 1/35 We saw some methods of

RSA Encryption 10 February 2012 RSA Encryption 10 February 2012 1/35 We saw some methods of

RSA Encryption 10 February 2012 RSA Encryption 10 February 2012 1/35 We saw some methods of encryption Wednesday, but none of these is good enough to be used in actual situations. Today well talk about one method, RSA Encryption, which is

1.01k views • 59 slides
Secret-Key Encryption Introduction Encryption is the process of encoding a message in such a

Secret-Key Encryption Introduction Encryption is the process of encoding a message in such a

Secret-Key Encryption Introduction Encryption is the process of encoding a message in such a way that only authorized parties can read the content of the original message History of encryption dates back to 1900 BC Two types of

533 views • 38 slides
Functional Encryption Lecture 27 Functional Encryption Plain encryption: for secure

Functional Encryption Lecture 27 Functional Encryption Plain encryption: for secure

Functional Encryption Lecture 27 Functional Encryption Plain encryption: for secure communication. Does not allow modifying encrypted data. Homomorphic Encryption: allows computation on encrypted data, but result remains encrypted Functional

987 views • 61 slides
Encryption at Rest in ZFS Tom Caputi tcaputi@datto.com Overview of Encryption Implementation 2

Encryption at Rest in ZFS Tom Caputi tcaputi@datto.com Overview of Encryption Implementation 2

Encryption at Rest in ZFS Tom Caputi tcaputi@datto.com Overview of Encryption Implementation 2 What is Encryption? Want to prevent someone (an attacker) from accessing private data Permissions arent good enough Root user can

788 views • 20 slides
1 TEMPORARY MODULAR HOUSING Meeting Purpose Learn how Temporary Modular Housing will allow

1 TEMPORARY MODULAR HOUSING Meeting Purpose Learn how Temporary Modular Housing will allow

TEMPORARY MODULAR HOUSING Temporary Modular Housing Community Information Session 7430 7460 Heather Street ( formerly 650 West 57 th Avenue) ) 1 TEMPORARY MODULAR HOUSING Meeting Purpose Learn how Temporary Modular Housing will allow

701 views • 32 slides
Functional Encryption for Regular Languages Brent Waters Public Key Encryption

Functional Encryption for Regular Languages Brent Waters Public Key Encryption

Functional Encryption for Regular Languages Brent Waters Public Key Encryption [DH76,M78,RSA78,GM84] Avoid Prior Secret Exchange PubK SK 2 Functional Encryption [SW05] Functionality: f( , ) MSK Authority Key: y 2 {0,1}* y SK CT: x

945 views • 16 slides
A Modular Framework for Building Variable-Input- Length Tweakable Ciphers Thomas Shrimpton and

A Modular Framework for Building Variable-Input- Length Tweakable Ciphers Thomas Shrimpton and

A Modular Framework for Building Variable-Input- Length Tweakable Ciphers Thomas Shrimpton and Seth Terashima Portland State University Motivation: Full Disk Encryption File System Virtual Disk (Exposes plaintexts) FDE Physical Disk

1.24k views • 59 slides
Security of Encryption Security of Encryption Perfect secrecy (IND-Onetime security) is too

Security of Encryption Security of Encryption Perfect secrecy (IND-Onetime security) is too

Defining Encryption (ctd.) Lecture 3 CPA/CCA security Computational Indistinguishability Pseudo-randomness, One-Way Functions Security of Encryption Security of Encryption Perfect secrecy (IND-Onetime security) is too strong (though too

1.36k views • 113 slides
Lecture 3 Encryption Suggested readings: Chs 1 & 2 in KPS Ch 1 in Stinson

Lecture 3 Encryption Suggested readings: Chs 1 & 2 in KPS Ch 1 in Stinson

Lecture 3 Encryption Suggested readings: Chs 1 & 2 in KPS Ch 1 in Stinson (recommended) 1 Encryption Principles A cryptosystem has (at least) five ingredients: 1. Plaintext 2. Secret Key 3. Ciphertext 4. Encryption algorithm 5.

657 views • 12 slides
Modular Home Virginia Building Solutions For Home Owners: Variety Modular homes look like

Modular Home Virginia Building Solutions For Home Owners: Variety Modular homes look like

Modular Home Virginia Building Solutions For Home Owners: Variety Modular homes look like any other homes. Today's technology has allowed modular manufacturers to build almost any style of house, from a simple ranch to a highly customized

522 views • 15 slides
Building Applications with Homomorphic Encryption A Presentation from the Homomorphic Encryption

Building Applications with Homomorphic Encryption A Presentation from the Homomorphic Encryption

Building Applications with Homomorphic Encryption A Presentation from the Homomorphic Encryption Standardization Consortium HomomorphicEncryption.org 0.1 Presenters Roger A. Hallman (SPAWAR Systems Center Pacific; Thayer School of

1.36k views • 91 slides
Goals of Encryption authenticated encryption sender Daniel J. Bernstein

Goals of Encryption authenticated encryption sender Daniel J. Bernstein

Goals of Encryption authenticated encryption sender Daniel J. Bernstein University of Illinois at Chicago & m Technische Universiteit Eindhoven c k More details, credits: competitions.cr.yp.to network

1.33k views • 118 slides
Advanced Encryption Standard Lars R. Knudsen June 2014 L.R. Knudsen Advanced Encryption

Advanced Encryption Standard Lars R. Knudsen June 2014 L.R. Knudsen Advanced Encryption

Advanced Encryption Standard Lars R. Knudsen June 2014 L.R. Knudsen Advanced Encryption Standard AES - Advanced Encryption Standard US governmental encryption standard Open (world) competition announced January 97 Blocks: 128 bits Keys:

403 views • 39 slides
Permutation-based encryption, authentication and authenticated encryption Joan Daemen 1 Joint

Permutation-based encryption, authentication and authenticated encryption Joan Daemen 1 Joint

. . . . . . Permutation-based encryption, authentication and authenticated encryption Permutation-based encryption, authentication and authenticated encryption Joan Daemen 1 Joint work with DIAC 2012, Stockholm, July 6 Guido Bertoni 1 ,

739 views • 49 slides
Number-Theoretic Algorithms (RSA and related algorithms) Chapter 31, CLRS book p1. Outline

Number-Theoretic Algorithms (RSA and related algorithms) Chapter 31, CLRS book p1. Outline

Number-Theoretic Algorithms (RSA and related algorithms) Chapter 31, CLRS book p1. Outline Modular arithmetic RSA encryption scheme Miller-Rabin algorithm (a probabilistic algorithm) p2. Modular Arithmetic p3. Integers | :

803 views • 48 slides
Encryption at Scale on AWS Matt Campagna campagna@amazon.com Agenda Describe the AWS Key

Encryption at Scale on AWS Matt Campagna campagna@amazon.com Agenda Describe the AWS Key

Encryption at Scale on AWS Matt Campagna campagna@amazon.com Agenda Describe the AWS Key Management Service Client Side Encryption AWS Encryption SDK Server Side Encryption S3 Object Encryption Amazon Simple Storage Service

387 views • 22 slides
Novel Encryption Method of GPS Information in Image File Using Format-preserving Encryption

Novel Encryption Method of GPS Information in Image File Using Format-preserving Encryption

Novel Encryption Method of GPS Information in Image File Using Format-preserving Encryption Changhyun Lee, Yeonju Choi, Hyeongmin Park, Kangbin Yim, and Sun-Young Lee Soonchunhyang University IMIS 2019 Presenter: Brandon Falk (

645 views • 21 slides
OPES and E2E Encryption Should OPES be compatible with end-to- end encryption? Define

OPES and E2E Encryption Should OPES be compatible with end-to- end encryption? Define

OPES and E2E Encryption Should OPES be compatible with end-to- end encryption? Define compatible Define the trust model Discuss pro and con Decide, spec, implement Goal: combine confidentiality with services, if

470 views • 11 slides
Advanced Encryption Standard

Advanced Encryption Standard

Advanced Encryption Standard 1 Advanced Encryption Standard (AES) Advanced Encryption Standard (AES) 1997 NIST call for candidate larger key size (bits): 128, 192, 256

645 views • 40 slides

More recommend