privacy preserving computation with trusted computing via
play

Privacy-Preserving Computation with Trusted Computing via - PowerPoint PPT Presentation

Mar 08, 2023 •126 likes •477 views

Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Hung Dang, Anh Dinh, Ee-Chien Chang, Beng Chin Ooi School of Computing National University of Singapore PETS 2017 Privacy-Preserving Computation with Trusted

  1. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Hung Dang, Anh Dinh, Ee-Chien Chang, Beng Chin Ooi School of Computing National University of Singapore PETS 2017

  2. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute The Problem ● Context: Processing large dataset with bounded private memory ● System and Threat Model: ○ Data is processed in an trusted External-memory execution environment with Computation bounded private memory ○ Data remains encrypted outside the trusted enviroment ○ The adversary observes access patterns, but cannot see the trusted environment’s internal state 2 PETS 2017

  3. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute The Problem ● Context: Processing large dataset with bounded private memory Access patterns leak ● System and Threat Model: sensitive information ○ Data is processed in an trusted External-memory execution environment with Computation bounded private memory ○ Data remains encrypted outside the trusted enviroment ○ The adversary observes access patterns, but cannot see the trusted environment’s internal state 2 PETS 2017

  4. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Access Pattern Leakage: Example The private memory size is S 1 S 2 2 1 3 2 4 consider merging two sorted sub-arrays 2 records 3 PETS 2017

  5. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Access Pattern Leakage: Example First records of S 1 and S 2 are S 1 S 2 retrieved 1 3 2 4 1 2 3 PETS 2017

  6. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Access Pattern Leakage: Example One record is S 1 S 2 writen out 1 3 2 4 2 1 3 PETS 2017

  7. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Access Pattern Leakage: Example The 2 nd record of S 1 is S 1 S 2 retrieved 1 3 2 4 3 2 1 3 PETS 2017

  8. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Access Pattern Leakage: Example S 1 contains the S 1 S 2 smallest record 1 3 2 4 3 2 1 3 PETS 2017

  9. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Possible Mitigations ● ORAM (Oblivious RAM) ○ Generic ○ Expensive: incurs Ω(log n) (amortized) overheads per each access ■ Not suitable for applications accessing entire dataset (e.g., sort, aggregation) ● Tailor-made Algorithms (Data-Oblivious algorithms) ○ Application-specific ○ More efficient (than employing ORAM) ○ Complex construction ■ Hard to implement and vet the trusted code base (TCB) 4 PETS 2017

  10. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Our Solution We seek an approach to design privacy-preserving algorithms that is: ● Expressive ○ Enable adoption of state-of-the-art external memory algorithms ● Simple ○ Ease of implementation and TCB vetting ● Low overhead 5 PETS 2017

  11. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Scramble-then-Compute ( STC ) Derive a privacy-preserving algorithm from an efficient but not necessarily privacy-preserving one: ● Privately scramble the input ○ Conceal correspondences between the original input and the scrambled data ● Apply the original (external-memory) algorithm on the scrambled data ○ Leverage on extensive studies to adopt the most suitable algorithm with the most well-tuned parameteres for a particular application at hand 6 PETS 2017

  12. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Scramble then Compute ( STC ) Derive a privacy-preserving algorithm from an efficient but not necessarily privacy-preserving one: ● Privately scramble the input ○ Conceal correspondences between the original input and the scrambled data ● Apply the original (external-memory) algorithm on the scrambled data ○ Leverage on extensive studies to adopt the most suitable algorithm with the most well-tuned parameteres for a particular application at hand Simplicity ✔ 6 PETS 2017

  13. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute STC - Scope STC supports a permutation-invariant # algorithm P if there exists an imitator 〈 T, P* 〉 of P ○ T , given X , outputs a permuted sequence of 〈 1,2,...,n 〉 ○ P* operates on T(X) exactly the same as P does on X (i.e., incur the same access pattern) # outputs the same Y for any permutation of X 7 PETS 2017

  14. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute STC - Scope STC supports a permutation-invariant # algorithm P if there exists an imitator 〈 T, P* 〉 of P ○ T , given X , outputs a permuted sequence of 〈 1,2,...,n 〉 ○ P* operates on T(X) exactly the same as P does on X (i.e., incur the same access pattern) Expressiveness ✔ # outputs the same Y for any permutation of X 7 PETS 2017

  15. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute STC - A Closer Look Given P operating on input X , STC derives a privacy-preserving algorithm A P : X’ ← Pre-Process (X) (if required) 1. S ← Scramble (X’) 2. Y’ ← P(S) 3. Y ← Post-Process (Y) (if required) 4. 8 PETS 2017

  16. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute STC - A Closer Look Given P operating on input X , STC derives a privacy-preserving algorithm A P : X’ ← Pre-Process (X) (if required) 1. ➢ ensure permutation-invariant requirement ➣ Data Oblivious S ← Scramble (X’) 2. ➣ Requires private ➢ based on Melbourne Shuffle Algorithm memory of size O(√n) Y’ ← P(S) 3. ➣ Runtime O(n) Y ← Post-Process (Y) (if required) 4. ➢ reverse effect of step 1 8 PETS 2017

  17. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute STC - A Closer Look Given P operating on input X , STC derives a Low overhead ✔ privacy-preserving algorithm A P : X’ ← Pre-Process (X) (if required) 1. ➢ ensure permutation-invariant requirement ➣ Data Oblivious S ← Scramble (X’) 2. ➣ Requires private ➢ based on Melbourne Shuffle Algorithm memory of size O(√n) Y’ ← P(S) 3. ➣ Runtime O(n) Y ← Post-Process (Y) (if required) 4. ➢ reverse effect of step 1 8 PETS 2017

  18. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute STC - A Closer Look E.g.,: Deriving a privacy-preserving sorting algorithm from external Given P operating on input X , STC derives a merge sort privacy-preserving algorithm A P : X 1 3 1 4 2 4 X’ ← Pre-Process (X) (if required) 1. S ← Scramble (X’) 2. Y’ ← P(S) 3. Y ← Post-Process (Y) (if required) 4. 8 PETS 2017

  19. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute STC - A Closer Look Add metadata to handle duplicates Given P operating on input X , STC derives a privacy-preserving algorithm A P : X 1 3 1 4 2 4 X’ ← Pre-Process (X) (if required) 1. X’ 1 0 3 1 1 2 4 3 2 4 4 5 S ← Scramble (X’) 2. Y’ ← P(S) 3. Y ← Post-Process (Y) (if required) 4. 8 PETS 2017

  20. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute STC - A Closer Look Privately scramble the input Given P operating on input X , STC derives a privacy-preserving algorithm A P : X 1 3 1 4 2 4 X’ ← Pre-Process (X) (if required) 1. X’ 1 0 3 1 1 2 4 3 2 4 4 5 S ← Scramble (X’) 2. S 4 3 1 2 2 4 3 1 4 5 1 0 Y’ ← P(S) 3. Y ← Post-Process (Y) (if required) 4. The scrambling hide correspondences between records of X’ and those of S 8 PETS 2017

  21. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute STC - A Closer Look Sort the scrambled input by external merge sort Given P operating on input X , STC derives a privacy-preserving algorithm A P : X 1 3 1 4 2 4 X’ ← Pre-Process (X) (if required) 1. X’ 1 0 3 1 1 2 4 3 2 4 4 5 S ← Scramble (X’) 2. S 4 3 1 2 2 4 3 1 4 5 1 0 Y’ ← P(S) 3. Y’ 1 0 1 2 2 4 3 1 4 3 4 5 Y ← Post-Process (Y) (if required) 4. Observation maded on S cannot be linked back to that of X’ 8 PETS 2017

  22. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute STC - A Closer Look Remove the metadata Given P operating on input X , STC derives a privacy-preserving algorithm A P : X 1 3 1 4 2 4 X’ ← Pre-Process (X) (if required) 1. X’ 1 0 3 1 1 2 4 3 2 4 4 5 S ← Scramble (X’) 2. S 4 3 1 2 2 4 3 1 4 5 1 0 Y’ ← P(S) 3. Y’ 1 0 1 2 2 4 3 1 4 3 4 5 Y ← Post-Process (Y) (if required) 4. Y 1 1 2 3 4 4 8 PETS 2017

  23. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Comparison with Alternative Solutions ORAM Tailor-made Algorithm STC Ω(log n) amortized Performance O(n) additive overhead less efficient than STC overhead per each Overhead per execution counterpart access Spark and many data Expressiveness all applications application-specific processing operations Design and moderate - complicated simple complicated Implement Effort 9 PETS 2017

Recommend

Secure Multiparty Computation Introduction to Privacy Preserving Distributed Data Mining Li

Secure Multiparty Computation Introduction to Privacy Preserving Distributed Data Mining Li

CS573 Data Privacy and Security Secure Multiparty Computation Introduction to Privacy Preserving Distributed Data Mining Li Xiong Slides credit: Chris Clifton, Purdue University; Murat Kantarcioglu, UT Dallas Outline Overview Data

901 views • 42 slides
Deploying Secure Computing for Real-world Applications Dan Bogdanov, PhD Head of Privacy

Deploying Secure Computing for Real-world Applications Dan Bogdanov, PhD Head of Privacy

Deploying Secure Computing for Real-world Applications Dan Bogdanov, PhD Head of Privacy Technology Development Cybernetica dan@cyber.ee The Sharemind Privacy-preserving Computing Platform Components for Privacy Encrypted Privacy

714 views • 28 slides
INTEGRAL PRIVACY COMPLIANT STATISTICS COMPUTATION NAVODA SENAVIRATHNE UNIVERSITY OF SKVDE,

INTEGRAL PRIVACY COMPLIANT STATISTICS COMPUTATION NAVODA SENAVIRATHNE UNIVERSITY OF SKVDE,

INTEGRAL PRIVACY COMPLIANT STATISTICS COMPUTATION NAVODA SENAVIRATHNE UNIVERSITY OF SKVDE, SWEDEN VICENTORRA UNIVERSITY OF MAYNOOTH, IRELAND CONTENT Privacy Preserving Data Analysis Integral Privacy Differential privacy

814 views • 29 slides
Privacy-Preserving Search of Similar Patients in Genomic Data Gilad Asharov Shai Halevi

Privacy-Preserving Search of Similar Patients in Genomic Data Gilad Asharov Shai Halevi

Privacy-Preserving Search of Similar Patients in Genomic Data Gilad Asharov Shai Halevi Yehuda Lindell Tal Rabin Secure Computation Computation on private inputs without revealing anything but the output Applications :

299 views • 25 slides
Privacy Preserving Protocols Workshop on Cryptography for the Internet of Things Jens Hermans KU

Privacy Preserving Protocols Workshop on Cryptography for the Internet of Things Jens Hermans KU

Privacy Preserving Protocols Privacy Preserving Protocols Workshop on Cryptography for the Internet of Things Jens Hermans KU Leuven - COSIC 20 November 2012 Privacy Preserving Protocols Introduction Cryptography in Daily Life RFID Privacy

1.04k views • 60 slides
Scalable Privacy-Preserving Computing with High Numerical Precision Dimitar Jetchev Chief

Scalable Privacy-Preserving Computing with High Numerical Precision Dimitar Jetchev Chief

Scalable Privacy-Preserving Computing with High Numerical Precision Dimitar Jetchev Chief Technology Officer Inpher Inc./Sarl 5 High-Precision Use Cases Iridium 33 and Kosmos-2251 Satellite Collision Collision - 2009 11,700 m/s

714 views • 56 slides
Privacy-Preserving Indexing for eHealth Information Networks Yuzhe Tang, Ting Wang, Ling Liu,

Privacy-Preserving Indexing for eHealth Information Networks Yuzhe Tang, Ting Wang, Ling Liu,

Privacy-Preserving Indexing for eHealth Information Networks Yuzhe Tang, Ting Wang, Ling Liu, Shicong Meng, and Balaji Palanisamy College of Computing, Georgia Institute of Technology Talk Overview Motivation Content Privacy issues in

963 views • 33 slides
Privacy-Enhanced Bi-Directional Communication in the Smart Grid using Trusted Computing Andrew

Privacy-Enhanced Bi-Directional Communication in the Smart Grid using Trusted Computing Andrew

Privacy-Enhanced Bi-Directional Communication in the Smart Grid using Trusted Computing Andrew Paverd, Andrew Martin, Ian Brown University of Oxford https://www.cs.ox.ac.uk/people/andrew.paverd/tre Smart Grid Architecture NIST Model Smart

538 views • 27 slides
Security and Privacy for Cloud Computing Refik Molva Cloud Computing Outsourcing

Security and Privacy for Cloud Computing Refik Molva Cloud Computing Outsourcing

Security and Privacy for Cloud Computing Refik Molva Cloud Computing Outsourcing Storage Computation High availability No maintenance Decreased Costs Elasticity & Flexibility Security and Privacy for Cloud

529 views • 36 slides
Privacy Preserving Data Mining Moheeb Rajab Agenda Overview and Terminology Motivation

Privacy Preserving Data Mining Moheeb Rajab Agenda Overview and Terminology Motivation

Privacy Preserving Data Mining Moheeb Rajab Agenda Overview and Terminology Motivation Active Research Areas Secure Multi-party Computation (SMC) Randomization approach Limitations Summary and Insights Overview

716 views • 53 slides
Privacy-preserving Information Sharing: Crypto Tools and Applications Emiliano De Cristofaro

Privacy-preserving Information Sharing: Crypto Tools and Applications Emiliano De Cristofaro

Privacy-preserving Information Sharing: Crypto Tools and Applications Emiliano De Cristofaro University College London (UCL) https://emilianodc.com Privacy-preserving what ? Parties with limited mutual trust willing or required to share

1.1k views • 66 slides
Chapter 10 Trusted Computing Trusted Computing Chapter 10 and Multilevel Security and

Chapter 10 Trusted Computing Trusted Computing Chapter 10 and Multilevel Security and

Computer S ecurity: Principles and Practice Chapter 10 Trusted Computing Trusted Computing Chapter 10 and Multilevel Security and Multilevel Security First Edition by William S tallings and Lawrie Brown Lecture slides by Lawrie

637 views • 40 slides
Secure Outsourcing Computation Li Xiong Outline Cloud computing Computing on encrypted

Secure Outsourcing Computation Li Xiong Outline Cloud computing Computing on encrypted

CS573 Data Privacy and Security Secure Outsourcing Computation Li Xiong Outline Cloud computing Computing on encrypted data Homomorphic encryption What is Cloud Computing ? Cloud computing Type of computing that relies on sharing

1.29k views • 62 slides
Preserving Privacy in Social Networks Against Neighborhood Attacks Bin Zhou Jian Pei School of

Preserving Privacy in Social Networks Against Neighborhood Attacks Bin Zhou Jian Pei School of

Preserving Privacy in Social Networks Against Neighborhood Attacks Bin Zhou Jian Pei School of Computing Science, Simon Fraser University 8888 University Drive, Burnaby, B.C., V5A1S6 Canada { bzhou, jpei } @cs.sfu.ca Dell Ed Abstract

278 views • 10 slides
New Directions in Privacy- preserving Machine Learning Kamalika Chaudhuri University of

New Directions in Privacy- preserving Machine Learning Kamalika Chaudhuri University of

New Directions in Privacy- preserving Machine Learning Kamalika Chaudhuri University of California, San Diego Sensitive Data Medical Records Genetic Data Search Logs AOL Violates Privacy AOL Violates Privacy Netflix Violates Privacy [NS08]

957 views • 92 slides
Preserving the Privacy of Sensitive Relationships in Graph Data Motivation Valuable Data! No

Preserving the Privacy of Sensitive Relationships in Graph Data Motivation Valuable Data! No

Preserving the Privacy of Sensitive Relationships in Graph Data Motivation Valuable Data! No privacy breaches! Public Data Anonymization Data representation? Privacy breach? Value of data? Data publisher Privacy Analyst Work by: Elena

80 views • 3 slides
Collaborative Privacy Preserving Data Mining in Vertically Partitioned Databases Ehud Gudes

Collaborative Privacy Preserving Data Mining in Vertically Partitioned Databases Ehud Gudes

Collaborative Privacy Preserving Data Mining in Vertically Partitioned Databases Ehud Gudes Ben-Gurion University, Israel This talk presents joint work with Boris Rozenberg Talk Outline Motivation for Privacy-Preserving Distributed Data

1.48k views • 68 slides
Privacy preserving data mining randomized response and association rule hiding Li Xiong

Privacy preserving data mining randomized response and association rule hiding Li Xiong

Privacy preserving data mining randomized response and association rule hiding Li Xiong CS573 Data Privacy and Anonymity Partial slides credit: W. Du, Syracuse University, Y. Gao, Peking University Privacy Preserving Data Mining

659 views • 39 slides
Privacy-preserving Biometrics in practice: diffjcult to sell Carmela Troncoso (Gradiant) My

Privacy-preserving Biometrics in practice: diffjcult to sell Carmela Troncoso (Gradiant) My

Privacy-preserving Biometrics in practice: diffjcult to sell Carmela Troncoso (Gradiant) My experience with biometrics and privacy Academic background on privacy Gradiants goal: transfer of knowledge to industry We bring state of

193 views • 6 slides
Network Privacy Mostly issues of preserving privacy of data flowing through network Start

Network Privacy Mostly issues of preserving privacy of data flowing through network Start

Network Privacy Mostly issues of preserving privacy of data flowing through network Start with encryption With good encryption, data values not readable So whats the problem? Lecture 17 Page 1 CS 236 Online Traffic Analysis

532 views • 21 slides
On the Theory and Practice of Privacy-Preserving Bayesian Data Analysis James Foulds,* Joseph

On the Theory and Practice of Privacy-Preserving Bayesian Data Analysis James Foulds,* Joseph

On the Theory and Practice of Privacy-Preserving Bayesian Data Analysis James Foulds,* Joseph Geumlek,* Max Welling, + Kamalika Chaudhuri* + University of Amsterdam *University of California, San Diego Overview Bayesian Privacy-preserving

878 views • 75 slides
Trusted Mobile Platforms: Part 1: An introduction to trusted computing Chris Mitchell Royal

Trusted Mobile Platforms: Part 1: An introduction to trusted computing Chris Mitchell Royal

Trusted Mobile Platforms: Part 1: An introduction to trusted computing Chris Mitchell Royal Holloway, University of London c.mitchell@rhul.ac.uk http://www.isg.rhul.ac.uk/~cjm Contents What is trusted computing? The TCG TCG

1.43k views • 114 slides
Privacy-Preserving Outsourcing by Distributed Verifiable Computation Meilof Veeningen Philips

Privacy-Preserving Outsourcing by Distributed Verifiable Computation Meilof Veeningen Philips

Privacy-Preserving Outsourcing by Distributed Verifiable Computation Meilof Veeningen Philips Research MPC 2016, Aarhus, May 30 2016 2 Philips Research 3 Philips Research 4 Philips Research 5 Philips Research 6 Philips Research

529 views • 31 slides
BLAZE: BLAZING FAST PRIVACY-PRESERVING MACHINE LEARNING ARPITA PATRA AND AJITH SURESH Ajith

BLAZE: BLAZING FAST PRIVACY-PRESERVING MACHINE LEARNING ARPITA PATRA AND AJITH SURESH Ajith

BLAZE: BLAZING FAST PRIVACY-PRESERVING MACHINE LEARNING ARPITA PATRA AND AJITH SURESH Ajith Suresh CrIS Lab, IISc https://www.csa.iisc.ac.in/~cris Outline q Secure Multi-party Computation (MPC) q MPC for small number of parties (3PC) q Our

2.46k views • 53 slides

More recommend