verifiable set operations over outsourced databases
play

Verifiable Set Operations over Outsourced Databases Ran Dimitris - PowerPoint PPT Presentation

Mar 01, 2024 •322 likes •972 views

Verifiable Set Operations over Outsourced Databases Ran Dimitris Nikos Omer Canetti Papadopoulos Triandopoulos Paneth Boston University Boston RSA Laboratories Boston & Tel Aviv University University & Boston University

  1. Verifiable Set Operations over Outsourced Databases Ran Dimitris Nikos Omer Canetti Papadopoulos Triandopoulos Paneth Boston University Boston RSA Laboratories Boston & Tel Aviv University University & Boston University University

  2. Outsourced Computation ● Modern Computing → asymmetric computational environment ● Powerful Servers ● Multiple types of “weak” devices Big Data

  3. Outsourced Computation ● Modern Computing → asymmetric computational environment ● Powerful Servers ● Multiple types of ● Cloud Computing “weak” devices computation Big Data result

  4. Outsourced Computation ● Modern Computing → asymmetric computational environment ● Powerful Servers ● Multiple types of ● Cloud Computing “weak” devices computation Big Data result ● Integrity-of-computation

  5. Outsourced Computation ● Modern Computing → asymmetric computational environment ● Powerful Servers ● Multiple types of ● Cloud Computing “weak” devices computation Big Data result ● Integrity-of-computation Did you do it correctly?

  6. Verifiable Computation (VC) Protocol

  7. Verifiable Computation (VC) Protocol x, f

  8. Verifiable Computation (VC) Protocol x, f y = f(x), Π Verify(x,f,y,Π) = accept/reject

  9. Verifiable Computation (VC) Protocol ● Untrusted prover – server can arbitrarily cheat x, f y = f(x), Π Verify(x,f,y,Π) = accept/reject Soundness: Verify accepts with negligible probability if y ≠ f(x)

  10. Verifiable Computation (VC) Protocol ● Untrusted prover – server can arbitrarily cheat x, f y = f(x), Π Verify(x,f,y,Π) = accept/reject Soundness: Verify accepts with negligible probability if y ≠ f(x) Efficiency: Verification should be faster than computation

  11. VC with Pre-processing ● Client runs expensive pre-processing for f once f Setup(sk,f) = f

  12. VC with Pre-processing ● Client runs expensive pre-processing for f once f f Setup(sk,f) = f

  13. VC with Pre-processing ● Client runs expensive pre-processing for f once ● Amortizes cost over multiple executions f x 1 f . y = f(x 1 ), Π . . Setup(sk,f) = f x i y = f(x i ), Π

  14. VC with Pre-processing ● Client runs expensive pre-processing for f once ● Amortizes cost over multiple executions f x 1 f . y = f(x 1 ), Π . . Setup(sk,f) = f x i y = f(x i ), Π ● Pre-processing not inherently necessary [Bitansky,Canetti,Chiesa,Tromer'13] –

  15. VC with Outsourced Storage dataset D

  16. VC with Outsourced Storage dataset D Setup(sk,D) = auth(D)

  17. VC with Outsourced Storage VC with Outsourced Storage dataset D D, auth(D) digest d Setup(sk,D) = auth(D)

  18. VC with Outsourced Storage VC with Outsourced Storage dataset D D, auth(D) query Q digest d y = Q(D), Π Setup(sk,D) = auth(D)

  19. VC with Outsourced Storage VC with Outsourced Storage dataset D D, auth(D) query Q digest d y = Q(D), Π Setup(sk,D) = auth(D) ● Studied in existing work – memory delegation [Chung,Kalai,Liu,Raz'11] – outsourced datasets [Backes,Fiore,Reischuk'13] – authenticated data structures [Nissim,Naor'98][Tamassia'03]

  20. VC with Outsourced Storage dataset D D, auth(D) query Q digest d y = Q(D), Π Setup(sk,D) = auth(D)

  21. VC with Outsourced Storage VC with Outsourced Storage dataset D D, auth(D) query Q digest d y = Q(D), Π Setup(sk,D) = auth(D) ● Dual of the classic model – fix function / fix data

  22. VC with Outsourced Storage VC with Outsourced Storage dataset D D, auth(D) query Q digest d y = Q(D), Π Setup(sk,D) = auth(D) ● Dual of the classic model – fix function / fix data ● Additional query type: updates in D

  23. VC with Outsourced Storage VC with Outsourced Storage dataset D D, auth(D) query Q digest d y = Q(D), Π Setup(sk,D) = auth(D) ● Dual of the classic model – fix function / fix data ● Additional query type: updates in D – handle updates efficiently

  24. Security Game Gen($) → sk,pk

  25. Security Game pk Gen($) → sk,pk

  26. Security Game pk D 0 Gen($) → sk,pk auth(D 0 ) Provides oracle access to Prove and Verify Setup and Update using pk

  27. Security Game pk D 0 Gen($) → sk,pk auth(D 0 ) update u 1 auth(D 0 , u 1 ) . Provides oracle . access to . Prove and Verify Setup and Update using pk update u t auth(D t-1 , u t )

  28. Security Game Finally : {D i ,auth(D i ),d, Q, A * , Π} for 0 ≤ i ≤ t Adv wins if A * is not the correct answer but Verify accepts

  29. Known Solutions (in this model and others) ● Theoretical Results [Micali'00],[Ishai,Kushilevitz,Ostrovsky'08], [Goldwasser,Kalai,Rothblum'08], [Applebaum,Ishai,Kusilevitz'10], [Gennaro,Gentry,Parno'10] [Chung,Kalai,Vadhan'10], [Canetti,Riva,Rothblum'11], [Gennaro,Gentry,Parno,Raykova'13], [Bitansky,Canetti,Chiesa,Tromer'13],... ● Implementation Works [Cormode,Mitzenmacher,Thaler'12] [Setty,Braun,Vu,Blumberg,Parno,Walfish'13], [Parno,Gentry,Howell,Raykova'13] [Ben-Sasson,Chiesa,Genkin,Tromer,Virza'13]...

  30. State of the art ✔ Excellent asymptotic behavior – non-interactive – general (i.e. for any language in NP) – verification cost O ( |input| + |output| ) – O ( 1 ) proof size – poly-log overhead for proof computation

  31. State of the art ✔ Excellent asymptotic behavior – non-interactive – general (i.e. for any language in NP) – verification cost O ( |input| + |output| ) – O ( 1 ) proof size – poly-log overhead for proof computation ✗ High concrete overhead – server's cost prohibitive for general functions

  32. Examples of Practical Issues ● Delegation in the circuit-based model of computation – reduce concrete functions to circuit problems ● Prover's overhead should be query-specific – not determined by “largest” query

  33. Examples of Practical Issues ● Delegation in the circuit-based model of computation – reduce concrete functions to circuit problems ● Prover's overhead should be query-specific – not determined by “largest” query Recent works explore alternative models [Goldwasser,Kalai,Popa,Vaikuntanathan,Zeldovich'13] – [Gentry,Halevi,Raykova,Wichs'14] –

  34. In this Work ● Focus on specific class of functions – exploit algebraic structure for practical solutions – existing works ● [Benabbas,Gennaro,Vahlis'11],[Backes,Fiore,Reischuk'13], [Papamanthou,Tamassia,Triandopoulos'11] ...

  35. In this Work ● Focus on specific class of functions – exploit algebraic structure for practical solutions – existing works ● [Benabbas,Gennaro,Vahlis'11],[Backes,Fiore,Reischuk'13], [Papamanthou,Tamassia,Triandopoulos'11] ... ● Functionality: Nested Intersections, Unions and Set Differences

  36. In this Work ● Focus on specific class of functions – exploit algebraic structure for practical solutions – existing works ● [Benabbas,Gennaro,Vahlis'11],[Backes,Fiore,Reischuk'13], [Papamanthou,Tamassia,Triandopoulos'11] ... ● Functionality: Nested Intersections, Unions and Set Differences ● Applications – A rich class of SQL queries – Keyword search – Similarity Measurements (e.g. Jaccard distance) – Set Membership

  37. Outsourced Sets ● Database D consisting of m sets X 1 ,...,X m with elements from Z p

  38. Outsourced Sets ● Database D consisting of m sets X 1 ,...,X m with elements from Z p ● Supports queries expressed as polynomial ∩ length formulas of nested intersections, unions, and set differences U \ ∪ ( X 8 ∩ X 5 )) ∩ ( X 1 \ X 9 )) ● e.g. (( X 2 ∩ X 4 ) ∩ ∩ X 5 X 6 X 3 X 4 X 1 X 2

  39. Outsourced Sets ● Database D consisting of m sets X 1 ,...,X m with elements from Z p ● Supports queries expressed as polynomial ∩ length formulas of nested intersections, unions, and set differences U \ ∪ ( X 8 ∩ X 5 )) ∩ ( X 1 \ X 9 )) ● e.g. (( X 2 ∩ X 4 ) ∩ ∩ X 5 X 6 X 3 X 4 X 1 X 2 ● D changes dynamically under element insertion and deletion

  40. Our Result ● VC with outsourced storage for sets: – query-specific proof-construction cost – efficient non-interactive updates – circuit-independent – public verifiability – concrete complexity analysis ● low involved constants

  41. Our Result ● Setup cost: – client's pre-processing cost → O(|D|) ● Given query Q computable in O(N) with answer A : – verification time O(|Q| + |A|) – proof size O(|Q|) – proof construction O(N) ● Update cost: – O(1) operations for client and server

  42. Our Result ● Setup cost: – client's pre-processing cost → O(|D|) ● Given query Q computable in O(N) with answer A : – verification time O(|Q| + |A|) independent of – proof size O(|Q|) cardinalities of – proof construction O(N) other sets ● Update cost: – O(1) operations for client and server

  43. Large Intermediate Results ∩ Note Circle size denotes set U U cardinality X 5 X 6 X 6 X 1 X 2 X 3 X 4 Verification cost and proof size should be oblivious to the set cardinalities (except for answer set)

  44. Main Idea (attempt 1) ● i [Papamanthou,Tamassia,Triandopoulos'11] – construction for a single set operation based on bilinear accumulators I 1 ,Π 1 ∩ X 1 X 2

  45. Main Idea (attempt 1) ● i [Papamanthou,Tamassia,Triandopoulos'11] – construction for a single set operation based on bilinear accumulators ∩ U U I 1 ,Π 1 ∩ ∩ X 5 X 6 X 3 X 4 X 1 X 2

Recommend

over Dynamic Outsourced Databases Yupeng Zhang, Daniel Genkin, Jonathan Katz, Dimitrios

over Dynamic Outsourced Databases Yupeng Zhang, Daniel Genkin, Jonathan Katz, Dimitrios

vSQL: Verifying Arbitrary SQL Queries over Dynamic Outsourced Databases Yupeng Zhang, Daniel Genkin, Jonathan Katz, Dimitrios Papadopoulos and Charalampos Papamanthou Verifiable Databases client server SQL database query result + proof

412 views • 30 slides
Why Encrypt Data? We have already discussed authentication and access control as means to

Why Encrypt Data? We have already discussed authentication and access control as means to

Security in Outsourced Databases II Outsourced Databases II (Query Processing on Encrypted Data) Disks replaced Data worthless if encrypted Customer Credit for maintenance Card Number Laptops stolen Backups lost p 1 Why Encrypt Data?

759 views • 19 slides
Frequency-hiding Dependency-preserving Encryption for Outsourced Databases ICDE17 Boxiang

Frequency-hiding Dependency-preserving Encryption for Outsourced Databases ICDE17 Boxiang

Frequency-hiding Dependency-preserving Encryption for Outsourced Databases ICDE17 Boxiang Dong 1 Wendy Wang 2 1 Montclair State University Montclair, NJ 2 Stevens Institute of Technology Hoboken, NJ April 20, 2017

1.01k views • 47 slides
S Security in Outsourced i i O d Databases Databases (Query Answer Assurance) (Q y ) 1

S Security in Outsourced i i O d Databases Databases (Query Answer Assurance) (Q y ) 1

S Security in Outsourced i i O d Databases Databases (Query Answer Assurance) (Q y ) 1 Traditional Client-Server Arch Traditional Client Server Arch. DB Client Query Results Results Owner Client queries are satisfied by a

624 views • 59 slides
Privacy-preserving and Authenticated Data Cleaning on Outsourced Databases Thesis Defense

Privacy-preserving and Authenticated Data Cleaning on Outsourced Databases Thesis Defense

Privacy-preserving and Authenticated Data Cleaning on Outsourced Databases Thesis Defense Boxiang Dong THESIS COMMITTEE: Advisor: Prof. Wendy Hui Wang Prof. Yingying Chen Prof. David Naumann Prof. Antonio Nicolosi Department of Computer

1.11k views • 61 slides
Slalom: Fast, Verifiable and Private Execution of Neural Networks in Trusted Hardware Florian

Slalom: Fast, Verifiable and Private Execution of Neural Networks in Trusted Hardware Florian

Slalom: Fast, Verifiable and Private Execution of Neural Networks in Trusted Hardware Florian Tramr (joint work with Dan Boneh) Intel, Santa Clara August 30 th 2018 Trusted execution of ML: 3 motivating scenarios 1. Outsourced ML Data

781 views • 21 slides
Outsourced Presentation developed by Meg Girard and Dennis White Outsourced is about the manager

Outsourced Presentation developed by Meg Girard and Dennis White Outsourced is about the manager

Learning About Culture Using the Film Outsourced Presentation developed by Meg Girard and Dennis White Outsourced is about the manager of an American call center, or order fulfillment center, in the US. They process orders for novelty items

1.26k views • 123 slides
Web Architecture SY306 Web and Databases for Cyber Operations Set #13: Databases - The Relational

Web Architecture SY306 Web and Databases for Cyber Operations Set #13: Databases - The Relational

Web Architecture SY306 Web and Databases for Cyber Operations Set #13: Databases - The Relational Model and SQL https://www.w3schools.com/sql/default.asp https://www.tutorialspoint.com/sql/ 1 Relational Model - Tables Keys UserName Gender

241 views • 9 slides
VERIFIABLE DELAY FUNCTIONS Benjamin Wesolowski VERIFIABLE DELAY FUNCTIONS How to slow things

VERIFIABLE DELAY FUNCTIONS Benjamin Wesolowski VERIFIABLE DELAY FUNCTIONS How to slow things

Confrence de lancement de l'ANR Ciao, Fvrier 2020, Bordeaux, France VERIFIABLE DELAY FUNCTIONS Benjamin Wesolowski VERIFIABLE DELAY FUNCTIONS How to slow things down VERIFIABLE DELAY FUNCTIONS [Boneh, Bonneau, Bnz, Fisch 2018] A VDF is

616 views • 32 slides
Secure and Efficient Access to Outsourced Data Secure and Efficient Access to Outsourced Data

Secure and Efficient Access to Outsourced Data Secure and Efficient Access to Outsourced Data

Secure and Efficient Access to Outsourced Data Secure and Efficient Access to Outsourced Data Weichao Wang, Zhiwei Li, Rodney Owens, Bharat Bhargava CCSW 2009: The ACM Cloud Computing Security Workshop 1 The Problem Providing secure and

414 views • 19 slides
Verifiable Random Functions and Verifiable Delay Functions Caleb Smith University of

Verifiable Random Functions and Verifiable Delay Functions Caleb Smith University of

Verifiable Random Functions and Verifiable Delay Functions Caleb Smith University of Virginia Why do these matter? Alternative consensus protocols Applications to public randomness generation Leader election Bitcoin Proof of Work

355 views • 19 slides
Learning to Reconstruct: Statistical Learning Theory and Encrypted Database Attacks Paul Grubbs ,

Learning to Reconstruct: Statistical Learning Theory and Encrypted Database Attacks Paul Grubbs ,

Learning to Reconstruct: Statistical Learning Theory and Encrypted Database Attacks Paul Grubbs , Marie-Sarah Lacharit, Brice Minaud, Kenny Paterson pag225@cornell.edu, @pag_crypto Outsourced Databases Database Encrypting Outsourced

705 views • 23 slides
SY306 Web and Databases for Cyber Operations Cascading Style Sheets JavaScript, Dynamic

SY306 Web and Databases for Cyber Operations Cascading Style Sheets JavaScript, Dynamic

2 Things well learn and do HTML5 basics, tables, forms SY306 Web and Databases for Cyber Operations Cascading Style Sheets JavaScript, Dynamic HTML CGI / Python Slide Set #9: CGI with Python Databases Relational

359 views • 6 slides
SY306 Web and Databases for Cyber Operations Slide Set #3: CSS

SY306 Web and Databases for Cyber Operations Slide Set #3: CSS

SY306 Web and Databases for Cyber Operations Slide Set #3: CSS http://www.w3schools.com/css/default.asp Style! 1 ClickJacking Attack! Past Clickjacking attacks By loading Adobe Flash plugin settings page into an invisible iframe, an

211 views • 18 slides
Verifiable Cloud Outsourcing for Network Func9ons (+

Verifiable Cloud Outsourcing for Network Func9ons (+

Verifiable Cloud Outsourcing for Network Func9ons (+ Verifiable Resource Accoun9ng for Cloud Services) Vyas Sekar vNFO joint with Seyed Fayazbakhsh,

434 views • 28 slides
PIC/S Guide to GMP PE009-13 Key Changes to Chapter 7 Outsourced Activities Emmett Broderick

PIC/S Guide to GMP PE009-13 Key Changes to Chapter 7 Outsourced Activities Emmett Broderick

PIC/S Guide to GMP PE009-13 Key Changes to Chapter 7 Outsourced Activities Emmett Broderick GMP Inspector Manufacturing Quality Branch June 2018 Key Changes to Chapter 7 Outsourced Activities Title/ Scope Change Contract Giver

337 views • 10 slides
SY306 Web and Databases for Cyber Operations Set #16: Sessions

SY306 Web and Databases for Cyber Operations Set #16: Sessions

SY306 Web and Databases for Cyber Operations Set #16: Sessions http://cgi.tutorial.codepoint.net/session Logging In Correctly Unique session IDs identify your client No other client who has connected to the website should have the same

492 views • 4 slides
Generating Verifiable Java Code from Verified PVS Specifications NFM2012 Generating Verifiable

Generating Verifiable Java Code from Verified PVS Specifications NFM2012 Generating Verifiable

Leonard Lensink, Sjaak Smetsers and Marko van Eekelen Generating Verifiable Java Code from Verified PVS Specifications NFM2012 Generating Verifiable Java Code from Verified PVS Specifications Overview Motivation Code generation

544 views • 26 slides
Secure Signal Processing for Outsourced Face Verification Biomtrie, Indexation multimdia et

Secure Signal Processing for Outsourced Face Verification Biomtrie, Indexation multimdia et

Secure Signal Processing for Outsourced Face Verification Biomtrie, Indexation multimdia et Vie prive 6th October 2015 Paris (Telecom ParisTech) Dr. Juan R. Troncoso Pastoriza troncoso@gts.uvigo.es Outline Privacy in Outsourced

555 views • 43 slides
Creating Databases and Tables Introduction to Databases in Python Creating Databases

Creating Databases and Tables Introduction to Databases in Python Creating Databases

INTRODUCTION TO DATABASES IN PYTHON Creating Databases and Tables Introduction to Databases in Python Creating Databases Varies by the database type Databases like PostgreSQL and MySQL have command line tools to initialize

878 views • 31 slides
SQL Structured Query Language (SQL) CS 235: The language of databases Based on

SQL Structured Query Language (SQL) CS 235: The language of databases Based on

SQL Structured Query Language (SQL) CS 235: The language of databases Based on relational algebra Introduction to Databases extended algebra operations other extensions. Svetlozar Nestorov Lecture Notes #9 SQL Queries

316 views • 4 slides
SY306 Web and Databases for Cyber Operations SlideSet #21: HTTP Authentication

SY306 Web and Databases for Cyber Operations SlideSet #21: HTTP Authentication

SY306 Web and Databases for Cyber Operations SlideSet #21: HTTP Authentication http://www.httpwatch.com/httpgallery/authentication/ http://httpd.apache.org/docs/2.2/howto/auth.html Outline HTTP Basic Authentication HTTP Digest

226 views • 8 slides
SQL - The Language of Databases Developed by IBM in the 1970s Create and process database

SQL - The Language of Databases Developed by IBM in the 1970s Create and process database

SY306 Web and Databases for Cyber Operations SQL: Structured Query Language 1 SQL - The Language of Databases Developed by IBM in the 1970s Create and process database data SQL programming is a critical skill !!! 2 1 Relational

247 views • 11 slides
Databases and PHP Accessing databases from PHP PHP & Databases l PHP can connect to

Databases and PHP Accessing databases from PHP PHP & Databases l PHP can connect to

Databases and PHP Accessing databases from PHP PHP & Databases l PHP can connect to virtually any database l There are specific functions built-into PHP to connect with some DB l There is also generic ODBC functions that will work with many

868 views • 28 slides

More recommend