enc encryp ypted sear ed search h
play

Enc Encryp ypted Sear ed Search h Seny Kamara Brown University - PowerPoint PPT Presentation

Sep 19, 2023 •115 likes •431 views

Enc Encryp ypted Sear ed Search h Seny Kamara Brown University 2 3 4 Q: Why is this happening? 5 Big Data Industry and Governments want more data NaDonal security Machine learning Business analyDcs NLP

  1. Enc Encryp ypted Sear ed Search h Seny Kamara Brown University

  2. 2

  3. 3

  4. 4

  5. Q: Why is this happening? 5

  6. Big Data ► Industry and Governments want more data ► NaDonal security ► Machine learning ► Business analyDcs ► NLP ► LocaDon-based services ► … 6

  7. Big Data u Harder to secure u More intrusive & sensitive u NSA Bluffdale holds 2EBs! (2K PBs) u Photos, medical records u Facebook holds 300PBs of photos/ u Location data, email, videos u browsing history, voicemails u Vs. nation states, intelligence u Greater need for security agencies, organized crime, insiders, … 7

  8. Big Data u End-to-end (e2e) encryption! u Impossible to work with u Reduces attack surface u Lose search, DBs, IR u Secure small key instead of Big Data u Find your photo among 300PBs? u Rank results? 8

  9. Q: Can we search on encrypted data? 9

  10. An InteresDng QuesDon Databases Data Structures Graph Theory Cryptography InformaDon Retrieval Combinatorial OpDmizaDon 10 StaDsDcs

  11. A LucraDve QuesDon ► Startups ► Major Corporations ► Funding agencies ► CipherCloud ($30M+$50M) ► Microsoft, IBM, ► IARPA ► Navajo (Salesforce) ► Google, Yahoo ► DARPA ► SkyHigh , Vaultive, Inpher ► Hitachi, Fujitsu ► NSF ► Bitglass, Private Machines, … 11

  12. “There are a lot of advancements in things like encrypted search ...but in general it is a difficult problem” -- Edward Snowden @ SXSW‘14 12

  13. Encrypted Search SoluDons 13

  14. Usage EDB tk DB DB 14

  15. Desiderata St Storag age le leak akag age Siz Size of f EDB EDB EDB Se Sear arch h tk Dme me Siz Size of f tk tk 15 Query leakage Qu

  16. Many Approaches ► Stream ciphers [SWP01] ► BuckeDng [HILM02] ► Structured and searchable encrypDon (StE/SSE) [SWP01,CGKO06,CK10] ► Oblivious RAM (ORAM) [GO96] ► FuncDonal encrypDon (e.g., PEKS) [BCOP06] ► MulD-party computaDon (MPC) [Yao82,GMW87] ► Property-preserving encrypDon (PPE) [AKSX04,BBO06,BCLO09] ► Fully-homomorphic encrypDon [G09] 16

  17. Tradeoffs: Efficiency vs. Security Effic fficiency ST STE/SSE-based PPE-based skFE-based pkFE-based ORAM-based FHE-based Leak Leakag age e 17

  18. Tradeoffs: FuncDonality vs. Efficiency FuncDonality Fu ORAM-based SQL QL PPE PPE-based -based FHE-based STE/SSE-based SK-FE-based NoSQL QL PK-FE-based Effic fficiency 18

  19. Leakage ► TheoreDcal Cryptography [Goldwasser-Micali82,…] ► A great success story ► Helps us reason about confidenDality, integrity, … ► Focused on leakage-free cryptography ► Real-world systems security relies on tradeoffs ► No cryptographic foundaDons for tradeoffs ► Can we leak X but not Y? ► How do we model leakage? 19

  20. Leakage [Curtmola-Garay-K.-Ostrovsky06, Chase-K.10, Islam-Kuzu-Kantarcioglu12, K.15] Leakage cryptanalysis Leakage analysis Proof of security ► Leakage analysis: what is being leaked? ► Proof: prove that soluDon leaks no more ► Cryptanalysis: can we exploit the leakage? 20

  21. ApplicaDons 21

  22. Encrypted Search Engines ► Desktop search ► Windows search, Apple Spotlight ► Personal cloud storage ► Dropbox, OneDrive, iCloud, … ► Webmail ► Gmail, Yahoo! Mail, Outlook.com,… 22

  23. Encrypted DBs ► Standard DBs ► DB encrypted in memory ► Cloud DBs ► DB encrypted in cloud 23

  24. Encrypted NSA Metadata Program [K.14] 1 3 2 ► To & from numbers, Dme of call, duraDon for all US-to-US, US-to-Foreign and Foreign-to-US calls 1 ► NSA DB can only be queried by individual phone number (seed) 2 ► Analyst queries must be approved by small number of NSA officials 3

  25. Systems (Provably Secure) 25

  26. Systems ► CS2 (C++) ► BlindSeer (C++) [IARPA] ► Microsos Research, 2012 ► Columbia & Bell Labs, 2014 ► Queries: single keyword search ► Queries: boolean ► 16MB email collecDon in 53ms ► SyntheDc dataset ► Search Dme ► Fo For (w 1 an and w w 2 ): 250ms ► w 1 in 1 docs ► w 2 in 10K docs 26

  27. Systems ► IBM-UCI (C++) [IARPA] ► Clusion (Java) ► IBM Research & UC Irvine, 2013 ► Brown & Colorado St., 2016 ► Queries: conjuncDve ► Queries: Boolean ► 1.3GB email collecDon ► 1.3GB email collecDon ► Search Dme ► Search Dme ► Fo For (w 1 an and w w 2 ): 5ms ► For (w (w 1 or w or w 2 ) and (w ) and (w 3 or w or w 4 ) in ) in 1.5 1.5ms ms ► w 1 in 15 docs ► (w (w 1 or w or w 2 ) ) in 10 docs ► w 2 in 1M docs ► (w (w 3 or w or w 4 ) ) in 1M docs 27

  28. Systems ► GRECS ► Microsos Research, Boston U., Harvard & Ben Gurion, 2015 ► Queries: (approximate) shortest distance on graphs ► 1.6M nodes & 11M edges ► Query Dme: 10ms 28

  29. Conclusions ► ExciDng and acDve area of research ► Big potenDal impact in pracDce ► Lots of new research direcDons in theory and systems ► PotenDal for collaboraDon between many areas of CS ► Algorithms and data structures ► Databases ► InformaDon retrieval ► Combinatorial opDmizaDon ► StaDsDcs 29

  30. 30

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Ob Obser servati ational nal Sear Search ches f es for Hi High-z G z Galax alaxies es

Ob Obser servati ational nal Sear Search ches f es for Hi High-z G z Galax alaxies es

Ob Obser servati ational nal Sear Search ches f es for Hi High-z G z Galax alaxies es Ho Hosti sting ng Pop PopII III Star Stars s To Tohru N Nag agao ao (Ehime e Un Univ iv, Ja , Japan) De Deciph cipherin ing th

352 views • 22 slides
Risin Rising g 2L Job Sear 2L Job Search h Ov Over ervie view Harvard Law School Bernard

Risin Rising g 2L Job Sear 2L Job Search h Ov Over ervie view Harvard Law School Bernard

Risin Rising g 2L Job Sear 2L Job Search h Ov Over ervie view Harvard Law School Bernard Koteen Office of Public Interest Advising The he Bi Big Pictur g Picture HLS 3Ls continue to be very successful in landing post-graduate public

500 views • 20 slides
SEAR JIP The value of sharing of lessons learned on subsea integrity and reliability Agenda

SEAR JIP The value of sharing of lessons learned on subsea integrity and reliability Agenda

SEAR JIP The value of sharing of lessons learned on subsea integrity and reliability Agenda 1 Overview 2 Challenges 3 SEAR Reliability Database 4 SEAR Testing Program 5 Outlook 2 Overview 6 Operators participating on

609 views • 12 slides
Exploi'ng Leakage in Searchable Encryp'on and Machine

Exploi'ng Leakage in Searchable Encryp'on and Machine

Exploi'ng Leakage in Searchable Encryp'on and Machine Learning Tom Ristenpart Covering joint work with : David Cash, Paul Grubbs, Jason Perry

875 views • 56 slides
Symmetric Key Encryp.on 9/9/2009 598MAN Applied Cryptography 1 Outline Recall:

Symmetric Key Encryp.on 9/9/2009 598MAN Applied Cryptography 1 Outline Recall:

Symmetric Key Encryp.on 9/9/2009 598MAN Applied Cryptography 1 Outline Recall: defini.ons of encryp.on Perfect secrecy CPA security CCA security Today Prac.cal construc.ons 9/9/2009 598MAN Applied Cryptography

490 views • 28 slides
Un Unin informed d Se Sear arch ch Com omputer Science c cpsc sc322, Lecture 5 5 (Te

Un Unin informed d Se Sear arch ch Com omputer Science c cpsc sc322, Lecture 5 5 (Te

Un Unin informed d Se Sear arch ch Com omputer Science c cpsc sc322, Lecture 5 5 (Te Text xtboo ook k Chpt 3.5) May ay 1 18, 2 2017 CPSC 322, Lecture 5 Slide 1 Recap ap Search is a key computational mechanism in many AI

633 views • 32 slides
Su Support pport Se Sear archers chers in n Se Sear arching ching Susan Dumais

Su Support pport Se Sear archers chers in n Se Sear arching ching Susan Dumais

Us Using ng Co Cont ntext ext to to Su Support pport Se Sear archers chers in n Se Sear arching ching Susan Dumais Microsoft Research http://research.microsoft.com/~sdumais ACL/HLT June 18, 2008 Us Using ing Co Cont

477 views • 34 slides
New Encryp+on Primi+ves for Uncertain Times Thomas Ristenpart

New Encryp+on Primi+ves for Uncertain Times Thomas Ristenpart

New Encryp+on Primi+ves for Uncertain Times Thomas Ristenpart University of Wisconsin Covering joint work with: Sco@ Coull, Kevin Dyer, Ari Juels,

751 views • 54 slides
Modifying an Enciphering Scheme a3er Deployment Paul Grubbs, Thomas Ristenpart, Yuval Yarom

Modifying an Enciphering Scheme a3er Deployment Paul Grubbs, Thomas Ristenpart, Yuval Yarom

Modifying an Enciphering Scheme a3er Deployment Paul Grubbs, Thomas Ristenpart, Yuval Yarom Format-Preserving Encryp<on (FPE) Encryp<on service Client E(CCN) CCN E(CCN) E(CCN) E(CCN) Format-Preserving Encryp<on (FPE)

246 views • 24 slides
Using Fully y Homomorphic Encryp yption for St Statistical Analysi sis s of Categori rical,

Using Fully y Homomorphic Encryp yption for St Statistical Analysi sis s of Categori rical,

Using Fully y Homomorphic Encryp yption for St Statistical Analysi sis s of Categori rical, , Or Ordinal and and Num Numeric ical al Data Wen-jie Lu 1 , Shohei Kawasaki 1 , Jun Sakuma 1,2,3 1. University of Tsukuba, Japan 2. JST

540 views • 30 slides
Cr Cryp yptography: His History an and Sim imple le Enc Encryp yption Me Methods an and

Cr Cryp yptography: His History an and Sim imple le Enc Encryp yption Me Methods an and

Cr Cryp yptography: His History an and Sim imple le Enc Encryp yption Me Methods an and Pr Preliminaries 1 Cryp Cr yptography The word cryptography comes from the Greek words (hidden or secret) and

670 views • 37 slides
Le Lecture ture 4 Un Uninf nform ormed ed Se Sear arch ch St Strat ategies, egies, Se

Le Lecture ture 4 Un Uninf nform ormed ed Se Sear arch ch St Strat ategies, egies, Se

Computer Science CPSC 322 Le Lecture ture 4 Un Uninf nform ormed ed Se Sear arch ch St Strat ategies, egies, Se Sear arch h wi with h Co Costs ts (Ch Ch 3. 3.1-3.5, 3.5, 3. 3.7. 7.3) 3) 1 Announcements Assignment 1

1.04k views • 54 slides
End End-to-end File Encr Encryp yption i in n the the Web Br eb Browser er A Ca Case

End End-to-end File Encr Encryp yption i in n the the Web Br eb Browser er A Ca Case

End End-to-end File Encr Encryp yption i in n the the Web Br eb Browser er A Ca Case e Study dy Thomas Konrad, SBA Research Vue.js Meetup Vienna, Feb 11, 2020 SBA Research gGmbH, 2020 Classification: Public 1 ~ $ whoami Thomas

770 views • 50 slides
Outline : Outline : Our method to perform periodicity search Candidates of the next Geminga The

Outline : Outline : Our method to perform periodicity search Candidates of the next Geminga The

Periodicity Sear Periodicity Search of ch of the the Geming Geminga-lik -like Pulsar e Pulsars Lupin Chun-Che Lin () Institute of Astronomy, National Central University, Taiwan Outline : Outline : Our method to perform periodicity

654 views • 19 slides
Log Logic ic: : TD TD as se as sear arch ch, , Da Data talo log (v (var ariab ables)

Log Logic ic: : TD TD as se as sear arch ch, , Da Data talo log (v (var ariab ables)

Log Logic ic: : TD TD as se as sear arch ch, , Da Data talo log (v (var ariab ables) es) Computer ter Sc Science ce cpsc3 c322 22, , Lectur ture e 23 (Te Text xtbo book ok Chpt 5.2 & & some basic ic concep

647 views • 27 slides
Log Logic ic: : TD TD as se as sear arch ch, , Da Data talo log (v (var ariab ables)

Log Logic ic: : TD TD as se as sear arch ch, , Da Data talo log (v (var ariab ables)

Log Logic ic: : TD TD as se as sear arch ch, , Da Data talo log (v (var ariab ables) es) Co Computer ter Sc Scienc nce e cpsc sc322 322, , Lectu cture e 23 (Te Text xtbo book ok Chpt 5.2 & & some basic

516 views • 29 slides
Cryptography Seny Kamara Cryptography Group Microsoft Research Outline Cloud Architecture

Cryptography Seny Kamara Cryptography Group Microsoft Research Outline Cloud Architecture

Cloud Cryptography Seny Kamara Cryptography Group Microsoft Research Outline Cloud Architecture What is cloud computing? o Cloud Ecosystem Who provides and who consumes cloud services? o Cloud Cryptography What are the security

637 views • 34 slides
Post-quantum cryptography Daniel J. Bernstein University of Illinois at Chicago; Ruhr University

Post-quantum cryptography Daniel J. Bernstein University of Illinois at Chicago; Ruhr University

Post-quantum cryptography Daniel J. Bernstein University of Illinois at Chicago; Ruhr University Bochum Wikipedia: Hoover became a controversial figure as evidence of his secretive abuses of power began to surface. He was found to have

1.21k views • 103 slides
Crypto: Symmetric-Key Cryptography Slides credit: Dan Boneh, David Wagner, Doug Tygar Dawn

Crypto: Symmetric-Key Cryptography Slides credit: Dan Boneh, David Wagner, Doug Tygar Dawn

Computer Security Course. Dawn Song Crypto: Symmetric-Key Cryptography Slides credit: Dan Boneh, David Wagner, Doug Tygar Dawn Overview Cryptography: secure communication over insecure communication channels Three goals

475 views • 30 slides
Cryptography Autumn 2018 Tadayoshi (Yoshi) Kohno yoshi@cs.Washington.edu Thanks to Dan Boneh,

Cryptography Autumn 2018 Tadayoshi (Yoshi) Kohno yoshi@cs.Washington.edu Thanks to Dan Boneh,

CSE 484 / CSE M 584: Computer Security and Privacy Cryptography Autumn 2018 Tadayoshi (Yoshi) Kohno yoshi@cs.Washington.edu Thanks to Dan Boneh, Dieter Gollmann, Dan Halperin, Ada Lerner, John Manferdelli, John Mitchell, Franziska Roesner,

445 views • 25 slides
1 Diffie-Hellman exponential key exchange Diffie-Hellman exponential key exchange Alice has

1 Diffie-Hellman exponential key exchange Diffie-Hellman exponential key exchange Alice has

Symmetric cryptography Both parties must agree on a secret key, K message is encrypted, sent, decrypted at other side E K (P) D K (C) Secure Communication Bob Alice Key distribution must be secret otherwise messages can be

553 views • 10 slides
Cryptography & Network Security Introduction Introduction Chester Rebeiro IIT Madras CR

Cryptography & Network Security Introduction Introduction Chester Rebeiro IIT Madras CR

Cryptography & Network Security Introduction Introduction Chester Rebeiro IIT Madras CR The Connected World CR 2 Information Storage CR 3 Increased Security Breaches 81% more in 2015 CR

1.46k views • 29 slides
Lattice-based cryptography II Constructions and implementation issues Leon Groot Bruinderink

Lattice-based cryptography II Constructions and implementation issues Leon Groot Bruinderink

Lattice-based cryptography II Constructions and implementation issues Leon Groot Bruinderink July 1st, 2019 July 1st, 2019 1 / 27 Lattice-based cryptography II In this talk: Introduction to (ring-)LWE Lattice-based key-exchange and

1.44k views • 80 slides
Lecture 9: Secret Sharing, Threshold Cryptography, MPC Helger Lipmaa Helsinki University of

Lecture 9: Secret Sharing, Threshold Cryptography, MPC Helger Lipmaa Helsinki University of

T-79.159 Cryptography and Data Security Lecture 9: Secret Sharing, Threshold Cryptography, MPC Helger Lipmaa Helsinki University of Technology helger@tcs.hut.fi T-79.159 Cryptography and Data Security, 24.03.2004 Lecture 9: Secret Sharing,

1.45k views • 33 slides

More recommend