privacy preserving computation with trusted computing via
play

Privacy-Preserving Computation with Trusted Computing via - PowerPoint PPT Presentation

Mar 08, 2023 •126 likes •477 views

Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Hung Dang, Anh Dinh, Ee-Chien Chang, Beng Chin Ooi School of Computing National University of Singapore PETS 2017 Privacy-Preserving Computation with Trusted

  1. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Hung Dang, Anh Dinh, Ee-Chien Chang, Beng Chin Ooi School of Computing National University of Singapore PETS 2017

  2. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute The Problem ● Context: Processing large dataset with bounded private memory ● System and Threat Model: ○ Data is processed in an trusted External-memory execution environment with Computation bounded private memory ○ Data remains encrypted outside the trusted enviroment ○ The adversary observes access patterns, but cannot see the trusted environment’s internal state 2 PETS 2017

  3. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute The Problem ● Context: Processing large dataset with bounded private memory Access patterns leak ● System and Threat Model: sensitive information ○ Data is processed in an trusted External-memory execution environment with Computation bounded private memory ○ Data remains encrypted outside the trusted enviroment ○ The adversary observes access patterns, but cannot see the trusted environment’s internal state 2 PETS 2017

  4. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Access Pattern Leakage: Example The private memory size is S 1 S 2 2 1 3 2 4 consider merging two sorted sub-arrays 2 records 3 PETS 2017

  5. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Access Pattern Leakage: Example First records of S 1 and S 2 are S 1 S 2 retrieved 1 3 2 4 1 2 3 PETS 2017

  6. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Access Pattern Leakage: Example One record is S 1 S 2 writen out 1 3 2 4 2 1 3 PETS 2017

  7. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Access Pattern Leakage: Example The 2 nd record of S 1 is S 1 S 2 retrieved 1 3 2 4 3 2 1 3 PETS 2017

  8. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Access Pattern Leakage: Example S 1 contains the S 1 S 2 smallest record 1 3 2 4 3 2 1 3 PETS 2017

  9. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Possible Mitigations ● ORAM (Oblivious RAM) ○ Generic ○ Expensive: incurs Ω(log n) (amortized) overheads per each access ■ Not suitable for applications accessing entire dataset (e.g., sort, aggregation) ● Tailor-made Algorithms (Data-Oblivious algorithms) ○ Application-specific ○ More efficient (than employing ORAM) ○ Complex construction ■ Hard to implement and vet the trusted code base (TCB) 4 PETS 2017

  10. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Our Solution We seek an approach to design privacy-preserving algorithms that is: ● Expressive ○ Enable adoption of state-of-the-art external memory algorithms ● Simple ○ Ease of implementation and TCB vetting ● Low overhead 5 PETS 2017

  11. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Scramble-then-Compute ( STC ) Derive a privacy-preserving algorithm from an efficient but not necessarily privacy-preserving one: ● Privately scramble the input ○ Conceal correspondences between the original input and the scrambled data ● Apply the original (external-memory) algorithm on the scrambled data ○ Leverage on extensive studies to adopt the most suitable algorithm with the most well-tuned parameteres for a particular application at hand 6 PETS 2017

  12. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Scramble then Compute ( STC ) Derive a privacy-preserving algorithm from an efficient but not necessarily privacy-preserving one: ● Privately scramble the input ○ Conceal correspondences between the original input and the scrambled data ● Apply the original (external-memory) algorithm on the scrambled data ○ Leverage on extensive studies to adopt the most suitable algorithm with the most well-tuned parameteres for a particular application at hand Simplicity ✔ 6 PETS 2017

  13. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute STC - Scope STC supports a permutation-invariant # algorithm P if there exists an imitator 〈 T, P* 〉 of P ○ T , given X , outputs a permuted sequence of 〈 1,2,...,n 〉 ○ P* operates on T(X) exactly the same as P does on X (i.e., incur the same access pattern) # outputs the same Y for any permutation of X 7 PETS 2017

  14. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute STC - Scope STC supports a permutation-invariant # algorithm P if there exists an imitator 〈 T, P* 〉 of P ○ T , given X , outputs a permuted sequence of 〈 1,2,...,n 〉 ○ P* operates on T(X) exactly the same as P does on X (i.e., incur the same access pattern) Expressiveness ✔ # outputs the same Y for any permutation of X 7 PETS 2017

  15. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute STC - A Closer Look Given P operating on input X , STC derives a privacy-preserving algorithm A P : X’ ← Pre-Process (X) (if required) 1. S ← Scramble (X’) 2. Y’ ← P(S) 3. Y ← Post-Process (Y) (if required) 4. 8 PETS 2017

  16. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute STC - A Closer Look Given P operating on input X , STC derives a privacy-preserving algorithm A P : X’ ← Pre-Process (X) (if required) 1. ➢ ensure permutation-invariant requirement ➣ Data Oblivious S ← Scramble (X’) 2. ➣ Requires private ➢ based on Melbourne Shuffle Algorithm memory of size O(√n) Y’ ← P(S) 3. ➣ Runtime O(n) Y ← Post-Process (Y) (if required) 4. ➢ reverse effect of step 1 8 PETS 2017

  17. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute STC - A Closer Look Given P operating on input X , STC derives a Low overhead ✔ privacy-preserving algorithm A P : X’ ← Pre-Process (X) (if required) 1. ➢ ensure permutation-invariant requirement ➣ Data Oblivious S ← Scramble (X’) 2. ➣ Requires private ➢ based on Melbourne Shuffle Algorithm memory of size O(√n) Y’ ← P(S) 3. ➣ Runtime O(n) Y ← Post-Process (Y) (if required) 4. ➢ reverse effect of step 1 8 PETS 2017

  18. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute STC - A Closer Look E.g.,: Deriving a privacy-preserving sorting algorithm from external Given P operating on input X , STC derives a merge sort privacy-preserving algorithm A P : X 1 3 1 4 2 4 X’ ← Pre-Process (X) (if required) 1. S ← Scramble (X’) 2. Y’ ← P(S) 3. Y ← Post-Process (Y) (if required) 4. 8 PETS 2017

  19. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute STC - A Closer Look Add metadata to handle duplicates Given P operating on input X , STC derives a privacy-preserving algorithm A P : X 1 3 1 4 2 4 X’ ← Pre-Process (X) (if required) 1. X’ 1 0 3 1 1 2 4 3 2 4 4 5 S ← Scramble (X’) 2. Y’ ← P(S) 3. Y ← Post-Process (Y) (if required) 4. 8 PETS 2017

  20. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute STC - A Closer Look Privately scramble the input Given P operating on input X , STC derives a privacy-preserving algorithm A P : X 1 3 1 4 2 4 X’ ← Pre-Process (X) (if required) 1. X’ 1 0 3 1 1 2 4 3 2 4 4 5 S ← Scramble (X’) 2. S 4 3 1 2 2 4 3 1 4 5 1 0 Y’ ← P(S) 3. Y ← Post-Process (Y) (if required) 4. The scrambling hide correspondences between records of X’ and those of S 8 PETS 2017

  21. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute STC - A Closer Look Sort the scrambled input by external merge sort Given P operating on input X , STC derives a privacy-preserving algorithm A P : X 1 3 1 4 2 4 X’ ← Pre-Process (X) (if required) 1. X’ 1 0 3 1 1 2 4 3 2 4 4 5 S ← Scramble (X’) 2. S 4 3 1 2 2 4 3 1 4 5 1 0 Y’ ← P(S) 3. Y’ 1 0 1 2 2 4 3 1 4 3 4 5 Y ← Post-Process (Y) (if required) 4. Observation maded on S cannot be linked back to that of X’ 8 PETS 2017

  22. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute STC - A Closer Look Remove the metadata Given P operating on input X , STC derives a privacy-preserving algorithm A P : X 1 3 1 4 2 4 X’ ← Pre-Process (X) (if required) 1. X’ 1 0 3 1 1 2 4 3 2 4 4 5 S ← Scramble (X’) 2. S 4 3 1 2 2 4 3 1 4 5 1 0 Y’ ← P(S) 3. Y’ 1 0 1 2 2 4 3 1 4 3 4 5 Y ← Post-Process (Y) (if required) 4. Y 1 1 2 3 4 4 8 PETS 2017

  23. Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Comparison with Alternative Solutions ORAM Tailor-made Algorithm STC Ω(log n) amortized Performance O(n) additive overhead less efficient than STC overhead per each Overhead per execution counterpart access Spark and many data Expressiveness all applications application-specific processing operations Design and moderate - complicated simple complicated Implement Effort 9 PETS 2017

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Secure Multiparty Computation Introduction to Privacy Preserving Distributed Data Mining Li

Secure Multiparty Computation Introduction to Privacy Preserving Distributed Data Mining Li

CS573 Data Privacy and Security Secure Multiparty Computation Introduction to Privacy Preserving Distributed Data Mining Li Xiong Slides credit: Chris Clifton, Purdue University; Murat Kantarcioglu, UT Dallas Outline Overview Data

901 views • 42 slides
Deploying Secure Computing for Real-world Applications Dan Bogdanov, PhD Head of Privacy

Deploying Secure Computing for Real-world Applications Dan Bogdanov, PhD Head of Privacy

Deploying Secure Computing for Real-world Applications Dan Bogdanov, PhD Head of Privacy Technology Development Cybernetica dan@cyber.ee The Sharemind Privacy-preserving Computing Platform Components for Privacy Encrypted Privacy

714 views • 28 slides
INTEGRAL PRIVACY COMPLIANT STATISTICS COMPUTATION NAVODA SENAVIRATHNE UNIVERSITY OF SKVDE,

INTEGRAL PRIVACY COMPLIANT STATISTICS COMPUTATION NAVODA SENAVIRATHNE UNIVERSITY OF SKVDE,

INTEGRAL PRIVACY COMPLIANT STATISTICS COMPUTATION NAVODA SENAVIRATHNE UNIVERSITY OF SKVDE, SWEDEN VICENTORRA UNIVERSITY OF MAYNOOTH, IRELAND CONTENT Privacy Preserving Data Analysis Integral Privacy Differential privacy

814 views • 29 slides
Privacy-Preserving Search of Similar Patients in Genomic Data Gilad Asharov Shai Halevi

Privacy-Preserving Search of Similar Patients in Genomic Data Gilad Asharov Shai Halevi

Privacy-Preserving Search of Similar Patients in Genomic Data Gilad Asharov Shai Halevi Yehuda Lindell Tal Rabin Secure Computation Computation on private inputs without revealing anything but the output Applications :

299 views • 25 slides
Privacy Preserving Protocols Workshop on Cryptography for the Internet of Things Jens Hermans KU

Privacy Preserving Protocols Workshop on Cryptography for the Internet of Things Jens Hermans KU

Privacy Preserving Protocols Privacy Preserving Protocols Workshop on Cryptography for the Internet of Things Jens Hermans KU Leuven - COSIC 20 November 2012 Privacy Preserving Protocols Introduction Cryptography in Daily Life RFID Privacy

1.04k views • 60 slides
Scalable Privacy-Preserving Computing with High Numerical Precision Dimitar Jetchev Chief

Scalable Privacy-Preserving Computing with High Numerical Precision Dimitar Jetchev Chief

Scalable Privacy-Preserving Computing with High Numerical Precision Dimitar Jetchev Chief Technology Officer Inpher Inc./Sarl 5 High-Precision Use Cases Iridium 33 and Kosmos-2251 Satellite Collision Collision - 2009 11,700 m/s

714 views • 56 slides
Privacy-Preserving Indexing for eHealth Information Networks Yuzhe Tang, Ting Wang, Ling Liu,

Privacy-Preserving Indexing for eHealth Information Networks Yuzhe Tang, Ting Wang, Ling Liu,

Privacy-Preserving Indexing for eHealth Information Networks Yuzhe Tang, Ting Wang, Ling Liu, Shicong Meng, and Balaji Palanisamy College of Computing, Georgia Institute of Technology Talk Overview Motivation Content Privacy issues in

963 views • 33 slides
Privacy-Enhanced Bi-Directional Communication in the Smart Grid using Trusted Computing Andrew

Privacy-Enhanced Bi-Directional Communication in the Smart Grid using Trusted Computing Andrew

Privacy-Enhanced Bi-Directional Communication in the Smart Grid using Trusted Computing Andrew Paverd, Andrew Martin, Ian Brown University of Oxford https://www.cs.ox.ac.uk/people/andrew.paverd/tre Smart Grid Architecture NIST Model Smart

538 views • 27 slides
Security and Privacy for Cloud Computing Refik Molva Cloud Computing Outsourcing

Security and Privacy for Cloud Computing Refik Molva Cloud Computing Outsourcing

Security and Privacy for Cloud Computing Refik Molva Cloud Computing Outsourcing Storage Computation High availability No maintenance Decreased Costs Elasticity & Flexibility Security and Privacy for Cloud

529 views • 36 slides
Privacy Preserving Data Mining Moheeb Rajab Agenda Overview and Terminology Motivation

Privacy Preserving Data Mining Moheeb Rajab Agenda Overview and Terminology Motivation

Privacy Preserving Data Mining Moheeb Rajab Agenda Overview and Terminology Motivation Active Research Areas Secure Multi-party Computation (SMC) Randomization approach Limitations Summary and Insights Overview

716 views • 53 slides
Privacy-preserving Information Sharing: Crypto Tools and Applications Emiliano De Cristofaro

Privacy-preserving Information Sharing: Crypto Tools and Applications Emiliano De Cristofaro

Privacy-preserving Information Sharing: Crypto Tools and Applications Emiliano De Cristofaro University College London (UCL) https://emilianodc.com Privacy-preserving what ? Parties with limited mutual trust willing or required to share

1.1k views • 66 slides
Chapter 10 Trusted Computing Trusted Computing Chapter 10 and Multilevel Security and

Chapter 10 Trusted Computing Trusted Computing Chapter 10 and Multilevel Security and

Computer S ecurity: Principles and Practice Chapter 10 Trusted Computing Trusted Computing Chapter 10 and Multilevel Security and Multilevel Security First Edition by William S tallings and Lawrie Brown Lecture slides by Lawrie

636 views • 40 slides
Secure Outsourcing Computation Li Xiong Outline Cloud computing Computing on encrypted

Secure Outsourcing Computation Li Xiong Outline Cloud computing Computing on encrypted

CS573 Data Privacy and Security Secure Outsourcing Computation Li Xiong Outline Cloud computing Computing on encrypted data Homomorphic encryption What is Cloud Computing ? Cloud computing Type of computing that relies on sharing

1.29k views • 62 slides
Preserving Privacy in Social Networks Against Neighborhood Attacks Bin Zhou Jian Pei School of

Preserving Privacy in Social Networks Against Neighborhood Attacks Bin Zhou Jian Pei School of

Preserving Privacy in Social Networks Against Neighborhood Attacks Bin Zhou Jian Pei School of Computing Science, Simon Fraser University 8888 University Drive, Burnaby, B.C., V5A1S6 Canada { bzhou, jpei } @cs.sfu.ca Dell Ed Abstract

278 views • 10 slides
New Directions in Privacy- preserving Machine Learning Kamalika Chaudhuri University of

New Directions in Privacy- preserving Machine Learning Kamalika Chaudhuri University of

New Directions in Privacy- preserving Machine Learning Kamalika Chaudhuri University of California, San Diego Sensitive Data Medical Records Genetic Data Search Logs AOL Violates Privacy AOL Violates Privacy Netflix Violates Privacy [NS08]

957 views • 92 slides
Preserving the Privacy of Sensitive Relationships in Graph Data Motivation Valuable Data! No

Preserving the Privacy of Sensitive Relationships in Graph Data Motivation Valuable Data! No

Preserving the Privacy of Sensitive Relationships in Graph Data Motivation Valuable Data! No privacy breaches! Public Data Anonymization Data representation? Privacy breach? Value of data? Data publisher Privacy Analyst Work by: Elena

80 views • 3 slides
Off-line Data Vali lidation for Water Network Modeling Studies M. Quiones* G, C. Verde** and

Off-line Data Vali lidation for Water Network Modeling Studies M. Quiones* G, C. Verde** and

Off-line Data Vali lidation for Water Network Modeling Studies M. Quiones* G, C. Verde** and L. Torres** *Universidad Tecnolgica de La Habana J.A. Echeverra **II-Universidad Nacional Autnoma de Mxico Nov 2019 1 Content 1.

609 views • 13 slides
approaches Dave Reynolds, Epimorphics Ltd @der42 Validation requirements based on experiences

approaches Dave Reynolds, Epimorphics Ltd @der42 Validation requirements based on experiences

Validation: requirements and approaches Dave Reynolds, Epimorphics Ltd @der42 Validation requirements based on experiences with data.gov.uk Linked Data Most current Linked Data in data.gov.uk is: described using a range of vocabularies

466 views • 7 slides
AIP Plexos Market Simulation Model Validation Project Workshop 1 Proposed Model Review

AIP Plexos Market Simulation Model Validation Project Workshop 1 Proposed Model Review

AIP Plexos Market Simulation Model Validation Project Workshop 1 Proposed Model Review Process Mike Wilks, Principal Consultant, Markets & Regulation 18 January 2007, Davenport Hotel, Dublin Experience you can trust. Presentation

447 views • 18 slides
Chapter 2 Primitive Data Types and Operations Basic computer skills such as using Windows,

Chapter 2 Primitive Data Types and Operations Basic computer skills such as using Windows,

Chapter 2 Primitive Data Types and Operations Basic computer skills such as using Windows, Internet Explorer, and Microsoft Word Chapter 1 Introduction to Computers, Programs, and Java Chapter 2 Primitive Data Types and Operations Chapter 3

826 views • 41 slides
HOW TO SET UP A COMMUNITY-BASED ENVIRONMENTAL HEALTH SENSING PROJECT Dawn Nafus @dawnnafus

HOW TO SET UP A COMMUNITY-BASED ENVIRONMENTAL HEALTH SENSING PROJECT Dawn Nafus @dawnnafus

HOW TO SET UP A COMMUNITY-BASED ENVIRONMENTAL HEALTH SENSING PROJECT Dawn Nafus @dawnnafus Dawn.nafus@intel.com WHY COMMUNITY? WHY ENVIRONMENT? OUR SETUP (sort of) Fenceline.org ESDR (and a bunch of other things we tried and got no

484 views • 9 slides
1 Automating Machine Learning and Deep Learning Workflows 2 Information Name: Mourad

1 Automating Machine Learning and Deep Learning Workflows 2 Information Name: Mourad

1 Automating Machine Learning and Deep Learning Workflows 2 Information Name: Mourad Mourafiq Author of an open source platform: Polyaxon twitter: @mmourafiq GitHub: mouradmourafiq 3 What is Polyaxon Solves the

794 views • 23 slides
CS145: INTRODUCTION TO DATA MINING Text Data: Topic Model Instructor: Yizhou Sun

CS145: INTRODUCTION TO DATA MINING Text Data: Topic Model Instructor: Yizhou Sun

CS145: INTRODUCTION TO DATA MINING Text Data: Topic Model Instructor: Yizhou Sun yzsun@cs.ucla.edu December 4, 2017 Methods to be Learnt Vector Data Set Data Sequence Data Text Data Logistic Regression; Nave Bayes for Text

418 views • 30 slides
Take your Wor ord tem emplates s to o the he ne next xt le level! l! Doc ocuments

Take your Wor ord tem emplates s to o the he ne next xt le level! l! Doc ocuments

Take your Wor ord tem emplates s to o the he ne next xt le level! l! Doc ocuments tsCorePack for or Dynamics 365 365 DocumentsCorePack Unified document solutionfor Dynamics 365 Gener Ge erate Pro Process ss Auto utomate

356 views • 6 slides

More recommend