sgx ir
play

SGX IR Secure Information Retrieval with Trusted Processors Fahad - PowerPoint PPT Presentation

Jul 22, 2023 •315 likes •660 views

UT DALLAS Erik%Jonsson%School%of%Engineering%&%Computer%Science SGX IR Secure Information Retrieval with Trusted Processors Fahad Shaon, Murat Kantarcioglu The University of Texas at Dallas FEARLESS engineering FEARLESS engineering 1 / 29

  1. UT DALLAS Erik%Jonsson%School%of%Engineering%&%Computer%Science SGX IR Secure Information Retrieval with Trusted Processors Fahad Shaon, Murat Kantarcioglu The University of Texas at Dallas FEARLESS engineering FEARLESS engineering 1 / 29

  2. Problem - Secure Cloud based Information Retrieval Encrypted Data Encrypted Search Query Encrypted Result Build a secure information retrieval system ◮ User stores encrypted files in cloud server ◮ Perform selective retrieval FEARLESS engineering 2 / 29

  3. Build Block - Intel SGX ◮ We use Intel SGX - S oftware G uard E x tensions ◮ SGX is new Intel instruction set ◮ Allows us to create secure compartment inside processor , called Enclave ◮ Privileged softwares, such as, OS, Hypervisor, can not directly observe data and computation inside enclave FEARLESS engineering 3 / 29

  4. Threat Model - Intel SGX Enclave Encrypted Data & Code Memory CPU Encrypted Result Disk Server Adversary can control hypervisor, OS, memory, disk of the server FEARLESS engineering 4 / 29

  5. State of The Art ◮ Relevant search or indexing systems that uses SGX - HardIDX (Fuhry et al., 2017), Rearguard (Sun et al., 2018), Oblix (Mishra et al., 2018), Hardware-supported ORAM (Hoang et al., 2019) ◮ These works mainly focus on building efficient data structures for searching using SGX ◮ Assume inverted index is built and/or build the index in client ◮ Did not look into ranked retrieval FEARLESS engineering 5 / 29

  6. Challenges - Access Pattern Leakage Challenge: Access Pattern Leakage ◮ Adversary can observe memory accesses in SGX ◮ Memory access reveals about encrypted data (Islam, Kuzu, and Kantarcioglu, 2012; Naveed, Kamara, and Wright, 2015) FEARLESS engineering 6 / 29

  7. Challenges - Access Pattern Leakage Challenge: Access Pattern Leakage ◮ Adversary can observe memory accesses in SGX ◮ Memory access reveals about encrypted data (Islam, Kuzu, and Kantarcioglu, 2012; Naveed, Kamara, and Wright, 2015) Solution ◮ Data Obliviousness - we build custom data oblivious indexing algorithms FEARLESS engineering 6 / 29

  8. Data Obliviousness - Oblivious Select ◮ Data Obliviousness: Program executes same path for all input of same size FEARLESS engineering 7 / 29

  9. Data Obliviousness - Oblivious Select ◮ Data Obliviousness: Program executes same path for all input of same size ◮ Example: x == y ? a : b FEARLESS engineering 7 / 29

  10. Data Obliviousness - Oblivious Select ◮ Data Obliviousness: Program executes same path for all input of same size ◮ Example: x == y ? a : b oblivousSelect (a, b, x, y): ... mov %[x],%%eax mov %[y],%%ebx xor %%eax , %%ebx ... mov %[a],%%ecx mov %[b],%%edx cmovz %%ecx ,%% edx ... mov %%edx , %[out] FEARLESS engineering 7 / 29

  11. Challenge - Memory Constraint Challenge: Memory Constraint ◮ SGX (v1) only 90MB enclave FEARLESS engineering 8 / 29

  12. Challenge - Memory Constraint Challenge: Memory Constraint ◮ SGX (v1) only 90MB enclave Solution ◮ Blocking - Break large data into small blocks ◮ We utilize SGXBigMatrix (Shaon et al., 2017) primitives ◮ BigMatrix handles the complexity of data blocking FEARLESS engineering 8 / 29

  13. Objectives - Summary Encrypted Intermediate Data Encrypted Search Query Encrypted Result Pre-Processing Final Processing ◮ Very low client side processing ◮ Build index securely in the cloud using SGX ◮ Build data oblivious algorithms ◮ Support ranked retrieval FEARLESS engineering 9 / 29

  14. SGX IR - Document and Query Types ◮ Text Data ◮ Ranked document retrieval using TF-IDF (Token Frequency and Inverse Document Frequency) ◮ Image Data ◮ Face recognition using Eigenface FEARLESS engineering 10 / 29

  15. Text Pre-Processing - Client cryptographi 1 tok-id doc-id freq practic 2 Encrypted 1 1 2 Cryptography is cryptographi the practice and Tokenization BigMatrix TokenID 1 10 practic studi studi 3 2 study of techniques Stemming Generation Generation techniqu secur for secure commun 3 1 6 techniqu 4 communication ... ... 5 ... ... secur ◮ We tokenize and stem the input text files ◮ We build a matrix I with token id , document id , and frequency columns ◮ Finally, we encrypt I and upload ◮ Single round of read and write is required FEARLESS engineering 11 / 29

  16. Text Indexing - Server freq tok-id count sum tok-id doc-id freq tok-id doc-id 1 1 2 1 8 20 1,0 1 2 ... ... ... 2 4 9 2 1 3 ... ... ... 3 7 15 1,1 7 2 ... ... ... 8 2 1 4 5 3 Indexing 5 1 2 1 2 5 2,0 1 3 ... ... ... ... ... ... 6 1 1 ... ... ... 2,1 17 3 8 9 10 ... ... ... 1 4 1 # # # ... ... ... ... ... ... 3,0 9 10 ◮ Input I , we output two matrices ◮ U ′ containing total frequencies of the tokens, for IDF calculation ◮ T containing equal length blocks of token to document frequency mapping for TF calculation FEARLESS engineering 12 / 29

  17. Text Indexing - IDF - Server tok-id doc-id freq tok-id doc-id freq tok-id count sum tok-id count sum 1 1 2 1 8 20 1 1 2 1 0 0 2 1 3 1 2 5 # # # 2 4 9 ... ... ... ... ... ... Sort and Sort 1 4 1 Count & Sum 3 7 15 ... ... ... 8 2 1 2 8 20 4 5 3 Adjust 1 2 5 2 1 3 # # # 5 1 2 ... ... ... ... ... ... 2 5 10 6 1 1 ... ... ... ... ... ... 17 3 8 3 4 9 1 4 1 3 6 4 # # # # # # ... ... ... ... ... ... ... ... ... ... ... ... ◮ I ′ ← Obliviously sort I on token id column ◮ We generate U , to keep count and sum of frequencies ◮ c ← I ′ [ i ] .token id � = I ′ [ i − 1] .token id ◮ U [ i ] .sum ← obliviousSelect ( sum, # , 1 , c ) ◮ sum ← obliviousSelect ( sum, 0 , 1 , c ) + I [ i ] .frequency ◮ Finally, we sort this matrix so that the dummy entries go to the bottom FEARLESS engineering 13 / 29

  18. Text Indexing - TF - Block Size Optimization ◮ We can read document frequency of tokens from matrix I ′ ◮ This will reveal number of documents having a specific token ◮ So, we split I ′ into equal length blocks ◮ We optimize block size b from count column of U ′ using technique outline in (Shaon and Kantarcioglu, 2016) ◮ We assume the frequency follow Pareto distribution ◮ Mathematically find the value minimize the padding FEARLESS engineering 14 / 29

  19. Text Indexing - TF - Padding Generation We regenerate token id with bucket number function σ tok-id doc-id freq tok-id doc-id freq 1,0 1 2 1 1 2 ... ... ... 1 2 5 Regenerate 1 4 1 TokenId 1,1 7 2 ... ... ... ... ... ... 2 1 3 2,0 1 3 ... ... ... 2 5 10 ... ... ... 2,1 9 10 ... ... ... 3 6 4 ... ... ... 3,0 9 10 We generate padding tok-id count sum freq tok-id doc-id 1 8 20 1,1 # # ... ... ... 2 4 9 Generate # # 3 7 15 # 4 5 3 Padding Rows ... ... ... 5 1 2 2,1 # # ... ... ... 6 1 1 ... ... ... # # # ... ... ... # # # ... ... ... 3,1 # # Finally we merge and sort X and J to get the output T matrix. FEARLESS engineering 15 / 29

  20. TF - IDF Calculation ◮ On T we run term frequency functions - (log normalization) 1 + log ( tf t,d ) ◮ On U ′ we run document frequency functions, such as, IDF log N d f t ◮ Query result we use T for TF and U ′ for IDF FEARLESS engineering 16 / 29

  21. Bitonic Sorting of Arbitrary Input Size ◮ Sorting is one of the most frequently used operations ◮ We use arbitrary length Bitonic sort version (Lang, 1998) ◮ However, existing definition is recursive ◮ Not suitable for memory constrained environments like SGX ◮ So, we propose a non-recursive algorithm without using stack FEARLESS engineering 17 / 29

  22. Bitonic Sort Non Recursive Algorithm - Concept Concept ◮ We can express a number as N = 2 x m + ... +2 x 3 +2 x 2 +2 x 1 ◮ Merge network can sort a descending and an ascending block into ascending order block ◮ We sort then merge from smallest to biggest block Sort Merge FEARLESS engineering 18 / 29

  23. Bitonic Sort Non Recursive Algorithm 1: for d = 0 to ⌈ log 2 ( N ) ⌉ do if (( N >> d ) & 1) � = 0 then 2: start ← ( − 1 << ( d + 1)) & N 3: size ← 1 << d 4: dir ← ( size & N & − N ) � = 0 5: bitonicSort 2 K ( start, size, dir ) 6: if ! dir then 7: bitonicMerge ( start, N − start, 1 ) 8: end if 9: end if 10: 11: end for FEARLESS engineering 19 / 29

  24. Face recognition indexing ◮ We adopt EigenFace ◮ Pre-processing and matching face are simple matrix operations ◮ Core problem to solve obliviously is eigenvector calculation ◮ We adopt Jacobi method of eigenvector calculation FEARLESS engineering 20 / 29

  25. Eigenvector calculation - Jacobi method Oblivious Oblivious Column Extract Column Assign Oblivious Value Extract Rotate Calculate & Ressign Oblivious Row Assign We find the max off-diagonal element at A k,l , then rotate column k and l . Repeat until A becomes diagonal. The diagonal values are eigenvalues. FEARLESS engineering 21 / 29

  26. Experimental Evaluations We implemented a prototype using Intel SGX SDK 2.6 for Linux Setup ◮ Processor Intel Xeon E3-1270 ◮ Memory 64GB ◮ OS Ubuntu 18.04 ◮ SGX SDK Version 2.6 for Linux FEARLESS engineering 22 / 29

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

S E P T E M B E R 2 0 1 5 Corporate Presentation Unique, Distinctive, Disruptive Unique,

S E P T E M B E R 2 0 1 5 Corporate Presentation Unique, Distinctive, Disruptive Unique,

S E P T E M B E R 2 0 1 5 Corporate Presentation Unique, Distinctive, Disruptive Unique, Distinctive, Disruptive Private and Confidential Private and Confidential Contents About Balaji Telefilms 1 2 Growth: Three-pronged Strategy 3

681 views • 54 slides
The Doon School Established 1935 Our Mission To attract and develop exceptional boys and

The Doon School Established 1935 Our Mission To attract and develop exceptional boys and

The Doon School Established 1935 Our Mission To attract and develop exceptional boys and teachers from all backgrounds to serve a meritocratic India; inspire them to be just and ethical citizens; train them to be wise and principled

566 views • 41 slides
FICCI SCHOOL EDUCATION CONFERENCE 2014 TOWARDS EFFECTIVE DELIVERY OF QUALITY EDUCATION

FICCI SCHOOL EDUCATION CONFERENCE 2014 TOWARDS EFFECTIVE DELIVERY OF QUALITY EDUCATION

FICCI SCHOOL EDUCATION CONFERENCE 2014 TOWARDS EFFECTIVE DELIVERY OF QUALITY EDUCATION Breakout session 3rd Leveraging Assessment to Improve Educational: Moving from input to outcomes- Presentation by - B. S. Negi (Joint

540 views • 9 slides
ELECT CTROTHE OTHERM RM CORP RPORA RATE E SOCIAL L RE RESPOSIBILI IBILITY TY We e

ELECT CTROTHE OTHERM RM CORP RPORA RATE E SOCIAL L RE RESPOSIBILI IBILITY TY We e

ELECT CTROTHE OTHERM RM CORP RPORA RATE E SOCIAL L RE RESPOSIBILI IBILITY TY We e Rise se By y Lifting ting Ot Other ers . Our Purpose se is is to to im improve ve th the qual alit ity y of li life of th the comm

670 views • 38 slides
PINAR ENTEGRE ET VE UN SAN. A.. Earnings Presentation, , 2015 Q1 Highligths One of the top

PINAR ENTEGRE ET VE UN SAN. A.. Earnings Presentation, , 2015 Q1 Highligths One of the top

PINAR ENTEGRE ET VE UN SAN. A.. Earnings Presentation, , 2015 Q1 Highligths One of the top ten most admired Innovative and pioneer Hygienic production companies in Turkey* according to EU norms More than 300 SKUs Among

214 views • 20 slides
Exploiting transcriptomic data in genome scale metabolic networks: new insight into obesity Flash

Exploiting transcriptomic data in genome scale metabolic networks: new insight into obesity Flash

C om omput puta tj tj on onal D Dat ata S a Scien cience ce ( CD CDS ) Lab Lab Exploiting transcriptomic data in genome scale metabolic networks: new insight into obesity Flash poster presentation (Poster P5) NETTAB 2017

192 views • 8 slides
LANDMARK MEETINGS AND EVENTS I N H I S T O R I C M O S C O W FUNCTION SPACE TCHAIKOVSKY

LANDMARK MEETINGS AND EVENTS I N H I S T O R I C M O S C O W FUNCTION SPACE TCHAIKOVSKY

LANDMARK MEETINGS AND EVENTS I N H I S T O R I C M O S C O W FUNCTION SPACE TCHAIKOVSKY BALLROOM Tchaikovsky ballroom is a luxurious spacious hall of rectangle shape, located on the main conference floor and with natural daylight. The hall

304 views • 14 slides
Classification and Labelling notifications under the CLP regulation: How to be prepared? How to

Classification and Labelling notifications under the CLP regulation: How to be prepared? How to

Classification and Labelling notifications under the CLP regulation: How to be prepared? How to notify? C&amp;L inventory creation CEFIC - REACH Implementation Workshop VI Brussells - November 2009 Sandrine Lefvre-Brvart ECHA, Scientific

752 views • 36 slides
Canadian GHS Update Consumer Product Safety Directorate Healthy Environments and Consumer Safety

Canadian GHS Update Consumer Product Safety Directorate Healthy Environments and Consumer Safety

Canadian GHS Update Consumer Product Safety Directorate Healthy Environments and Consumer Safety Branch Health Canada Amira Sultan and Kim Godard Presentation to the Society for Chemical Hazard Communication, March 17, 2015 Globally Harmonised

663 views • 30 slides
Expert Ministry of Environment and Urbanization April 2, 2014 Ahu EKM 1 INSTITUTION TASK

Expert Ministry of Environment and Urbanization April 2, 2014 Ahu EKM 1 INSTITUTION TASK

Overview of current Turkish legal framework for chemical control legislation. Including Turkey's classification and labelling regulation (SEA(CLP By-Law)) Ahu EKM Expert Ministry of Environment and Urbanization April 2, 2014 Ahu EKM 1

323 views • 31 slides
The Reference Manure Concept R. Kreuzig VMP liquid manure soil runoff leaching surface water

The Reference Manure Concept R. Kreuzig VMP liquid manure soil runoff leaching surface water

Technische Universitt Braunschweig Institut fr kologische Chemie und Abfallanalytik The Reference Manure Concept R. Kreuzig VMP liquid manure soil runoff leaching surface water ground water Manure Project: UBA-FKZ 207 67 455;

526 views • 37 slides
EU chemical regulations and nanomaterials IACM Arlington, USA 6 th November 2018 Dr Neil

EU chemical regulations and nanomaterials IACM Arlington, USA 6 th November 2018 Dr Neil

EU chemical regulations and nanomaterials IACM Arlington, USA 6 th November 2018 Dr Neil Hunt Contents Definition of nanomaterials REACH Past and Present Future Food and Food Contact Materials CLP Titanium

517 views • 33 slides
Wool in an ecologically aware world Dr Ian Russell CSIRO Outline The environmentally aware

Wool in an ecologically aware world Dr Ian Russell CSIRO Outline The environmentally aware

Wool in an ecologically aware world Dr Ian Russell CSIRO Outline The environmentally aware consumer: What do they want? How can we deliver it? How can they identify it? Environmental labelling and the consumer:

805 views • 43 slides
SUSTAINABILITY RESULTS 2015 Quality-driven CONTENTS research, education and cooperation in an

SUSTAINABILITY RESULTS 2015 Quality-driven CONTENTS research, education and cooperation in an

SUSTAINABILITY RESULTS 2015 Quality-driven CONTENTS research, education and cooperation in an inspiring From the Vice-Chancellor 3 About the University 4 environment, strong social responsi- Integrated sustainability report 5 Research

200 views • 18 slides
Modeling Aquatic Process in the tropics the tropics Exercise - Tritium Release from an imaginary

Modeling Aquatic Process in the tropics the tropics Exercise - Tritium Release from an imaginary

EMRAS II PROJECT Tritium Accidents Group Fourth Meeting Modeling Aquatic Process in the tropics the tropics Exercise - Tritium Release from an imaginary CANDU: HTO dispersion on actual PWRs tropical aquatic estuary - Importance of

566 views • 37 slides
- Features and benefits Sensitive glycan analysis using (U)HPLC, ESI-MS, and LC-ESI-MS Features

- Features and benefits Sensitive glycan analysis using (U)HPLC, ESI-MS, and LC-ESI-MS Features

Procainamide Glycan Labelling - Features and benefits Sensitive glycan analysis using (U)HPLC, ESI-MS, and LC-ESI-MS Features and benefits of procainamide labelling of glycans 1. Enhanced MS ionisation and fluorescence in comparison to 2-AB

348 views • 8 slides
Car Labeling: A Comparison of Case Studies Max Grnig Ecologic Institute IDEC: Debate

Car Labeling: A Comparison of Case Studies Max Grnig Ecologic Institute IDEC: Debate

www.ecologic.eu Car Labeling: A Comparison of Case Studies Max Grnig Ecologic Institute IDEC: Debate Automvel e Consumo www.ecologic.eu Ecologic Institute Independent Research Institute Environmental Research Policy Analysis 120

361 views • 22 slides
English version labeling review Overview of the new process for initial MAAs and data from two

English version labeling review Overview of the new process for initial MAAs and data from two

English version labeling review Overview of the new process for initial MAAs and data from two years experience Alexios M. Skarlatos Head of Labeling Review and Standards Scientific &amp; Regulatory Management Department An agency of the

342 views • 15 slides
Indication and Labelling 2 nd EMA - Payer Community meeting 18 June 2019 Jordi Llinares,

Indication and Labelling 2 nd EMA - Payer Community meeting 18 June 2019 Jordi Llinares,

Indication and Labelling 2 nd EMA - Payer Community meeting 18 June 2019 Jordi Llinares, Scientific and Regulatory Management An agency of the European Union Outlines Progress status Looking forward 1 Ongoing collaboration CHMP

102 views • 9 slides
(Machine)Learning with limited labels Machine Learning for Big Data Eirini Ntoutsi (joint work

(Machine)Learning with limited labels Machine Learning for Big Data Eirini Ntoutsi (joint work

(Machine)Learning with limited labels Machine Learning for Big Data Eirini Ntoutsi (joint work with Vasileios Iosifidis) Leibniz University Hannover &amp; L3S Research Center 4 th Alexandria workshop, 19-20.11.2017 A good conjuncture for ML/DM

558 views • 31 slides
Regulatory and Policy Updates Therapeutic Products Directorate Health Canada Cindy Evans

Regulatory and Policy Updates Therapeutic Products Directorate Health Canada Cindy Evans

Regulatory and Policy Updates Therapeutic Products Directorate Health Canada Cindy Evans Director, Medical Devices Bureau Non-Corrective (NC) Contact Lenses Bill C-313, An Act to Amend the Food and Drugs Act (non-corrective contact lenses)

360 views • 11 slides
Digital labels as the next step for informed consumer decisions - experiences from an EU field

Digital labels as the next step for informed consumer decisions - experiences from an EU field

This project has received funding from the European Unions Horizon 2020 research and innovation programme under grant agreement No 696081 Digital labels as the next step for informed consumer decisions - experiences from an EU field trial

346 views • 15 slides
Zero-shot Sequence Labeling: Transferring Knowledge from Sentences to Tokens Marek Rei

Zero-shot Sequence Labeling: Transferring Knowledge from Sentences to Tokens Marek Rei

1 Zero-shot Sequence Labeling: Transferring Knowledge from Sentences to Tokens Marek Rei Anders Sgaard 2 Sequence labeling Error detection: + + + - + + + + + - + I like to

170 views • 13 slides
Overview Yandex Services Car Detection Yandex.Taxi 3D Car Detection Yandex

Overview Yandex Services Car Detection Yandex.Taxi 3D Car Detection Yandex

Overview Yandex Services Car Detection Yandex.Taxi 3D Car Detection Yandex Technologies Windup SDC Yandex Taxi Upcoming Plans Algorithms Design Evolvement since1989 search engine technology 1997 yandex.ru

575 views • 23 slides

More recommend