EncDBDB: Searchable Encrypted, Fast, Compressed, In-Memory Database using Enclaves

02/12/2020
by   Benny Fuhry, et al.
0

Data confidentiality is an important requirement for clients when outsourcing databases to the cloud. Trusted execution environments, such as Intel SGX, offer an efficient, hardware-based solution to this cryptographic problem. Existing solutions are not optimized for column-oriented, in-memory databases and pose impractical memory requirements on the enclave. We present EncDBDB, a novel approach for client-controlled encryption of a column-oriented, in-memory databases allowing range searches using an enclave. EncDBDB offers nine encrypted dictionaries, which provide different security, performance and storage efficiency tradeoffs for the data. It is especially suited for complex, read-oriented, analytic queries, e.g., as present in data warehouses. The computational overhead compared to plaintext processing is within a millisecond even for databases with millions of entries and the leakage is limited. Compressed encrypted data requires less space than a corresponding plaintext column. Furthermore, the resulting code - and data - in the enclave is very small reducing the potential for security-relevant implementation errors and side-channel leakages.

READ FULL TEXT
research
11/07/2017

StealthDB: a Scalable Encrypted Database with Full SQL Query Support

Encrypted database systems provide a great method for protecting sensiti...
research
09/07/2018

Pushing the Limits of Encrypted Databases with Secure Hardware

Encrypted databases have been studied for more than 10 years and are qui...
research
01/11/2020

Accelerating Forward and Backward Private Searchable Encryption Using Trusted Execution

Searchable encryption (SE) is one of the key enablers for building encry...
research
01/10/2020

Designing a Bit-Based Model to Accelerate Query Processing Over Encrypted Databases in Cloud

Database users have started moving toward the use of cloud computing as ...
research
11/17/2021

BigFoot: Exploiting and Mitigating Leakage in Encrypted Write-Ahead Logs

Modern databases and data-warehousing systems separate query processing ...
research
03/20/2020

Efficient Oblivious Database Joins

A major algorithmic challenge in designing applications intended for sec...
research
09/08/2023

Value-Compressed Sparse Column (VCSC): Sparse Matrix Storage for Redundant Data

Compressed Sparse Column (CSC) and Coordinate (COO) are popular compress...

Please sign up or login with your details

Forgot password? Click here to reset