Cited By
View all- Anderson JAlkabani YEl-Ghazawi T(2021)ReCPE: A PE for Reconfigurable Lightweight Cryptography2021 IEEE 34th International System-on-Chip Conference (SOCC)10.1109/SOCC52499.2021.9739359(176-181)Online publication date: 14-Sep-2021
Hardware Support for Secure Stream Processing in Cloud Environments
Pages 283 - 286
Abstract
Many-core microprocessor architectures are quickly becoming prevalent in data centers, due to their demonstrated processing power and network flexibility. However, this flexibility comes at a cost; co-mingled data from disparate users must be kept secure, which forces processor cycles to be wasted on cryptographic operations. This paper introduces a novel, secure, stream processing architecture which supports efficient homomorphic authentication of data and enforces secrecy of individuals' data. Additionally, this architecture is shown to secure time-series analysis of data from multiple users from both corruption and disclosure. Hardware synthesis shows that security-related circuitry incurs less than 10% overhead, and latency analysis shows an increase of 2 clocks per hop. However, despite the increase in latency, the proposed architecture shows an improvement over stream processing systems that use traditional security methods.
References
[1]
Shweta Agrawal and Dan Boneh. 2009. Homomorphic MACs: MAC-Based Integrity for Network Coding. In ACNS '09. Proceedings of the 7th International Conference on Applied Cryptography and Network Security. ACM, 292--305.
[2]
Altera Corporation 2009. AN 567: Quartus II Design Separation Flow. Altera Corporation.
[3]
John Black and Phillip Rogaway. 2002. A Block-Cipher Mode of Operation for Parallelizable Message Authentication. In EUROCRYPT '02 Proceedings of the International Conference on the Theory and Applications of Cryptographic Techniques: Advances in Cryptology. Springer-Verlag, London, UK.
[4]
Smalley E. 2011. Data Center On A Chip. IEEE Spectrum (Spring 2011).
[5]
Cezar Reinbrecht et al. 2007. Gossip NoC -- Avoiding Timing Side-Channel Attacks through Traffic Management. In NOCS 2007. First International Symposium on Networks-on-Chip. IEEE.
[6]
Dan Boneh et al. 2009. Signing a Linear Subspace: Signature Schemes for Network Coding. In PKC '09. Irvine Proceedings of the 12th International Conference on Practice and Theory in Public Key Cryptography. Springer-Verlag, Berlin, Heidelberg.
[7]
Hassan M.G. Wassel et al. 2014. Networks on Chip with Provable Security Properties. IEEE Micro 34, 3 (June 2014), 57--68.
[8]
Jean-Philippe Diguet et al. 2016. NOC-centric Security of Reconfigurable SoC. In 2016 IEEE Computer Society Annual Symposium on VLSI (ISVLSI). IEEE Computer Society, Washington DC.
[9]
Leandro Fiorin et al. 2008. Implementation of a reconfigurable data protection module for NoC-based MPSoCs. In IPDPS 2008. IEEE International Symposium on Parallel and Distributed Processing. IEEE.
[10]
Martha Johanna Sepulveda et al. 2015. NoC-Based Protection for SoC Time-Driven Attacks. IEEE Embedded Systems Letters 7, 1 (March 2015), 7--10.
[11]
Sheng Ma et al. 2014. Networks-on-Chip 1st ed. Morgan Kaufmann, Burlington, MA.
[12]
K.G. Shin John Hall and Jennifer Rexford. 1996. A Router Architecture for Real-Time Point-to-Point Networks. In 23rd Annual International Symposium on Computer Architecture. IEEE.
[13]
Alan Kaminsky and Stanislaw P. Radziszowski. 2008. A case for a parallelizable hash. In MILCOM 2008. Military Communications Conference Proceedings. IEEE.
[14]
Gianluca Palermo Leandro Fiorin and Cristina Silvano. 2008. A security monitoring service for NoCs. In CODES+ISSS '08. Proceedings of the 6th IEEE/ACM/IFIP international conference on Hardware/Software codesign and system synthesis. ACM, New York, NY, 197--202.
[15]
Indrakshi Ray Raman Adaikkalavan and Xing Xie. 2011. Multilevel Secure Data Stream Processing, In Data and Applications Security and Privacy XXV. DBSec 2011. Lecture Notes in Computer Science 6818 (2011), 122--137.
[16]
Bruce Schneier. 1995. Applied Cryptography: Protocols, Algorithms, and Source Code in C 2nd ed. John Wiley & Sons, Inc., New York, NY.
[17]
Adi Shamir. 1979. How to share a secret. Communications of the ACM Magazine 22, 11 (November 1979), 612--613.
[18]
R.W. Yeung S.Y.R. Li and Ning Cai. 2003. Linear network coding. In IEEE Transactions on Information Theory, Vol. 49. IEEE, 371--381.
[19]
Yao Wang and G. Edward Suh. 2012. Efficient Timing Channel Protection for On-Chip Networks. In NOCS '12. Proceedings of NOCS 2012. IEEE, 142--151.
Index Terms
- Hardware Support for Secure Stream Processing in Cloud Environments
Recommendations
Efficient Verifiable Computation of Linear and Quadratic Functions over Encrypted Data
ASIA CCS '16: Proceedings of the 11th ACM on Asia Conference on Computer and Communications SecurityIn data outsourcing, a client stores a large amount of data on an untrusted server; subsequently, the client can request the server to compute a function on any subset of the data. This setting naturally leads to two security requirements: ...
Practical Homomorphic Message Authenticators for Arithmetic Circuits
Homomorphic message authenticators allow the holder of a (public) evaluation key to perform computations over previously authenticated data, in such a way that the produced tag $$\sigma $$ź can be used to certify the authenticity of the computation. ...
Forward-secure signatures in untrusted update environments: efficient and generic constructions
CCS '07: Proceedings of the 14th ACM conference on Computer and communications securityForward-secure signatures (FSS) prevent forgeries for past time periods when an attacker obtains full access to the signer's storage. To simplify the integration of these primitives into standard security architectures, Boyen, Shacham, Shen and Waters ...
Comments
Information & Contributors
Information
Published In
May 2017
450 pages
ISBN:9781450344876
DOI:10.1145/3075564
- General Chair:
- Roberto Giorgi,
- Program Chairs:
- Michela Becchi,
- Francesca Palumbo
Copyright © 2017 ACM.
Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than the author(s) must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected].
Sponsors
Publisher
Association for Computing Machinery
New York, NY, United States
Publication History
Published: 15 May 2017
Check for updates
Author Tags
Qualifiers
- Short-paper
- Research
- Refereed limited
Conference
CF '17
Sponsor:
Acceptance Rates
CF'17 Paper Acceptance Rate 43 of 87 submissions, 49%;
Overall Acceptance Rate 273 of 785 submissions, 35%
Contributors
Other Metrics
Bibliometrics & Citations
Bibliometrics
Article Metrics
- View Citations1Total Citations
- 94Total Downloads
- Downloads (Last 12 months)1
- Downloads (Last 6 weeks)0
Reflects downloads up to 13 Sep 2024
Other Metrics
Citations
Cited By
View all- Anderson JAlkabani YEl-Ghazawi T(2021)ReCPE: A PE for Reconfigurable Lightweight Cryptography2021 IEEE 34th International System-on-Chip Conference (SOCC)10.1109/SOCC52499.2021.9739359(176-181)Online publication date: 14-Sep-2021
View Options
Get Access
Login options
Check if you have access through your login credentials or your institution to get full access on this article.
Sign in