Publication Type
Conference Proceeding Article
Version
publishedVersion
Publication Date
7-2019
Abstract
Data privacy is becoming one of the most critical concerns in cloud computing. Several proposals based on Intel SGX such as VC3 and M2R have been introduced in the literature to protect data privacy during job execution in the cloud. However, a comprehensive formal proof of their security guarantees is still lacking. In this paper, we propose ObliDC, a general UC-secure SGX-based oblivious distributed computing framework. First, we model the life-cycle of a distributed computing job as data-flow graphs. Under the assumption of malicious, adaptive adversaries in the cloud, we then formally define data privacy of a distributed computing job by introducing a notion named ODC-privacy, which encompasses both semantic security (to protect data confidentiality during computation and transmission) and oblivious traffic (to prevent data leakage from traffic analysis). ObliDC is composed of four two-party protocols -- job deployment, job initialization, job execution, and results return, which allow for modular construction of concrete privacy-preserving job protocols in different distributed computing frameworks. Finally, inspired by a formal abstraction for trusted processors proposed by R. Pass et al., we formally prove the security of ObliDC under the universal composability (UC) framework.
Keywords
Distributed computing systems, Formal proof, Intel SGX, Oblivious computation
Discipline
Information Security
Research Areas
Cybersecurity
Publication
AsiaCCS '19: Proceedings of the ACM Asia Conference on Information, Computer and Communications Security, Auckland, New Zealand, July 9-12
First Page
86
Last Page
99
ISBN
9781450367523
Identifier
10.1145/3321705.3329822
Publisher
ACM
City or Country
New York
Citation
WU, Pengfei; SHEN, Qingni; DENG, Robert H.; LIU, Ximeng; ZHANG, Yinghui; and WU, Zhonghai.
ObliDC: An SGX-based oblivious distributed computing framework with formal proof. (2019). AsiaCCS '19: Proceedings of the ACM Asia Conference on Information, Computer and Communications Security, Auckland, New Zealand, July 9-12. 86-99.
Available at: https://ink.library.smu.edu.sg/sis_research/4512
Copyright Owner and License
Publisher
Creative Commons License
This work is licensed under a Creative Commons Attribution-NonCommercial-No Derivative Works 4.0 International License.
Additional URL
https://doi.org/10.1145/3321705.3329822