CryptSQLite: Protecting Data Confidentiality of SQLite with Intel SGX

被引:18
|
作者
Wang, Yongzhi [1 ]
Liu, Lingtong [1 ]
Su, Cuicui [1 ]
Ma, Jiawen [1 ]
Wang, Lei [1 ]
Yang, Yibo [1 ]
Shen, Yulong [1 ]
Li, Guangxia [1 ]
Zhang, Tao [1 ]
Dong, Xuewen [1 ]
机构
[1] Xidian Univ, Sch Comp Sci & Technol, Xian 710071, Shaanxi, Peoples R China
来源
2017 INTERNATIONAL CONFERENCE ON NETWORKING AND NETWORK APPLICATIONS (NANA) | 2017年
基金
中国国家自然科学基金;
关键词
Database Security; Data Confidentiality; SGX; SQLite;
D O I
10.1109/NaNA.2017.48
中图分类号
TP3 [计算技术、计算机技术];
学科分类号
0812 ;
摘要
Protecting data confidentiality for database systems is a critical but challenging problem. In this paper, we propose a novel architecture to address this problem by combining Intel Software Guard Extensions (SGX) technology and the symmetric encryption scheme. Based on the proposed architecture, we use SQLite, a lightweight database system, as a study case and propose CryptSQLite to protect its data confidentiality. Our security analysis showed that CryptSQLite can protect the data confidentiality against attacks from outside attackers, malicious insiders, and malicious neighboring users. We further developed a prototype system based on the design. Our experimental results showed that CryptSQLite is a viable solution and incurs a moderate performance overhead.
引用
收藏
页码:303 / 308
页数:6
相关论文
共 50 条
  • [31] SGXoMeter: Open and Modular Benchmarking for Intel SGX
    Mahhouk, Mohammad
    Weichbrodt, Nico
    Kapitza, Ruediger
    [J]. PROCEEDINGS OF THE 14TH EUROPEAN WORKSHOP ON SYSTEMS SECURITY (EUROSEC 2021), 2021, : 55 - 61
  • [32] Scaling Intel® Software Guard Extensions Applications with Intel® SGX Card
    Chakrabarti, Somnath
    Hoekstra, Matthew
    Kuvaiskii, Dmitrii
    Vij, Mona
    [J]. PROCEEDINGS OF THE 8TH INTERNATIONAL WORKSHOP ON HARDWARE AND ARCHITECTURAL SUPPORT FOR SECURITY AND PRIVACY, HASP '19, 2019,
  • [33] Protecting Confidentiality in Cancer Registry Data With Geographic Identifiers
    Yu, Mandi
    Reiter, Jerome Phillip
    Zhu, Li
    Liu, Benmei
    Cronin, Kathleen A.
    Feuer, Eric J.
    [J]. AMERICAN JOURNAL OF EPIDEMIOLOGY, 2017, 186 (01) : 83 - 91
  • [34] Protecting farmers' data privacy and confidentiality: Recommendations and considerations
    Kaur, Jasmin
    Fard, Seyed Mehdi Hazrati
    Amiri-Zarandi, Mohammad
    Dara, Rozita
    [J]. FRONTIERS IN SUSTAINABLE FOOD SYSTEMS, 2022, 6
  • [35] Benchmarking the Second Generation of Intel SGX Hardware
    El-Hindi, Muhammad
    Ziegler, Tobias
    Heinrich, Matthias
    Lutsch, Adrian
    Zhao, Zheguang
    Binnig, Carsten
    [J]. 18TH INTERNATIONAL WORKSHOP ON DATA MANAGEMENT ON NEW HARDWARE, DAMON 2022, 2022,
  • [36] Isolating Operating System Components with Intel SGX
    Richter, Lars
    Goetzfried, Johannes
    Mueller, Tilo
    [J]. SYSTEX 2016: 1ST WORKSHOP ON SYSTEM SOFTWARE FOR TRUSTED EXECUTION, 2016,
  • [37] SecureKeeper: Confidential ZooKeeper using Intel SGX
    Brenner, Stefan
    Wulf, Colin
    Goltzsche, David
    Weichbrodt, Nico
    Lorenz, Matthias
    Fetzer, Christof
    Pietzuch, Peter
    Kapitza, Rudiger
    [J]. MIDDLEWARE '16: PROCEEDINGS OF THE 17TH INTERNATIONAL MIDDLEWARE CONFERENCE, 2016,
  • [38] Switchless Calls Made Practical in Intel SGX
    Tian, Hongliang
    Zhang, Qiong
    Yan, Shoumeng
    Rudnitsky, Alex
    Shacham, Liron
    Yariv, Ron
    Milshten, Noam
    [J]. PROCEEDINGS OF THE 3RD WORKSHOP ON SYSTEM SOFTWARE FOR TRUSTED EXECUTION (SYSTEX'18), 2018, : 22 - 27
  • [39] Protecting the confidentiality of interim data: Addressing current challenges
    Fleming, Thomas R.
    [J]. CLINICAL TRIALS, 2015, 12 (01) : 5 - 11
  • [40] CERTIFICATES OF CONFIDENTIALITY - A VALUABLE TOOL FOR PROTECTING GENETIC DATA
    EARLEY, CL
    STRONG, LC
    [J]. AMERICAN JOURNAL OF HUMAN GENETICS, 1995, 57 (03) : 727 - 731
12345