NewMCOS: Towards a Practical Multi-Cloud Oblivious Storage Scheme

Encryption alone is not enough to protect data privacy, because access pattern leaks some sensitive information. Oblivious RAM (ORAM), the solution to this problem, is still far from practical deployment for heavy storage and communication/ computation overhead. To reduce them, an insightful idea was proposed to utilize non-colluding clouds to shift client computation and client-cloud communication to the clouds. The proposed multi-cloud ORAM achieved $O$O(1) client-cloud bandwidth cost and removed most of client computation. In this paper, we exploit "disconnected ORAM operation" and design "two-layer encryption" to further reduce these overheads. Experiments show that our proposed scheme, NewMCOS, significantly reduces evict cache size from GB/MB to KB level with about 2-3 times lower response time and 20 percent savings in bandwidth for clouds, compared to other schemes. Theoretically speaking, we reduce evict cache size from $O(\sqrt{N})$O(N) to $O(ZK)$O(ZK), where $N$N is the number of real data blocks, $K$K is the number of clouds ($2<K << \sqrt{N}$2<K<<N), and $Z$Z is the number of real blocks uploaded from the client for eviction. By employing "lazy eviction operation", the write frequency is reduced by $O(Z)$O(Z), the shuffling bandwidth cost is reduced by $\Omega (Z\; \log Z)$omega(ZlogZ). Meanwhile, NewMCOS is proved to be secure.