SlideShare ist ein Scribd-Unternehmen logo

Privacy Preserving Elastic Stream Processing with Clouds using Homomorphic Encryption

M
miyurud

Economies of scale achieved by Infrastructure as a Service (IaaS) clouds has enabled organizations to elastically scale their stream processing applications to public clouds. However, current approaches for elastic stream processing do not sufficiently address the potential security vulnerabilities in cloud environments. This presentation explains how to do secure elastic data stream processing within latency guarantees in such a way that third parties do not get access to the encrypted data. Homomorphic encryption allows for computing over encrypted data without access to the secret key. Results from homomorphic computation remains encrypted and can only be decrypted at the receiving end. Using a real world test setup, which includes an email filter benchmark and a web server access log processor benchmark (EDGAR) on WSO2 Stream Processor we demonstrate the effectiveness of our approach. We compare latency values of operating on premise vs elastic scaling to public cloud. Experiments on Amazon EC2 indicate that the proposed approach provides significant results which is 10% to 17% improvement of average latency in the case of email filter benchmark and EDGAR benchmarks respectively. See the following research paper for more information. http://miyurud.github.io/papers/2019/dasfaa2019-homomorphic-encryption.pdf

Daten & Analysen
1 von 37
Downloaden Sie, um offline zu lesen
Privacy Preserving Elastic Stream Processing with Clouds Using Homomorphic Encryption Arosha Rodrigo, Miyuru Dayarathna, and Sanath Jayasena WSO2, Inc, USA University of Moratuwa, Sri Lanka 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) Chiang Mai, Thailand 25/4/2019
Introduction • Data Stream Processing Conducts Online Analytical Processing on Streams of Data 2 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM Detecting Malicious Attacks to a Web Server (unauthorizedCount + forbiddenCount) / totalAccessCount > 0.3 In last 30 seconds
Introduction - Applications of Stream Processing 3 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM Heart rate monitoring https://blogs.mathworks.com/iot/20 17/10/27/collecting-resting-heart-rat e-data-using-thingspeak/ Highway toll processing http://www.cs.brandeis.edu/~linearr oad/ Weather sensor networks http://hpwren.ucsd.edu/news/20070911/
Introduction - WSO2 Stream Processor 4 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM WSO2 Stream Processor is an open source, cloud native and lightweight stream processing platform that understands streaming SQL queries in order to capture, analyze, process and act on events in real time. https://wso2.com/analytics-and-stream-processing/
Introduction - Siddhi - Streaming and Complex Event Processing engine 5http://siddhi.io/ 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
Introduction (Contd.) • Stream processing systems often face resource limitations due to unexpected workloads [1] • With time the stream processor deployment may expand • Possible Solutions – Load shedding – Approximate query processing – Elastically scale into external cluster 6 [1] Miyuru Dayarathna and Toyotaro Suzumura, "A Mechanism for Stream Program Performance Recovery in Resource Limited Compute Clusters", DASFAA 2013 (The 18th International Conference on Database Systems for Advanced Applications), Wuhan, China, 2013/4 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
Introduction - Elastic Switching Mechanism (ESM) ESM reduces the overall average latency of event processing jobs by significant amount considering the cost of operating the system 7 Sajith Ravindra, Miyuru Dayarathna, and Sanath Jayasena. 2017. Latency Aware Elastic Switching-based Stream Processing Over Compressed Data Streams. In Proceedings of the 8th ACM/SPEC on International Conference on Performance Engineering (ICPE '17). ACM, New York, NY, USA, 91-102 (Ravindra et al. ACM/SPEC ICPE '17) 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
Research Problem • Privacy preserving data stream processing – There can be situations such as, • You do not want to send sensitive data to public cloud • But you need to elastically scale due to resource limitations of the on prem deployment. – Sending data as encrypted over the network and decrypting at the server is not completely secure. 8 Stream Processor in Private Cloud Stream Processor in Public Cloud Input Stream Output Stream 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
Fully Homomorphic Encryption (FHE) • FHE is an advanced encryption technique which allows data to be stored and processes in encrypted form. • Current FHE techniques are computationally expensive – Need additional space for keys and cypher texts 9 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
Selected FHE Implementation • HElib - https://github.com/homenc/HElib • Microsoft SEAL - https://github.com/Microsoft/SEAL • PALISADE - https://git.njit.edu/palisade/PALISADE • HEAAN - https://github.com/snucrypto/HEAAN • Experiments done with HElib indicated that it is practical to implement applications such as stream Data Processing. 10 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
Proposed Solution Elastic scaling in hybrid cloud scenario with privacy preserving data stream processing. 11 Stream Processor in Private Cloud Stream Processor in Public Cloud Input Stream Output Stream 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
Related Work • Elastic Stream Processing • Data Stream Compression 12 Hummer et al. [13] - Elastic Stream Processing on top of Cloud Computing Stormy [18] - Stream processing as a service Cervion et al. [2] - Adaptive provisioning of VMs for streaming system to scale up/down Cuzzocrea et al. [13] - lossy compression method for efficient OLAP [13] W. Hummer, B. Satzger, and S. Dustdar. Elastic stream processing in the cloud. Wiley Interdisciplinary Reviews: Data Mining and Knowledge Discovery, 3(5):333–345, 2013 [18] S. Loesing, M. Hentschel, T. Kraska, and D. Kossmann. Stormy: An elastic and highly available streaming service in the cloud. In Proceedings of the 2012 Joint EDBT/ICDT Workshops, EDBT-ICDT ’12, pages 55–60, New York, NY, USA, 2012. ACM. [2] J. Cervino, E. Kalyvianaki, J. Salvachua, and P. Pietzuch. Adaptive provisioning of stream processing systems in the cloud. In Data Engineering Workshops (ICDEW), 2012 IEEE 28th International Conference on, pages 295–301, April 2012. 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
Related Work (Contd.) • Performance optimizations of homomorphic encryption 13 Dai et al. [4] on cuHE - Use of GPUs to accelerate computations in homomorphic level Shaon [22] - secure data analytics in untrusted cloud setup [4] W. Dai and B. Sunar. cuhe: A homomorphic encryption accelerator library. Cryptology ePrint Archive, Report 2015/818, 2015. https://eprint.iacr.org/2015/818. [22] F. Shaon, M. Kantarcioglu, Z. Lin, and L. Khan. Sgx-bigmatrix: A practical encrypted data analytic framework with trusted processors. In Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security, CCS ’17, pages 1211–1228, New York, NY, USA, 2017. ACM. 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
HomoESM System Design • Scheduler - Collects events from input stream • Encryptor • Publisher - Publishes the events to public cloud • Public Cloud Stream Processor – Homomorphic CEP Engine – Homomorphic Encryption Extension – HElib API • Receiver - Receives data from both private and public stream processors • Decryptor - Decrypts events from public cloud stream processor • Profiler - Measures the performance information of the output events stream 14 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
Switching Function 15 - VM startup Latency - The threshold for total amount of data received by the VM from private cloud tt - 1 t + 1 Timeline 𝜏 - Time period to wait until the VM startup process triggers 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM Binary switching Function for single VM
Implementation 16 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
Implementation - Lower Level Optimizations 17 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
Implementation - Composite Event Encode Worker 18 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM A thread pool which handles event Encryptions and composite event creation.
Implementation - Composite Event Encode Worker (Contd.) • Combines non-operational fields of each of the plain events in the queue • Converts operational fields into binary form and combines them together • Pads the operational fields with zeros • Performs encryption on the operational fields and puts the newly created composite event into the queue 19 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
Implementation - Encrypted Events Publisher 20 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
Implementation - Encrypted Events Publisher (Contd.) • Periodically checks for encrypted events in the encrypted queue. • If there are encrypted events, they are sent at once to public stream processor. 21 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
Implementation - Lower Level Optimizations 22 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
Implementation - Event Receiver • If the received event has been encrypted with homomorphic encryption it sends the composite event into ‘Composite Event Decode Worker’ • If not it will reload the payload data and calculate the performance metrics. 23 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
Implementation - Lower Level Optimizations 24 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
Implementation - Composite Event Decode Worker Handles all decomposition and decryptions of the composite event. 25 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
Benchmarks • Email Filter - Benchmark based on Enron data set • EDGAR - Dataset published by Division of Economic and Risk Analysis, USA – Filter – Comparison – Add/Subtract 26 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM https://www.cs.cmu.edu/~./enron/ https://www.sec.gov/dera/data/edgar-log-file-data-set.html
Benchmarks - Email Filter 27 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
Benchmarks - EDGAR Filter 28 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
Input Data Rate Variation of the Two Benchmarks 29 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
Evaluation - Experiment Setup 30 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM Experiments were done using three Virtual Machines (VMs) in Amazon EC2 cloud. Evaluation Criteria: Can the average latency of our stream processing jobs be reduced through homomorphic elastic scaling?
Email Filter Benchmark 31 Homomorphic elastic scaling provides 10.24% reduction of average latency per event. 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
EDGAR Filter Benchmark 32 Homomorphic elastic scaling provides 17% reduction of average latency per event. 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
EDGAR Comparison Benchmark 33 Homomorphic elastic scaling provides 3% reduction of average latency per event. 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
EDGAR Add/Subtract Benchmark 34 Homomorphic elastic scaling provides 3.68% reduction of average latency per event. 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM Compared to equal only operation, less than & greater than operations consume more XOR and AND gates operations in the Homomorphic Encryption level.
Conclusion • We presented the elastic privacy preserving data stream processing – Real world implementation - HomoESM – Considerable performance benefits - 10 - 17% improvement for filter operation • The level of performance gain obtained varies based on the types of operations conducted. 35 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
Futurework • Handle more complicated stream processing operations. • Experiment with multiple query based tuning for privacy preserving elastic scaling. • Fine tune the switching mechanism to handle edge cases. • Applications in cloud native environments. 36 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
THANK YOU wso2.com 37

Empfohlen

Grid Computing
Grid ComputingGrid Computing
Grid Computing
Phương Đông
 
Grid Presentation
Grid PresentationGrid Presentation
Grid Presentation
Marielisa Peralta
 
Grid computing
Grid computingGrid computing
Grid computing
Shashwat Shriparv
 
Grid computing & its applications
Grid computing & its applicationsGrid computing & its applications
Grid computing & its applications
Alokeparna Choudhury
 
42 grid computing
42 grid computing42 grid computing
42 grid computing
SALMAN SHAIKH
 
42 grid computing
42 grid computing42 grid computing
42 grid computing
SALMAN SHAIKH
 
Intelligent Cloud Automation
Intelligent Cloud AutomationIntelligent Cloud Automation
Intelligent Cloud Automation
FogGuru MSCA Project
 
Exploring cloud for data warehousing
Exploring cloud for data warehousingExploring cloud for data warehousing
Exploring cloud for data warehousing
mark madsen
 

Empfohlen

Grid Computing
Grid ComputingGrid Computing
Grid Computing
Phương Đông
 
Grid Presentation
Grid PresentationGrid Presentation
Grid Presentation
Marielisa Peralta
 
Grid computing
Grid computingGrid computing
Grid computing
Shashwat Shriparv
 
Grid computing & its applications
Grid computing & its applicationsGrid computing & its applications
Grid computing & its applications
Alokeparna Choudhury
 
42 grid computing
42 grid computing42 grid computing
42 grid computing
SALMAN SHAIKH
 
42 grid computing
42 grid computing42 grid computing
42 grid computing
SALMAN SHAIKH
 
Intelligent Cloud Automation
Intelligent Cloud AutomationIntelligent Cloud Automation
Intelligent Cloud Automation
FogGuru MSCA Project
 
Exploring cloud for data warehousing
Exploring cloud for data warehousingExploring cloud for data warehousing
Exploring cloud for data warehousing
mark madsen
 
Welcome to International Journal of Engineering Research and Development (IJERD)
Welcome to International Journal of Engineering Research and Development (IJERD)Welcome to International Journal of Engineering Research and Development (IJERD)
Welcome to International Journal of Engineering Research and Development (IJERD)
IJERD Editor
 
Ci Connect: A service for building multi-institutional cluster environments
Ci Connect: A service for building multi-institutional cluster environmentsCi Connect: A service for building multi-institutional cluster environments
Ci Connect: A service for building multi-institutional cluster environments
Rob Gardner
 
1. GRID COMPUTING
1. GRID COMPUTING1. GRID COMPUTING
1. GRID COMPUTING
Dr Sandeep Kumar Poonia
 
Cloud Services for Repositories
Cloud Services for RepositoriesCloud Services for Repositories
Cloud Services for Repositories
Eduserv
 
Review of Cloud Computing Simulation Platforms and Related Environments
Review of Cloud Computing Simulation Platforms and Related EnvironmentsReview of Cloud Computing Simulation Platforms and Related Environments
Review of Cloud Computing Simulation Platforms and Related Environments
RECAP Project
 
Challenges and Issues of Next Cloud Computing Platforms
Challenges and Issues of Next Cloud Computing PlatformsChallenges and Issues of Next Cloud Computing Platforms
Challenges and Issues of Next Cloud Computing Platforms
Frederic Desprez
 
Cloud DC Transforming
Cloud DC TransformingCloud DC Transforming
Cloud DC Transforming
Duy Tan Geek
 
[VMblog.com] Eco4Cloud introduces EcoInterCloud and takes intercloud to the n...
[VMblog.com] Eco4Cloud introduces EcoInterCloud and takes intercloud to the n...[VMblog.com] Eco4Cloud introduces EcoInterCloud and takes intercloud to the n...
[VMblog.com] Eco4Cloud introduces EcoInterCloud and takes intercloud to the n...
Roberto Mircoli
 
A Literature Survey on Resource Management Techniques, Issues and Challenges ...
A Literature Survey on Resource Management Techniques, Issues and Challenges ...A Literature Survey on Resource Management Techniques, Issues and Challenges ...
A Literature Survey on Resource Management Techniques, Issues and Challenges ...
TELKOMNIKA JOURNAL
 
Effective Information Flow Control as a Service: EIFCaaS
Effective Information Flow Control as a Service: EIFCaaSEffective Information Flow Control as a Service: EIFCaaS
Effective Information Flow Control as a Service: EIFCaaS
IRJET Journal
 
Mitigating the Integrity Issues in Cloud Computing Utilizing Cryptography Alg...
Mitigating the Integrity Issues in Cloud Computing Utilizing Cryptography Alg...Mitigating the Integrity Issues in Cloud Computing Utilizing Cryptography Alg...
Mitigating the Integrity Issues in Cloud Computing Utilizing Cryptography Alg...
AJASTJournal
 
IRJET- Deduplication of Encrypted Bigdata on Cloud
IRJET- Deduplication of Encrypted Bigdata on CloudIRJET- Deduplication of Encrypted Bigdata on Cloud
IRJET- Deduplication of Encrypted Bigdata on Cloud
IRJET Journal
 
Cloud Computing - A Primer
Cloud Computing - A PrimerCloud Computing - A Primer
Cloud Computing - A Primer
brownmestizo
 
A Systematic Literature Review On Cloud Computing Security Threats And Mitig...
A Systematic Literature Review On Cloud Computing Security Threats And Mitig...A Systematic Literature Review On Cloud Computing Security Threats And Mitig...
A Systematic Literature Review On Cloud Computing Security Threats And Mitig...
Claire Webber
 
Evaluation Of The Data Security Methods In Cloud Computing Environments
Evaluation Of The Data Security Methods In Cloud Computing EnvironmentsEvaluation Of The Data Security Methods In Cloud Computing Environments
Evaluation Of The Data Security Methods In Cloud Computing Environments
ijfcstjournal
 
IRJET- Improving Data Spillage in Multi-Cloud Capacity Administration
IRJET- Improving Data Spillage in Multi-Cloud Capacity AdministrationIRJET- Improving Data Spillage in Multi-Cloud Capacity Administration
IRJET- Improving Data Spillage in Multi-Cloud Capacity Administration
IRJET Journal
 
IRJET- Improving Data Spillage in Multi-Cloud Capacity Administration
IRJET- Improving Data Spillage in Multi-Cloud Capacity AdministrationIRJET- Improving Data Spillage in Multi-Cloud Capacity Administration
IRJET- Improving Data Spillage in Multi-Cloud Capacity Administration
IRJET Journal
 
Data Division in Cloud for Secured Data Storage using RSA Algorithm
Data Division in Cloud for Secured Data Storage using RSA AlgorithmData Division in Cloud for Secured Data Storage using RSA Algorithm
Data Division in Cloud for Secured Data Storage using RSA Algorithm
IRJET Journal
 
A brief review: security issues in cloud computing and their solutions
A brief review: security issues in cloud computing and their solutionsA brief review: security issues in cloud computing and their solutions
A brief review: security issues in cloud computing and their solutions
TELKOMNIKA JOURNAL
 
Grid and Cloud Computing Lecture-2a.pptx
Grid and Cloud Computing Lecture-2a.pptxGrid and Cloud Computing Lecture-2a.pptx
Grid and Cloud Computing Lecture-2a.pptx
DrAdeelAkram2
 
Cloud Computing & Security Concerns
Cloud Computing & Security ConcernsCloud Computing & Security Concerns
Cloud Computing & Security Concerns
University of San Francisco
 
An efficient and secure data storage in cloud computing using modified RSA pu...
An efficient and secure data storage in cloud computing using modified RSA pu...An efficient and secure data storage in cloud computing using modified RSA pu...
An efficient and secure data storage in cloud computing using modified RSA pu...
IJECEIAES
 

Weitere ähnliche Inhalte

Was ist angesagt?

Welcome to International Journal of Engineering Research and Development (IJERD)
Welcome to International Journal of Engineering Research and Development (IJERD)Welcome to International Journal of Engineering Research and Development (IJERD)
Welcome to International Journal of Engineering Research and Development (IJERD)
IJERD Editor
 
Cloud DC Transforming
Cloud DC TransformingCloud DC Transforming
Cloud DC Transforming
Duy Tan Geek
 
[VMblog.com] Eco4Cloud introduces EcoInterCloud and takes intercloud to the n...
[VMblog.com] Eco4Cloud introduces EcoInterCloud and takes intercloud to the n...[VMblog.com] Eco4Cloud introduces EcoInterCloud and takes intercloud to the n...
[VMblog.com] Eco4Cloud introduces EcoInterCloud and takes intercloud to the n...
Roberto Mircoli
 

Was ist angesagt? (8)

Welcome to International Journal of Engineering Research and Development (IJERD)
Welcome to International Journal of Engineering Research and Development (IJERD)Welcome to International Journal of Engineering Research and Development (IJERD)
Welcome to International Journal of Engineering Research and Development (IJERD)
 
Ci Connect: A service for building multi-institutional cluster environments
Ci Connect: A service for building multi-institutional cluster environmentsCi Connect: A service for building multi-institutional cluster environments
Ci Connect: A service for building multi-institutional cluster environments
 
1. GRID COMPUTING
1. GRID COMPUTING1. GRID COMPUTING
1. GRID COMPUTING
 
Cloud Services for Repositories
Cloud Services for RepositoriesCloud Services for Repositories
Cloud Services for Repositories
 
Review of Cloud Computing Simulation Platforms and Related Environments
Review of Cloud Computing Simulation Platforms and Related EnvironmentsReview of Cloud Computing Simulation Platforms and Related Environments
Review of Cloud Computing Simulation Platforms and Related Environments
 
Challenges and Issues of Next Cloud Computing Platforms
Challenges and Issues of Next Cloud Computing PlatformsChallenges and Issues of Next Cloud Computing Platforms
Challenges and Issues of Next Cloud Computing Platforms
 
Cloud DC Transforming
Cloud DC TransformingCloud DC Transforming
Cloud DC Transforming
 
[VMblog.com] Eco4Cloud introduces EcoInterCloud and takes intercloud to the n...
[VMblog.com] Eco4Cloud introduces EcoInterCloud and takes intercloud to the n...[VMblog.com] Eco4Cloud introduces EcoInterCloud and takes intercloud to the n...
[VMblog.com] Eco4Cloud introduces EcoInterCloud and takes intercloud to the n...
 

Ähnlich wie Privacy Preserving Elastic Stream Processing with Clouds using Homomorphic Encryption

A Literature Survey on Resource Management Techniques, Issues and Challenges ...
A Literature Survey on Resource Management Techniques, Issues and Challenges ...A Literature Survey on Resource Management Techniques, Issues and Challenges ...
A Literature Survey on Resource Management Techniques, Issues and Challenges ...
TELKOMNIKA JOURNAL
 
Mitigating the Integrity Issues in Cloud Computing Utilizing Cryptography Alg...
Mitigating the Integrity Issues in Cloud Computing Utilizing Cryptography Alg...Mitigating the Integrity Issues in Cloud Computing Utilizing Cryptography Alg...
Mitigating the Integrity Issues in Cloud Computing Utilizing Cryptography Alg...
AJASTJournal
 
A brief review: security issues in cloud computing and their solutions
A brief review: security issues in cloud computing and their solutionsA brief review: security issues in cloud computing and their solutions
A brief review: security issues in cloud computing and their solutions
TELKOMNIKA JOURNAL
 
An efficient and secure data storage in cloud computing using modified RSA pu...
An efficient and secure data storage in cloud computing using modified RSA pu...An efficient and secure data storage in cloud computing using modified RSA pu...
An efficient and secure data storage in cloud computing using modified RSA pu...
IJECEIAES
 
SECURE THIRD PARTY AUDITOR (TPA) FOR ENSURING DATA INTEGRITY IN FOG COMPUTING
SECURE THIRD PARTY AUDITOR (TPA) FOR ENSURING DATA INTEGRITY IN FOG COMPUTINGSECURE THIRD PARTY AUDITOR (TPA) FOR ENSURING DATA INTEGRITY IN FOG COMPUTING
SECURE THIRD PARTY AUDITOR (TPA) FOR ENSURING DATA INTEGRITY IN FOG COMPUTING
IJNSA Journal
 

Ähnlich wie Privacy Preserving Elastic Stream Processing with Clouds using Homomorphic Encryption (20)

A Literature Survey on Resource Management Techniques, Issues and Challenges ...
A Literature Survey on Resource Management Techniques, Issues and Challenges ...A Literature Survey on Resource Management Techniques, Issues and Challenges ...
A Literature Survey on Resource Management Techniques, Issues and Challenges ...
 
Effective Information Flow Control as a Service: EIFCaaS
Effective Information Flow Control as a Service: EIFCaaSEffective Information Flow Control as a Service: EIFCaaS
Effective Information Flow Control as a Service: EIFCaaS
 
Mitigating the Integrity Issues in Cloud Computing Utilizing Cryptography Alg...
Mitigating the Integrity Issues in Cloud Computing Utilizing Cryptography Alg...Mitigating the Integrity Issues in Cloud Computing Utilizing Cryptography Alg...
Mitigating the Integrity Issues in Cloud Computing Utilizing Cryptography Alg...
 
IRJET- Deduplication of Encrypted Bigdata on Cloud
IRJET- Deduplication of Encrypted Bigdata on CloudIRJET- Deduplication of Encrypted Bigdata on Cloud
IRJET- Deduplication of Encrypted Bigdata on Cloud
 
Cloud Computing - A Primer
Cloud Computing - A PrimerCloud Computing - A Primer
Cloud Computing - A Primer
 
A Systematic Literature Review On Cloud Computing Security Threats And Mitig...
A Systematic Literature Review On Cloud Computing Security Threats And Mitig...A Systematic Literature Review On Cloud Computing Security Threats And Mitig...
A Systematic Literature Review On Cloud Computing Security Threats And Mitig...
 
Evaluation Of The Data Security Methods In Cloud Computing Environments
Evaluation Of The Data Security Methods In Cloud Computing EnvironmentsEvaluation Of The Data Security Methods In Cloud Computing Environments
Evaluation Of The Data Security Methods In Cloud Computing Environments
 
IRJET- Improving Data Spillage in Multi-Cloud Capacity Administration
IRJET- Improving Data Spillage in Multi-Cloud Capacity AdministrationIRJET- Improving Data Spillage in Multi-Cloud Capacity Administration
IRJET- Improving Data Spillage in Multi-Cloud Capacity Administration
 
IRJET- Improving Data Spillage in Multi-Cloud Capacity Administration
IRJET- Improving Data Spillage in Multi-Cloud Capacity AdministrationIRJET- Improving Data Spillage in Multi-Cloud Capacity Administration
IRJET- Improving Data Spillage in Multi-Cloud Capacity Administration
 
Data Division in Cloud for Secured Data Storage using RSA Algorithm
Data Division in Cloud for Secured Data Storage using RSA AlgorithmData Division in Cloud for Secured Data Storage using RSA Algorithm
Data Division in Cloud for Secured Data Storage using RSA Algorithm
 
A brief review: security issues in cloud computing and their solutions
A brief review: security issues in cloud computing and their solutionsA brief review: security issues in cloud computing and their solutions
A brief review: security issues in cloud computing and their solutions
 
Grid and Cloud Computing Lecture-2a.pptx
Grid and Cloud Computing Lecture-2a.pptxGrid and Cloud Computing Lecture-2a.pptx
Grid and Cloud Computing Lecture-2a.pptx
 
Cloud Computing & Security Concerns
Cloud Computing & Security ConcernsCloud Computing & Security Concerns
Cloud Computing & Security Concerns
 
An efficient and secure data storage in cloud computing using modified RSA pu...
An efficient and secure data storage in cloud computing using modified RSA pu...An efficient and secure data storage in cloud computing using modified RSA pu...
An efficient and secure data storage in cloud computing using modified RSA pu...
 
security in cloud computing
security in cloud computingsecurity in cloud computing
security in cloud computing
 
Government Applications of Cloud Computing
Government Applications of Cloud ComputingGovernment Applications of Cloud Computing
Government Applications of Cloud Computing
 
pptseminar.pptx
pptseminar.pptxpptseminar.pptx
pptseminar.pptx
 
Cloud-based Data Stream Processing
Cloud-based Data Stream ProcessingCloud-based Data Stream Processing
Cloud-based Data Stream Processing
 
Research data management 1.5
Research data management 1.5Research data management 1.5
Research data management 1.5
 
SECURE THIRD PARTY AUDITOR (TPA) FOR ENSURING DATA INTEGRITY IN FOG COMPUTING
SECURE THIRD PARTY AUDITOR (TPA) FOR ENSURING DATA INTEGRITY IN FOG COMPUTINGSECURE THIRD PARTY AUDITOR (TPA) FOR ENSURING DATA INTEGRITY IN FOG COMPUTING
SECURE THIRD PARTY AUDITOR (TPA) FOR ENSURING DATA INTEGRITY IN FOG COMPUTING
 

Kürzlich hochgeladen

Jual Cytotec Asli Obat Aborsi No. 1 Paling Manjur
Jual Cytotec Asli Obat Aborsi No. 1 Paling ManjurJual Cytotec Asli Obat Aborsi No. 1 Paling Manjur
Jual Cytotec Asli Obat Aborsi No. 1 Paling Manjur
ptikerjasaptiker
 
Jual Obat Aborsi Surabaya ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan...
Jual Obat Aborsi Surabaya ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan...Jual Obat Aborsi Surabaya ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan...
Jual Obat Aborsi Surabaya ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan...
ZurliaSoop
 
DATA SUMMIT 24 Building Real-Time Pipelines With FLaNK
DATA SUMMIT 24 Building Real-Time Pipelines With FLaNKDATA SUMMIT 24 Building Real-Time Pipelines With FLaNK
DATA SUMMIT 24 Building Real-Time Pipelines With FLaNK
Timothy Spann
 
Top profile Call Girls In Begusarai [ 7014168258 ] Call Me For Genuine Models...
Top profile Call Girls In Begusarai [ 7014168258 ] Call Me For Genuine Models...Top profile Call Girls In Begusarai [ 7014168258 ] Call Me For Genuine Models...
Top profile Call Girls In Begusarai [ 7014168258 ] Call Me For Genuine Models...
nirzagarg
 
Top profile Call Girls In Tumkur [ 7014168258 ] Call Me For Genuine Models We...
Top profile Call Girls In Tumkur [ 7014168258 ] Call Me For Genuine Models We...Top profile Call Girls In Tumkur [ 7014168258 ] Call Me For Genuine Models We...
Top profile Call Girls In Tumkur [ 7014168258 ] Call Me For Genuine Models We...
nirzagarg
 
Gartner's Data Analytics Maturity Model.pptx
Gartner's Data Analytics Maturity Model.pptxGartner's Data Analytics Maturity Model.pptx
Gartner's Data Analytics Maturity Model.pptx
chadhar227
 
Top profile Call Girls In Chandrapur [ 7014168258 ] Call Me For Genuine Model...
Top profile Call Girls In Chandrapur [ 7014168258 ] Call Me For Genuine Model...Top profile Call Girls In Chandrapur [ 7014168258 ] Call Me For Genuine Model...
Top profile Call Girls In Chandrapur [ 7014168258 ] Call Me For Genuine Model...
gajnagarg
 
Top profile Call Girls In Vadodara [ 7014168258 ] Call Me For Genuine Models ...
Top profile Call Girls In Vadodara [ 7014168258 ] Call Me For Genuine Models ...Top profile Call Girls In Vadodara [ 7014168258 ] Call Me For Genuine Models ...
Top profile Call Girls In Vadodara [ 7014168258 ] Call Me For Genuine Models ...
gajnagarg
 
Top profile Call Girls In Hapur [ 7014168258 ] Call Me For Genuine Models We ...
Top profile Call Girls In Hapur [ 7014168258 ] Call Me For Genuine Models We ...Top profile Call Girls In Hapur [ 7014168258 ] Call Me For Genuine Models We ...
Top profile Call Girls In Hapur [ 7014168258 ] Call Me For Genuine Models We ...
nirzagarg
 
Abortion pills in Jeddah | +966572737505 | Get Cytotec
Abortion pills in Jeddah | +966572737505 | Get CytotecAbortion pills in Jeddah | +966572737505 | Get Cytotec
Abortion pills in Jeddah | +966572737505 | Get Cytotec
Abortion pills in Riyadh +966572737505 get cytotec
 
Capstone in Interprofessional Informatic // IMPACT OF COVID 19 ON EDUCATION
Capstone in Interprofessional Informatic // IMPACT OF COVID 19 ON EDUCATIONCapstone in Interprofessional Informatic // IMPACT OF COVID 19 ON EDUCATION
Capstone in Interprofessional Informatic // IMPACT OF COVID 19 ON EDUCATION
LakpaYanziSherpa
 
如何办理英国诺森比亚大学毕业证(NU毕业证书)成绩单原件一模一样
如何办理英国诺森比亚大学毕业证(NU毕业证书)成绩单原件一模一样如何办理英国诺森比亚大学毕业证(NU毕业证书)成绩单原件一模一样
如何办理英国诺森比亚大学毕业证(NU毕业证书)成绩单原件一模一样
wsppdmt
 
The-boAt-Story-Navigating-the-Waves-of-Innovation.pptx
The-boAt-Story-Navigating-the-Waves-of-Innovation.pptxThe-boAt-Story-Navigating-the-Waves-of-Innovation.pptx
The-boAt-Story-Navigating-the-Waves-of-Innovation.pptx
Vivek487417
 
一比一原版(曼大毕业证书)曼尼托巴大学毕业证成绩单留信学历认证一手价格
一比一原版(曼大毕业证书)曼尼托巴大学毕业证成绩单留信学历认证一手价格一比一原版(曼大毕业证书)曼尼托巴大学毕业证成绩单留信学历认证一手价格
一比一原版(曼大毕业证书)曼尼托巴大学毕业证成绩单留信学历认证一手价格
q6pzkpark
 

Kürzlich hochgeladen (20)

Jual Cytotec Asli Obat Aborsi No. 1 Paling Manjur
Jual Cytotec Asli Obat Aborsi No. 1 Paling ManjurJual Cytotec Asli Obat Aborsi No. 1 Paling Manjur
Jual Cytotec Asli Obat Aborsi No. 1 Paling Manjur
 
Jual Obat Aborsi Surabaya ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan...
Jual Obat Aborsi Surabaya ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan...Jual Obat Aborsi Surabaya ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan...
Jual Obat Aborsi Surabaya ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan...
 
DATA SUMMIT 24 Building Real-Time Pipelines With FLaNK
DATA SUMMIT 24 Building Real-Time Pipelines With FLaNKDATA SUMMIT 24 Building Real-Time Pipelines With FLaNK
DATA SUMMIT 24 Building Real-Time Pipelines With FLaNK
 
Aspirational Block Program Block Syaldey District - Almora
Aspirational Block Program Block Syaldey District - AlmoraAspirational Block Program Block Syaldey District - Almora
Aspirational Block Program Block Syaldey District - Almora
 
Top profile Call Girls In Begusarai [ 7014168258 ] Call Me For Genuine Models...
Top profile Call Girls In Begusarai [ 7014168258 ] Call Me For Genuine Models...Top profile Call Girls In Begusarai [ 7014168258 ] Call Me For Genuine Models...
Top profile Call Girls In Begusarai [ 7014168258 ] Call Me For Genuine Models...
 
Top profile Call Girls In Tumkur [ 7014168258 ] Call Me For Genuine Models We...
Top profile Call Girls In Tumkur [ 7014168258 ] Call Me For Genuine Models We...Top profile Call Girls In Tumkur [ 7014168258 ] Call Me For Genuine Models We...
Top profile Call Girls In Tumkur [ 7014168258 ] Call Me For Genuine Models We...
 
Gartner's Data Analytics Maturity Model.pptx
Gartner's Data Analytics Maturity Model.pptxGartner's Data Analytics Maturity Model.pptx
Gartner's Data Analytics Maturity Model.pptx
 
Switzerland Constitution 2002.pdf.........
Switzerland Constitution 2002.pdf.........Switzerland Constitution 2002.pdf.........
Switzerland Constitution 2002.pdf.........
 
Top profile Call Girls In Chandrapur [ 7014168258 ] Call Me For Genuine Model...
Top profile Call Girls In Chandrapur [ 7014168258 ] Call Me For Genuine Model...Top profile Call Girls In Chandrapur [ 7014168258 ] Call Me For Genuine Model...
Top profile Call Girls In Chandrapur [ 7014168258 ] Call Me For Genuine Model...
 
7. Epi of Chronic respiratory diseases.ppt
7. Epi of Chronic respiratory diseases.ppt7. Epi of Chronic respiratory diseases.ppt
7. Epi of Chronic respiratory diseases.ppt
 
Top profile Call Girls In Vadodara [ 7014168258 ] Call Me For Genuine Models ...
Top profile Call Girls In Vadodara [ 7014168258 ] Call Me For Genuine Models ...Top profile Call Girls In Vadodara [ 7014168258 ] Call Me For Genuine Models ...
Top profile Call Girls In Vadodara [ 7014168258 ] Call Me For Genuine Models ...
 
5CL-ADBA,5cladba, Chinese supplier, safety is guaranteed
5CL-ADBA,5cladba, Chinese supplier, safety is guaranteed5CL-ADBA,5cladba, Chinese supplier, safety is guaranteed
5CL-ADBA,5cladba, Chinese supplier, safety is guaranteed
 
Top profile Call Girls In Hapur [ 7014168258 ] Call Me For Genuine Models We ...
Top profile Call Girls In Hapur [ 7014168258 ] Call Me For Genuine Models We ...Top profile Call Girls In Hapur [ 7014168258 ] Call Me For Genuine Models We ...
Top profile Call Girls In Hapur [ 7014168258 ] Call Me For Genuine Models We ...
 
Abortion pills in Jeddah | +966572737505 | Get Cytotec
Abortion pills in Jeddah | +966572737505 | Get CytotecAbortion pills in Jeddah | +966572737505 | Get Cytotec
Abortion pills in Jeddah | +966572737505 | Get Cytotec
 
Capstone in Interprofessional Informatic // IMPACT OF COVID 19 ON EDUCATION
Capstone in Interprofessional Informatic // IMPACT OF COVID 19 ON EDUCATIONCapstone in Interprofessional Informatic // IMPACT OF COVID 19 ON EDUCATION
Capstone in Interprofessional Informatic // IMPACT OF COVID 19 ON EDUCATION
 
如何办理英国诺森比亚大学毕业证(NU毕业证书)成绩单原件一模一样
如何办理英国诺森比亚大学毕业证(NU毕业证书)成绩单原件一模一样如何办理英国诺森比亚大学毕业证(NU毕业证书)成绩单原件一模一样
如何办理英国诺森比亚大学毕业证(NU毕业证书)成绩单原件一模一样
 
SAC 25 Final National, Regional & Local Angel Group Investing Insights 2024 0...
SAC 25 Final National, Regional & Local Angel Group Investing Insights 2024 0...SAC 25 Final National, Regional & Local Angel Group Investing Insights 2024 0...
SAC 25 Final National, Regional & Local Angel Group Investing Insights 2024 0...
 
The-boAt-Story-Navigating-the-Waves-of-Innovation.pptx
The-boAt-Story-Navigating-the-Waves-of-Innovation.pptxThe-boAt-Story-Navigating-the-Waves-of-Innovation.pptx
The-boAt-Story-Navigating-the-Waves-of-Innovation.pptx
 
Digital Advertising Lecture for Advanced Digital & Social Media Strategy at U...
Digital Advertising Lecture for Advanced Digital & Social Media Strategy at U...Digital Advertising Lecture for Advanced Digital & Social Media Strategy at U...
Digital Advertising Lecture for Advanced Digital & Social Media Strategy at U...
 
一比一原版(曼大毕业证书)曼尼托巴大学毕业证成绩单留信学历认证一手价格
一比一原版(曼大毕业证书)曼尼托巴大学毕业证成绩单留信学历认证一手价格一比一原版(曼大毕业证书)曼尼托巴大学毕业证成绩单留信学历认证一手价格
一比一原版(曼大毕业证书)曼尼托巴大学毕业证成绩单留信学历认证一手价格
 

Privacy Preserving Elastic Stream Processing with Clouds using Homomorphic Encryption

  • 1. Privacy Preserving Elastic Stream Processing with Clouds Using Homomorphic Encryption Arosha Rodrigo, Miyuru Dayarathna, and Sanath Jayasena WSO2, Inc, USA University of Moratuwa, Sri Lanka 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) Chiang Mai, Thailand 25/4/2019
  • 2. Introduction • Data Stream Processing Conducts Online Analytical Processing on Streams of Data 2 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM Detecting Malicious Attacks to a Web Server (unauthorizedCount + forbiddenCount) / totalAccessCount > 0.3 In last 30 seconds
  • 3. Introduction - Applications of Stream Processing 3 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM Heart rate monitoring https://blogs.mathworks.com/iot/20 17/10/27/collecting-resting-heart-rat e-data-using-thingspeak/ Highway toll processing http://www.cs.brandeis.edu/~linearr oad/ Weather sensor networks http://hpwren.ucsd.edu/news/20070911/
  • 4. Introduction - WSO2 Stream Processor 4 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM WSO2 Stream Processor is an open source, cloud native and lightweight stream processing platform that understands streaming SQL queries in order to capture, analyze, process and act on events in real time. https://wso2.com/analytics-and-stream-processing/
  • 5. Introduction - Siddhi - Streaming and Complex Event Processing engine 5http://siddhi.io/ 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
  • 6. Introduction (Contd.) • Stream processing systems often face resource limitations due to unexpected workloads [1] • With time the stream processor deployment may expand • Possible Solutions – Load shedding – Approximate query processing – Elastically scale into external cluster 6 [1] Miyuru Dayarathna and Toyotaro Suzumura, "A Mechanism for Stream Program Performance Recovery in Resource Limited Compute Clusters", DASFAA 2013 (The 18th International Conference on Database Systems for Advanced Applications), Wuhan, China, 2013/4 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
  • 7. Introduction - Elastic Switching Mechanism (ESM) ESM reduces the overall average latency of event processing jobs by significant amount considering the cost of operating the system 7 Sajith Ravindra, Miyuru Dayarathna, and Sanath Jayasena. 2017. Latency Aware Elastic Switching-based Stream Processing Over Compressed Data Streams. In Proceedings of the 8th ACM/SPEC on International Conference on Performance Engineering (ICPE '17). ACM, New York, NY, USA, 91-102 (Ravindra et al. ACM/SPEC ICPE '17) 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
  • 8. Research Problem • Privacy preserving data stream processing – There can be situations such as, • You do not want to send sensitive data to public cloud • But you need to elastically scale due to resource limitations of the on prem deployment. – Sending data as encrypted over the network and decrypting at the server is not completely secure. 8 Stream Processor in Private Cloud Stream Processor in Public Cloud Input Stream Output Stream 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
  • 9. Fully Homomorphic Encryption (FHE) • FHE is an advanced encryption technique which allows data to be stored and processes in encrypted form. • Current FHE techniques are computationally expensive – Need additional space for keys and cypher texts 9 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
  • 10. Selected FHE Implementation • HElib - https://github.com/homenc/HElib • Microsoft SEAL - https://github.com/Microsoft/SEAL • PALISADE - https://git.njit.edu/palisade/PALISADE • HEAAN - https://github.com/snucrypto/HEAAN • Experiments done with HElib indicated that it is practical to implement applications such as stream Data Processing. 10 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
  • 11. Proposed Solution Elastic scaling in hybrid cloud scenario with privacy preserving data stream processing. 11 Stream Processor in Private Cloud Stream Processor in Public Cloud Input Stream Output Stream 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
  • 12. Related Work • Elastic Stream Processing • Data Stream Compression 12 Hummer et al. [13] - Elastic Stream Processing on top of Cloud Computing Stormy [18] - Stream processing as a service Cervion et al. [2] - Adaptive provisioning of VMs for streaming system to scale up/down Cuzzocrea et al. [13] - lossy compression method for efficient OLAP [13] W. Hummer, B. Satzger, and S. Dustdar. Elastic stream processing in the cloud. Wiley Interdisciplinary Reviews: Data Mining and Knowledge Discovery, 3(5):333–345, 2013 [18] S. Loesing, M. Hentschel, T. Kraska, and D. Kossmann. Stormy: An elastic and highly available streaming service in the cloud. In Proceedings of the 2012 Joint EDBT/ICDT Workshops, EDBT-ICDT ’12, pages 55–60, New York, NY, USA, 2012. ACM. [2] J. Cervino, E. Kalyvianaki, J. Salvachua, and P. Pietzuch. Adaptive provisioning of stream processing systems in the cloud. In Data Engineering Workshops (ICDEW), 2012 IEEE 28th International Conference on, pages 295–301, April 2012. 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
  • 13. Related Work (Contd.) • Performance optimizations of homomorphic encryption 13 Dai et al. [4] on cuHE - Use of GPUs to accelerate computations in homomorphic level Shaon [22] - secure data analytics in untrusted cloud setup [4] W. Dai and B. Sunar. cuhe: A homomorphic encryption accelerator library. Cryptology ePrint Archive, Report 2015/818, 2015. https://eprint.iacr.org/2015/818. [22] F. Shaon, M. Kantarcioglu, Z. Lin, and L. Khan. Sgx-bigmatrix: A practical encrypted data analytic framework with trusted processors. In Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security, CCS ’17, pages 1211–1228, New York, NY, USA, 2017. ACM. 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
  • 14. HomoESM System Design • Scheduler - Collects events from input stream • Encryptor • Publisher - Publishes the events to public cloud • Public Cloud Stream Processor – Homomorphic CEP Engine – Homomorphic Encryption Extension – HElib API • Receiver - Receives data from both private and public stream processors • Decryptor - Decrypts events from public cloud stream processor • Profiler - Measures the performance information of the output events stream 14 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
  • 15. Switching Function 15 - VM startup Latency - The threshold for total amount of data received by the VM from private cloud tt - 1 t + 1 Timeline 𝜏 - Time period to wait until the VM startup process triggers 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM Binary switching Function for single VM
  • 16. Implementation 16 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
  • 17. Implementation - Lower Level Optimizations 17 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
  • 18. Implementation - Composite Event Encode Worker 18 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM A thread pool which handles event Encryptions and composite event creation.
  • 19. Implementation - Composite Event Encode Worker (Contd.) • Combines non-operational fields of each of the plain events in the queue • Converts operational fields into binary form and combines them together • Pads the operational fields with zeros • Performs encryption on the operational fields and puts the newly created composite event into the queue 19 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
  • 20. Implementation - Encrypted Events Publisher 20 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
  • 21. Implementation - Encrypted Events Publisher (Contd.) • Periodically checks for encrypted events in the encrypted queue. • If there are encrypted events, they are sent at once to public stream processor. 21 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
  • 22. Implementation - Lower Level Optimizations 22 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
  • 23. Implementation - Event Receiver • If the received event has been encrypted with homomorphic encryption it sends the composite event into ‘Composite Event Decode Worker’ • If not it will reload the payload data and calculate the performance metrics. 23 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
  • 24. Implementation - Lower Level Optimizations 24 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
  • 25. Implementation - Composite Event Decode Worker Handles all decomposition and decryptions of the composite event. 25 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
  • 26. Benchmarks • Email Filter - Benchmark based on Enron data set • EDGAR - Dataset published by Division of Economic and Risk Analysis, USA – Filter – Comparison – Add/Subtract 26 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM https://www.cs.cmu.edu/~./enron/ https://www.sec.gov/dera/data/edgar-log-file-data-set.html
  • 27. Benchmarks - Email Filter 27 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
  • 28. Benchmarks - EDGAR Filter 28 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
  • 29. Input Data Rate Variation of the Two Benchmarks 29 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
  • 30. Evaluation - Experiment Setup 30 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM Experiments were done using three Virtual Machines (VMs) in Amazon EC2 cloud. Evaluation Criteria: Can the average latency of our stream processing jobs be reduced through homomorphic elastic scaling?
  • 31. Email Filter Benchmark 31 Homomorphic elastic scaling provides 10.24% reduction of average latency per event. 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
  • 32. EDGAR Filter Benchmark 32 Homomorphic elastic scaling provides 17% reduction of average latency per event. 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
  • 33. EDGAR Comparison Benchmark 33 Homomorphic elastic scaling provides 3% reduction of average latency per event. 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
  • 34. EDGAR Add/Subtract Benchmark 34 Homomorphic elastic scaling provides 3.68% reduction of average latency per event. 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM Compared to equal only operation, less than & greater than operations consume more XOR and AND gates operations in the Homomorphic Encryption level.
  • 35. Conclusion • We presented the elastic privacy preserving data stream processing – Real world implementation - HomoESM – Considerable performance benefits - 10 - 17% improvement for filter operation • The level of performance gain obtained varies based on the types of operations conducted. 35 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM
  • 36. Futurework • Handle more complicated stream processing operations. • Experiment with multiple query based tuning for privacy preserving elastic scaling. • Fine tune the switching mechanism to handle edge cases. • Applications in cloud native environments. 36 25/4/2019 24th International Conference on Database Systems for Advanced Applications (DASFAA 2019) HomoESM