![]() ![]() There are conflict-free operations for collaboration. ![]() It is a multi-model database (document, object and file) with range queries, automatic indexing and eventual consistency with explicit causality, which is used for conflict resolution. The server is distributed and maliciously secure, it can have arbitrary number of Byzantine-faulty replicas. The client is trusted, and there can be also a trusted proxy, the server is untrusted. You own your data.Įndpipe is offline-first and needs client storage to be secure and practically efficient, so it's different than most cloud databases. We want to keep sensitive data like Protected Health Information (PHI) from getting into the wrong hands. The encryption key never leaves the client or trusted proxy. The idea is a Google Cloud Firestore alternative that works offline and synchronizes in real-time, but without the data being accessible to the server. Sure, the project is called Endpipe and it's an attempt to create a privacy-preserving cloud database. The existing solutions in the literature either compromise security or practical efficiency. A database must be resizable, that's the point of a cloud database. Encrypted and non-encrypted data might be searched together (partitioned data security). On top of that the database must be verifiable (authentical, sound, complete, fresh). And the attacker can have auxiliary information (known-data, known-query, inference). In a database the smallest things can hurt you, both the access and search pattern (must hide the encrypted data that satisfies the query condition or multiple query conditions, the volume of that data, and hide which queries are identical). I'm currently working on a cloud database that uses searchable encryption. The solution is to hide the access pattern, for example by using a write-only oblivious RAM. This is not secure against multi-snapshot adversaries, like those who can take multiple snapshots of your storage at different times. This works like TrueCrypt hidden volumes, which are volumes created in the free space of volumes. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |