Home
People
Publications
|
Refereed International Journal PublicationsCompiler-assisted Semantic-aware Encryption for Efficient and Secure Serverless Computing [abstract] (SelectiveCrypt, IEEE Xplore)
Serverless computing like Function-as-a-Service (FaaS) is attractive for IoT
service providers, liberating the providers from server maintenance. Since a
data processing function is executed on the cloud instead of a dedicated server
in the FaaS platform, the service users send their private data in their IoT
devices to the third-party cloud, taking privacy leakage risks. Homomorphic
encryption can preserve the privacy by enabling encrypted data processing on
the cloud, but using homomorphic encryption for every data item incurs large
computation and communication overheads. This work proposes SelectiveCrypt, a
compiler-assisted semantic-aware encryption scheme that applies different
cryptographic primitives depending on the operations on each data item.
SelectiveCrypt homomorphically encrypts data items if arithmetic operations are
applied to the data, while SelectiveCrypt encrypts data items with a symmetric
key if the data are stored in the cloud without any arithmetic operation. The
SelectiveCrypt framework consists of a compiler and its runtime system. The
SelectiveCrypt compiler statically analyzes the data processing, determines an
appropriate cryptographic primitive for each data item, and automatically
transforms arithmetic operations into the homomorphic computation. The
SelectiveCrypt runtime encrypts and decrypts the data items according to the
static analysis result. This work evaluates the prototype SelectiveCrypt
framework with five benchmarks that reflect real-world IoT scenarios. The
evaluation results show that the SelectiveCrypt framework successfully reduces
response time and communication overhead by 1.59 times and 9.61 times
respectively compared with a homomorphic encryption scheme.
|