A secure processor architecture for encrypted computation on untrusted programs

Christopher Fletcher; Marten Van Dijk; Srinivas Devadas

doi:10.1145/2382536.2382540

A secure processor architecture for encrypted computation on untrusted programs

Christopher Fletcher, Marten Van Dijk, Srinivas Devadas

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

This paper considers encrypted computation where the user specifies encrypted inputs to an untrusted program, and the server computes on those encrypted inputs. To this end we propose a secure processor architecture, called Ascend, that guarantees privacy of data when arbitrary programs use the data running in a cloud-like environment (e.g., an untrusted server running an untrusted software stack). The key idea to guarantee privacy is obfuscated instruction execution; Ascend does not disclose what instruction is being run at any given time, be it an arithmetic instruction or a memory instruction. Periodic accesses to external instruction and data memory are performed through an Oblivious RAM (ORAM) interface to prevent leakage through memory access patterns. We evaluate the processor architecture on SPEC benchmarks running on encrypted data and quantify overheads.

Original language	English (US)
Title of host publication	STC'12 - Proceedings of the Workshop on Scalable Trusted Computing
Pages	3-8
Number of pages	6
DOIs	https://doi.org/10.1145/2382536.2382540
State	Published - 2012
Externally published	Yes
Event	7th ACM Workshop on Scalable Trusted Computing, STC 2012 - Raleigh, NC, United States Duration: Oct 15 2012 → Oct 15 2012

Publication series

Name	Proceedings of the ACM Conference on Computer and Communications Security
ISSN (Print)	1543-7221

Other

Other	7th ACM Workshop on Scalable Trusted Computing, STC 2012
Country/Territory	United States
City	Raleigh, NC
Period	10/15/12 → 10/15/12

Keywords

Encrypted computation
Secure processors

ASJC Scopus subject areas

Software
Computer Networks and Communications

Online availability

10.1145/2382536.2382540

Library availability

Discover UIUC Full Text

Cite this

A secure processor architecture for encrypted computation on untrusted programs. / Fletcher, Christopher; Van Dijk, Marten; Devadas, Srinivas.
STC'12 - Proceedings of the Workshop on Scalable Trusted Computing. 2012. p. 3-8 (Proceedings of the ACM Conference on Computer and Communications Security).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Fletcher, C, Van Dijk, M & Devadas, S 2012, A secure processor architecture for encrypted computation on untrusted programs. in STC'12 - Proceedings of the Workshop on Scalable Trusted Computing. Proceedings of the ACM Conference on Computer and Communications Security, pp. 3-8, 7th ACM Workshop on Scalable Trusted Computing, STC 2012, Raleigh, NC, United States, 10/15/12. https://doi.org/10.1145/2382536.2382540

@inproceedings{7afb5eb848294c5b9f9866c3664ea4a1,

title = "A secure processor architecture for encrypted computation on untrusted programs",

abstract = "This paper considers encrypted computation where the user specifies encrypted inputs to an untrusted program, and the server computes on those encrypted inputs. To this end we propose a secure processor architecture, called Ascend, that guarantees privacy of data when arbitrary programs use the data running in a cloud-like environment (e.g., an untrusted server running an untrusted software stack). The key idea to guarantee privacy is obfuscated instruction execution; Ascend does not disclose what instruction is being run at any given time, be it an arithmetic instruction or a memory instruction. Periodic accesses to external instruction and data memory are performed through an Oblivious RAM (ORAM) interface to prevent leakage through memory access patterns. We evaluate the processor architecture on SPEC benchmarks running on encrypted data and quantify overheads.",

keywords = "Encrypted computation, Secure processors",

author = "Christopher Fletcher and {Van Dijk}, Marten and Srinivas Devadas",

year = "2012",

doi = "10.1145/2382536.2382540",

language = "English (US)",

isbn = "9781450316620",

series = "Proceedings of the ACM Conference on Computer and Communications Security",

pages = "3--8",

booktitle = "STC'12 - Proceedings of the Workshop on Scalable Trusted Computing",

note = "7th ACM Workshop on Scalable Trusted Computing, STC 2012 ; Conference date: 15-10-2012 Through 15-10-2012",

}

TY - GEN

T1 - A secure processor architecture for encrypted computation on untrusted programs

AU - Fletcher, Christopher

AU - Van Dijk, Marten

AU - Devadas, Srinivas

PY - 2012

Y1 - 2012

N2 - This paper considers encrypted computation where the user specifies encrypted inputs to an untrusted program, and the server computes on those encrypted inputs. To this end we propose a secure processor architecture, called Ascend, that guarantees privacy of data when arbitrary programs use the data running in a cloud-like environment (e.g., an untrusted server running an untrusted software stack). The key idea to guarantee privacy is obfuscated instruction execution; Ascend does not disclose what instruction is being run at any given time, be it an arithmetic instruction or a memory instruction. Periodic accesses to external instruction and data memory are performed through an Oblivious RAM (ORAM) interface to prevent leakage through memory access patterns. We evaluate the processor architecture on SPEC benchmarks running on encrypted data and quantify overheads.

AB - This paper considers encrypted computation where the user specifies encrypted inputs to an untrusted program, and the server computes on those encrypted inputs. To this end we propose a secure processor architecture, called Ascend, that guarantees privacy of data when arbitrary programs use the data running in a cloud-like environment (e.g., an untrusted server running an untrusted software stack). The key idea to guarantee privacy is obfuscated instruction execution; Ascend does not disclose what instruction is being run at any given time, be it an arithmetic instruction or a memory instruction. Periodic accesses to external instruction and data memory are performed through an Oblivious RAM (ORAM) interface to prevent leakage through memory access patterns. We evaluate the processor architecture on SPEC benchmarks running on encrypted data and quantify overheads.

KW - Encrypted computation

KW - Secure processors

UR - http://www.scopus.com/inward/record.url?scp=84869402047&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84869402047&partnerID=8YFLogxK

U2 - 10.1145/2382536.2382540

DO - 10.1145/2382536.2382540

M3 - Conference contribution

AN - SCOPUS:84869402047

SN - 9781450316620

T3 - Proceedings of the ACM Conference on Computer and Communications Security

SP - 3

EP - 8

BT - STC'12 - Proceedings of the Workshop on Scalable Trusted Computing

T2 - 7th ACM Workshop on Scalable Trusted Computing, STC 2012

Y2 - 15 October 2012 through 15 October 2012

ER -

A secure processor architecture for encrypted computation on untrusted programs

Abstract

Publication series

Other

Keywords

ASJC Scopus subject areas

Online availability

Library availability

Related links

Fingerprint

Cite this