Title :
A secure coprocessor for database applications
Author :
Arasu, A. ; Eguro, K. ; Kaushik, Rajashekara ; Kossmann, D. ; Ramamurthy, R. ; Venkatesan, R.
Author_Institution :
Microsoft Res., Redmond, WA, USA
Abstract :
The scalability and availability of cloud computing makes it an ideal platform for many database applications. However, it is challenging to secure sensitive client information in a practical and rigorous manner against both external attackers and curious cloud administrators. In this paper, we describe a novel secure FPGA-based query coprocessor and discuss how it can be tightly integrated with a commercial database system such as SQL Server. This combination, called Cipherbase, leverages efficient division of labor - using a conventional untrusted cloud server to handle mundane database operations while sensitive data is segregated and processed in trusted hardware to ensure confidentiality. We examine the architectural design issues that affect the achievable performance of the system and report initial results demonstrating the effectiveness for real-world cloud database applications.
Keywords :
SQL; cloud computing; coprocessors; database management systems; field programmable gate arrays; query processing; security of data; trusted computing; Cipherbase; SQL Server; architectural design issues; cloud computing; commercial database system; curious cloud administrators; database applications; external attackers; mundane database operations; real-world cloud database applications; secure FPGA-based query coprocessor; sensitive client information; trusted hardware; untrusted cloud server; Computer architecture; Databases; Encryption; Field programmable gate arrays; Servers;
Conference_Titel :
Field Programmable Logic and Applications (FPL), 2013 23rd International Conference on
Conference_Location :
Porto
DOI :
10.1109/FPL.2013.6645524
