CryptoDB
SSE and SSD: Page-Efficient Searchable Symmetric Encryption
Authors: |
|
---|---|
Download: |
|
Conference: | CRYPTO 2021 |
Abstract: | Searchable Symmetric Encryption (SSE) enables a client to outsource a database to an untrusted server, while retaining the ability to securely search the data. The performance bottleneck of classic SSE schemes typically does not come from their fast, symmetric cryptographic operations, but rather from the cost of memory accesses. To address this issue, many works in the literature have considered the notion of locality, a simple design criterion that helps capture the cost of memory accesses in traditional storage media, such as Hard Disk Drives. A common thread among many SSE schemes aiming to improve locality is that they are built on top of new memory allocation schemes, which form the technical core of the constructions. The starting observation of this work is that for newer storage media such as Solid State Drives (SSDs), which have become increasingly common, locality is not a good predictor of practical performance. Instead, SSD performance mainly depends on page efficiency, that is, reading as few pages as possible. We define this notion, and identify a simple allocation problem, Data-Independent Packing, that captures the main technical challenge required to build page-efficient SSE. As our main result, we build a page-efficient and storage-efficient data-independent packing scheme, and deduce an SSE scheme with the same properties. The technical core of the result is a new generalization of cuckoo hashing to items of variable size. Practical experiments show that this approach achieves excellent performance. |
Video from CRYPTO 2021
BibTeX
@inproceedings{crypto-2021-31113, title={SSE and SSD: Page-Efficient Searchable Symmetric Encryption}, publisher={Springer-Verlag}, doi={10.1007/978-3-030-84252-9_6}, author={Angele Bossuat and Raphael Bost and Pierre-Alain Fouque and Brice Minaud and Michael Reichle}, year=2021 }