Secure Database in cloud PART 1 Mohammad Ahmadian ahmadian@knights.ucf.edu COP-6087 University of Central Florida
Agenda Motivation Database in AWS Approaches to reduce risk SUNDE DBCrypt SQL-aware Encryption Threats Case studies Performance Evaluation Contribution Weakness Improvement COP 6087 Cloud comptation Tuesday, November 27, 2018Tuesday, November 27, 2018
Motivation Unencrypted databases can be very unsecure Attackers, malicious admins, hosting providers Snoop on private data: Health records, Financial Statements Current encrypted systems are either client- side or computationally expensive
Database service in AWS DynamoDB SimpleDB RDS MySQL in EC2 DynamoDB : DynamoDB is a fast, fully managed Non SQL database service that makes it simple and cost-effective to store and retrieve any amount of data, and serve any level of request traffic. All data items are stored on Solid State Drives (SSDs), and are replicated across 3 Availability Zones for high availability and durability. With DynamoDB, you can offload the administrative burden of operating and scaling a highly available distributed database cluster, while paying a low price for only what you use. (A NoSQL database provides a mechanism for storage and retrieval of data that employs less constrained consistency models than traditional relational databases. Motivations for this approach include simplicity of design, horizontal scaling and finer control over availability. NoSQL databases are often highly optimized key–value stores intended for simple retrieval and appending operations, with the goal being significant performance benefits in terms of latency and throughput. NoSQL databases are finding significant and growing industry use in big data and real-time web applications. NoSQL systems are also referred to as "Not only SQL" to emphasize that they do in fact allow SQL-like query languages to be used.) Amazon SimpleDB Amazon SimpleDB is a highly available and flexible non-relational data store that offloads the work of database administration. Developers simply store and query data items via web services requests and Amazon SimpleDB does the rest. Unbound by the strict requirements of a relational database, Amazon SimpleDB is optimized to provide high availability and flexibility, with little or no administrative burden. Behind the scenes, Amazon SimpleDB creates and manages multiple geographically distributed replicas of your data automatically to enable high availability and data durability. The service charges you only for the resources actually consumed in storing your data and serving your requests. You can change your data model on the fly, and data is automatically indexed for you. With Amazon SimpleDB, you can focus on application development without worrying about infrastructure provisioning, high availability, software maintenance, schema and index management, or performance tuning. Relational Database Service (Amazon RDS) RDS is a web service that makes it easier to set up, operate, and scale a relational database in the cloud. It provides cost-efficient, resizable capacity for an industry-standard relational database and manages common database administration tasks. When you buy a server, you get CPU, memory, storage, and IOPS, all bundled together. With Amazon RDS, these are split apart so that you can scale them independently. So, for example, if you need more CPU, less IOPS, or more storage, you can easily allocate them. Amazon RDS manages backups, software patching, automatic failure detection, and recovery. In order to deliver a managed service experience, Amazon RDS does not provide shell access to DB instances, and it restricts access to certain system procedures and tables that require advanced privileges. You can have automated backups performed when you need them, or create your own backup snapshot. These backups can be used to restore a database, and Amazon RDS's restore process works reliably and efficiently. You can get high availability with a primary instance and a synchronous secondary instance that you can failover to when problems occur. You can also use MySQL read replicas to increase read scaling. You can use the database products you are already familiar with: MySQL, Oracle, and Microsoft SQL Server. In addition to the security in your database package, you can help control who can access your RDS databases by using AWS IAM to define users and permissions. You can also help protect your databases by putting them in a virtual private cloud. IOPS is a common performance measurement used to benchmark computer storage devices like hard disk drives, solid state drives, and storage area networks.
Solutions Encrypting all sensitive data in database DBCrypt: execute queries that SQL over encrypted data. The biggest challenge is providing efficiency and adequate confidentiality. Strong cryptosystems like AES would prevent DBMS server from executing many SQL queries, such that ask for number of employees whose salary is greater than $60000 DBCrypt addresses two threats. The first threat is a curious database administrator (DBA) who tries to learn private data (e.g., health records, financial statements, personal information) by snooping on the DBMS server; here, DBCrypt prevents the DBA from learning private data. The second threat is an adversary that gains complete control of application and DBMS servers. In this case, DBCrypt cannot provide any guarantees for users that are logged into the application during an attack, but can still ensure the confidentiality of logged-out users’ data.
SUNDR(Secure Untrusted Data Repository) Encrypting all sensitive data in database Advantage: It reduce damage caused by server compromises Disadvantages: All computation (application logic) runs on clients. Other applications not support this approach For instance database-backed web sites that process queries not supports this approach
DBCrypt Intermediate point between DBMS and application server Executes queries over encrypted data Efficiently supports SQL queries Equality checks, sums, joins, etc Supports most relational queries Symmetric Encryption MySQL 5.1 C++ & PHP
Integration of Encryption and Query Processing Users have a plaintext view of an encrypted database I strictly will focus on the OPES algorithms in my next presentation Comparison operators are directly applied over encrypted columns Queries Plaintext queries are translated into equivalent queries over encrypted data Select name from Emp where sal > 100000 Translation layer Select decrypt (“xsxx”) from “cwlxss” where “xescs” > OPESencrypt(100000) DBMS Tables are encrypted using standard as well as order preserving encryption Encrypted data And metadata
Evalution Works for 99.5% of columns used by MIT applications Low overhead Reduced throughput by only 14.5% for phpBB forum and by 26% for TPC-C 6 applications running on secure database
Database Management System Proxy Intercepts all queries Encrypts & decrypts data Hides decryption keys from DBMS Prevents access to logged out users’ data Can’t prevent deletion of data or maintain integrity of application
Threat 1: DBMS Compromise Attacker: (Passive) Malicious admin or attacker with access to DBMS More likely to read or leak data than to alter or delete Goal: Confidentiality Approach DBCrypt encrypts queries and inserted data Encrypts meta-data
Threat 1: DBMS Compromise Guarantees Sensitive data is not plaintext readable by DBMS DBMS can’t read results of queries not requested by DBCrypt Can’t Hide Table structure, number of rows, column types, column relationships
Queries over Encrypted Data Proxy intercepts and rewrites query anonymizes table and cloumn names Encrypts using a master Secret Key Passes new query to DBMS Decrypts query results and returns it to the application
Example
Queries over Encrypted Data Different Layers of encryption depending on query type
SQL-aware Encryption Random Deterministic Maximum security (AES or Blowfish) Indistinguishable under an adaptive chosen- plaintext attack Deterministic Generates same ciphertext for the same plaintext Allows server to perform equality checks (equality JOINs, GROUP BY, COUNT, DISTINCT)
SQL-aware Encryption Order-preserving encryption Join Word Search If x < y, then OPE(x) < OPE(y) Allows for ORDER BY, MIN, MAX, SORT Join Prevents cross-column correlations exposed by Deterministic encryption Word Search Allows for searching over encrypted text (LIKE) Only full-word, can’t support regex
Adjustable Query-based Encryption Adjust layer of encryption based on query needs
Threat 2: Arbitrary Threats Attacker compromises application server, DBCrypt proxy, or DBMS Solution: Encrypt different data with different keys – e.g. data belonging to different users Developers annotate DB schema to indicate how each data item should be decrypted Maintains security from threat 1
Example
Threat 2: Arbitrary Threats Key chaining & public key encryption allow different groups or users access to the same information Sub-forum that is hidden to non-group members Private messages between two users Only access data for logged in users
Case Studies phpBB HotCRP Opensource forum Users & groups with varied access permissions to messages, forums, posts HotCRP Conference review application Users restricted from viewing who reviewed papers Currently, vanilla HotCRP cannot prevent a conference chair from viewing confidential information, so many conferences setup second server
Case Studies Grad-apply Graduate admissions system used by MIT EECS An applicant’s data can only be viewed by applicant and reviewing faculty Applicant can’t view letters of recommendation
Application Changes
Functional Evaluation
Performance Evaluation (TPC-C)
Performance Evaluation (phpBB) 10 parallel clients
Contribution Layer of security for typical databases that guarantees a certain level of confidentiality for different threats
Weaknesses Cannot support both computation and comparison on the same column E.g. WHERE salary > employment_length*1200 In multi-key mode, cannot support server- side computations on encrypted data affecting multiple entities
Improvement Add features to secure Integrity of data in addition to Confidentiality Perhaps impractical Add both comparison and Computation in one query
Questions?
PART ii OPE FHE(HOM)