Ragib Hasan University of Alabama at Birmingham CS 491/691/791 Fall 2011 Lecture 16 10/11/2011 Security and Privacy in Cloud Computing.

Slides:



Advertisements
Similar presentations
Operating System Security
Advertisements

Cloud Computing Security Monir Azraoui, Kaoutar Elkhiyaoui, Refik Molva, Melek Ӧ nen, Pasquale Puzio December 18, 2013 – Sophia-Antipolis, France.
Secure Multiparty Computations on Bitcoin
Differentially Private Recommendation Systems Jeremiah Blocki Fall A: Foundations of Security and Privacy.
Ragib Hasan Johns Hopkins University en Spring 2010 Lecture 3 02/15/2010 Security and Privacy in Cloud Computing.
MapReduce Online Created by: Rajesh Gadipuuri Modified by: Ying Lu.
21-1 Last time Database Security  Data Inference  Statistical Inference  Controls against Inference Multilevel Security Databases  Separation  Integrity.
Cryptography and Network Security 2 nd Edition by William Stallings Note: Lecture slides by Lawrie Brown and Henric Johnson, Modified by Andrew Yang.
Ragib Hasan Johns Hopkins University en Spring 2011 Lecture 8 04/04/2011 Security and Privacy in Cloud Computing.
Ragib Hasan Johns Hopkins University en Spring 2011 Lecture 8 04/11/2011 Security and Privacy in Cloud Computing.
SecureMR: A Service Integrity Assurance Framework for MapReduce Wei Wei, Juan Du, Ting Yu, Xiaohui Gu North Carolina State University, United States Annual.
Ragib Hasan University of Alabama at Birmingham CS 491/691/791 Fall 2012 Lecture 2 08/21/2012 Security and Privacy in Cloud Computing.
Ragib Hasan Johns Hopkins University en Spring 2011 Lecture 3 02/14/2010 Security and Privacy in Cloud Computing.
SplitX: High-Performance Private Analytics Ruichuan Chen (Bell Labs / Alcatel-Lucent) Istemi Ekin Akkus (MPI-SWS) Paul Francis (MPI-SWS)
Ragib Hasan University of Alabama at Birmingham CS 491/691/791 Fall 2011 Lecture 10 09/15/2011 Security and Privacy in Cloud Computing.
Ragib Hasan University of Alabama at Birmingham CS 491/691/791 Fall 2011 Lecture 10 09/15/2011 Security and Privacy in Cloud Computing.
Ragib Hasan Johns Hopkins University en Spring 2011 Lecture 11 04/25/2011 Security and Privacy in Cloud Computing.
Ragib Hasan Johns Hopkins University en Spring 2010 Lecture 7 03/29/2010 Security and Privacy in Cloud Computing.
Ragib Hasan Johns Hopkins University en Spring 2010 Lecture 5 03/08/2010 Security and Privacy in Cloud Computing.
Differential Privacy 18739A: Foundations of Security and Privacy Anupam Datta Fall 2009.
CSCE 715 Ankur Jain 11/16/2010. Introduction Design Goals Framework SDT Protocol Achievements of Goals Overhead of SDT Conclusion.
Ragib Hasan Johns Hopkins University en Spring 2011 Lecture 10 04/18/2011 Security and Privacy in Cloud Computing.
Cryptography and Network Security Chapter 1. Chapter 1 – Introduction The art of war teaches us to rely not on the likelihood of the enemy's not coming,
Privacy-Aware Computing Introduction. Outline  Brief introduction Motivating applications Major research issues  Tentative schedule  Reading assignments.
Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.
Cryptography and Network Security Chapter 1 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.
Ragib Hasan University of Alabama at Birmingham CS 491/691/791 Fall 2013 Lecture 3 09/03/2013 Security and Privacy in Cloud Computing.
ADVANCED LINUX SECURITY. Abstract : Using mandatory access control greatly increases the security of an operating system. SELinux, which is an implementation.
Jeffrey D. Ullman Stanford University.  Mining of Massive Datasets, J. Leskovec, A. Rajaraman, J. D. Ullman.  Available for free download at i.stanford.edu/~ullman/mmds.html.
D ATABASE S ECURITY Proposed by Abdulrahman Aldekhelallah University of Scranton – CS521 Spring2015.
1 Cryptography and Network Security Fourth Edition by William Stallings Lecture slides by Lawrie Brown Changed by: Somesh Jha [Lecture 1]
Ragib Hasan Johns Hopkins University en Spring 2010 Lecture 2 02/01/2010 Security and Privacy in Cloud Computing.
Advanced Topics: MapReduce ECE 454 Computer Systems Programming Topics: Reductions Implemented in Distributed Frameworks Distributed Key-Value Stores Hadoop.
Overview of Privacy Preserving Techniques.  This is a high-level summary of the state-of-the-art privacy preserving techniques and research areas  Focus.
Ragib Hasan Johns Hopkins University en Spring 2010 Lecture 6 03/22/2010 Security and Privacy in Cloud Computing.
Self-Enforcing Private Inference Control Yanjiang Yang (I2R, Singapore) Yingjiu Li (SMU, Singapore) Jian Weng (Jinan Univ. China) Jianying Zhou (I2R, Singapore)
Cloud and Big Data Summer School, Stockholm, Aug., 2015 Jeffrey D. Ullman.
Cloud Distributed Computing Platform 2 Content of this lecture is primarily from the book “Hadoop, The Definite Guide 2/e)
Ragib Hasan University of Alabama at Birmingham CS 491/691/791 Fall 2012 Lecture 4 09/10/2013 Security and Privacy in Cloud Computing.
Ragib Hasan University of Alabama at Birmingham CS 491/691/791 Fall 2011 Lecture 11 09/27/2011 Security and Privacy in Cloud Computing.
Disclosure risk when responding to queries with deterministic guarantees Krish Muralidhar University of Kentucky Rathindra Sarathy Oklahoma State University.
CS 3630 Database Design and Implementation Dr. Qi Yang 213 Ullrich My Home Page: The Class Page:
Privacy: Lessons from the Past Decade Vitaly Shmatikov The University of Texas at Austin.
Implementing Differential Privacy & Side-channel attacks CompSci Instructor: Ashwin Machanavajjhala 1Lecture 14 : Fall 12.
Grid Computing at Yahoo! Sameer Paranjpye Mahadev Konar Yahoo!
Hidemoto Nakada, Hirotaka Ogawa and Tomohiro Kudoh National Institute of Advanced Industrial Science and Technology, Umezono, Tsukuba, Ibaraki ,
Database Applications (15-415) Part II- Hadoop Lecture 26, April 21, 2015 Mohammad Hammoud.
CS573 Data Privacy and Security Secure data outsourcing – Combining encryption and fragmentation.
Differential Privacy Some contents are borrowed from Adam Smith’s slides.
 Frequent Word Combinations Mining and Indexing on HBase Hemanth Gokavarapu Santhosh Kumar Saminathan.
ApproxHadoop Bringing Approximations to MapReduce Frameworks
Trusted Operating Systems
Cryptography and Network Security Chapter 1. Background  Information Security requirements have changed in recent times  traditionally provided by physical.
By Marwan Al-Namari & Hafezah Ben Othman Author: William Stallings College of Computer Science at Al-Qunfudah Umm Al-Qura University, KSA, Makkah 1.
PREPARED BY: MS. ANGELA R.ICO & MS. AILEEN E. QUITNO (MSE-COE) COURSE TITLE: OPERATING SYSTEM PROF. GISELA MAY A. ALBANO PREPARED BY: MS. ANGELA R.ICO.
Item Based Recommender System SUPERVISED BY: DR. MANISH KUMAR BAJPAI TARUN BHATIA ( ) VAIBHAV JAISWAL( )
A hospital has a database of patient records, each record containing a binary value indicating whether or not the patient has cancer. -suppose.
Mapping/Topology attacks on Virtual Machines
Privacy-preserving Release of Statistics: Differential Privacy
MapReduce Computing Paradigm Basics Fall 2013 Elke A. Rundensteiner
Database Applications (15-415) Hadoop Lecture 26, April 19, 2016
Cloud Distributed Computing Environment Hadoop
KMeans Clustering on Hadoop Fall 2013 Elke A. Rundensteiner
Lecture 27: Privacy CS /7/2018.
Published in: IEEE Transactions on Industrial Informatics
MapReduce: Simplified Data Processing on Large Clusters
Some contents are borrowed from Adam Smith’s slides
Map Reduce, Types, Formats and Features
Presentation transcript:

Ragib Hasan University of Alabama at Birmingham CS 491/691/791 Fall 2011 Lecture 16 10/11/2011 Security and Privacy in Cloud Computing

Announcements No class on Thursday due to Fall Break Homework for this week will be due by 10/12 10/11/2011 cs491/691/791 Fall 2011 Lecture 16 | UAB | Ragib Hasan 2

Announcements Project progress meetings: – Starting from next week, we’ll have weekly progress meetings with groups during office hours – Talk to me next week to set up meeting schedule 10/11/2011 cs491/691/791 Fall 2011 Lecture 16 | UAB | Ragib Hasan 3

Enforcing Data Privacy in Cloud Goal: Examine techniques for ensuring data privacy in computations outsourced to a cloud Review Assignment #8: (Due 10/12) Roy et al., Airavat: Security and Privacy for MapReduce, NSDI /11/2011 cs491/691/791 Fall 2011 Lecture 16 | UAB | Ragib Hasan 4

What does privacy mean? Information Privacy is the interest an individual has in controlling, or at least significantly influencing, the handling of data about themselves. Confidentiality is the legal duty of individuals who come into the possession of information about others, especially in the course of particular kinds of relationships with them. 10/11/2011 cs491/691/791 Fall 2011 Lecture 16 | UAB | Ragib Hasan 5

Problem of making large datasets public Model: – One party owns the dataset – Another party wants to run some computations on it – A third party may take data from the first party, run functions (from the second party) on the data, and provide the results to the second party Problem: – How can the data provider ensure the confidentiality and privacy of their sensitive data? 10/11/2011 cs491/691/791 Fall 2011 Lecture 16 | UAB | Ragib Hasan 6

Problem of making large datasets public Massachusetts Insurance Database – DB was anonymized, with only birthdate, sex, and zip code made available to public – Latanya Sweeny of CMU took the DB and voter records, and pinpointed the MA Governor’s record Netflix Prize Database – DB was anonymized, with user names replaced with random IDs – Narayanan et al. used Netflix DB and imDB data to de- anonymize users 10/11/2011 cs491/691/791 Fall 2011 Lecture 16 | UAB | Ragib Hasan 7

Differential Privacy schemes can ensure privacy of statistical queries Differential privacy aims to provide means to maximize the accuracy of queries from statistical databases while minimizing the chances of identifying its records. Informally, given the output of a computation or a query, an attacker cannot tell whether any particular value was in the input data set. 10/11/2011 cs491/691/791 Fall 2011 Lecture 16 | UAB | Ragib Hasan 8

Securing MapReduce for Privacy and Confidentiality Paper: – Roy et al., Airavat: Security and Privacy for MapReduce – Goal: Secure MapReduce to provide confidentiality and privacy assurances for sensitive data 10/11/2011 cs491/691/791 Fall 2011 Lecture 16 | UAB | Ragib Hasan 9

System Model Data providers: own data sets Computation provider: provides MapReduce code Airavat Framework: Cloud provider where the MapReduce code is run on uploaded data 10/11/2011 cs491/691/791 Fall 2011 Lecture 16 | UAB | Ragib Hasan 10

Threat Model Assets: Sensitive data or outputs Attacker model: – Cloud provider (where Airavat is Run) is trustworthy – Computation provider (user who queries, provides Mapper and Reducer functions) can be malicious Functions provided by the Computation provider can be malicious. Cloud provider does not perform code analysis on user- generated functions – Data provider is trustworthy 10/11/2011 cs491/691/791 Fall 2011 Lecture 16 | UAB | Ragib Hasan 11

MapReduce MapReduce is a widely used and deployed distributed computation model Input data is divided into chunks Mapper nodes run a mapping function on a chunk and output a set of pairs Reducer nodes combine values related to a particular key based on a function, and output to a file 10/11/2011 cs491/691/791 Fall 2011 Lecture 16 | UAB | Ragib Hasan 12

Key design concepts Goal: Ensure privacy of source data Concept used: Differential privacy – ensure that no sensitive data is leaked. Method used: Adds random Laplacian noise to outputs 10/11/2011 cs491/691/791 Fall 2011 Lecture 16 | UAB | Ragib Hasan 13

Key design concepts Goal: Prevent malicious users from preparing sensitive functions that leak data. Concept used: Functional sensitivity - How much the output changes when a single element is included/removed from inputs – More sensitivity: more information is leaked How is used? : – Airavat requires CPs to give range of possible output values. – This is used to determine sensitivity of CP-written mapper functions. 10/11/2011 cs491/691/791 Fall 2011 Lecture 16 | UAB | Ragib Hasan 14

Key design concepts Goal: Prevent users from sending many brute force queries and try to reveal the input data. Concept used: Privacy budget (defined by data provider) How used: – Data sources set privacy budget for data. – Each time a query is run, the budget is decreased, and – Once the budget is used up, user cannot run more queries. 10/11/2011 cs491/691/791 Fall 2011 Lecture 16 | UAB | Ragib Hasan 15

Airavat system design Mappers are provided by computation provider, and hence are not trusted Reducers are provided by Airavat. They are trusted – Airavat only supports a small set of reducers. Keys must be pre-declared by CP (why?) Airavat generates enough noise to assure differential privacy of values Range enforcers ensure that output values from mappers lie within declared range 10/11/2011 cs491/691/791 Fall 2011 Lecture 16 | UAB | Ragib Hasan 16

Security via Mandatory Access Control In MAC, Operating System enforces access control at each access Access control rights cannot be overridden by users Airavat uses SELinux – a special Linux distribution that supports MAC (developed by NSA) 10/11/2011 cs491/691/791 Fall 2011 Lecture 16 | UAB | Ragib Hasan 17

Security via MAC Each data object and process is tagged showing the trust level of the object Data providers can set a declassify bit for their data, in which case the result will be released when there is no differential privacy violation 10/11/2011 cs491/691/791 Fall 2011 Lecture 16 | UAB | Ragib Hasan 18

Implementation Airavat was implemented on Hadoop and Hadoop FS. 10/11/2011 cs491/691/791 Fall 2011 Lecture 16 | UAB | Ragib Hasan 19

Further reading 10/11/2011 cs491/691/791 Fall 2011 Lecture 16 | UAB | Ragib Hasan Cynthia Dwork defines Differential Privacy, interesting blog post that gives high level view of differential privacy. differential-privacy/ 20

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.