H$_2$O$_2$RAM: A High-Performance Hierarchical Doubly Oblivious RAM

arXiv - CS - Cryptography and Security Pub Date : 2024-09-11 DOI:arxiv-2409.07167

Leqian Zheng, Zheng Zhang, Wentao Dong, Yao Zhang, Ye Wu, Cong Wang

{"title":"H$_2$O$_2$RAM: A High-Performance Hierarchical Doubly Oblivious RAM","authors":"Leqian Zheng, Zheng Zhang, Wentao Dong, Yao Zhang, Ye Wu, Cong Wang","doi":"arxiv-2409.07167","DOIUrl":null,"url":null,"abstract":"The combination of Oblivious RAM (ORAM) with Trusted Execution Environments\n(TEE) has found numerous real-world applications due to their complementary\nnature. TEEs alleviate the performance bottlenecks of ORAM, such as network\nbandwidth and roundtrip latency, and ORAM provides general-purpose protection\nfor TEE applications against attacks exploiting memory access patterns. The\ndefining property of this combination, which sets it apart from traditional\nORAM designs, is its ability to ensure that memory accesses, both inside and\noutside of TEEs, are made oblivious, thus termed doubly oblivious RAM\n(O$_2$RAM). Efforts to develop O$_2$RAM with enhanced performance are ongoing. In this work, we propose H$_2$O$_2$RAM, a high-performance doubly oblivious\nRAM construction. The distinguishing feature of our approach, compared to the\nexisting tree-based doubly oblivious designs, is its first adoption of the\nhierarchical framework that enjoys inherently better data locality and\nparallelization. While the latest hierarchical solution, FutORAMa, achieves\nconcrete efficiency in the classic client-server model by leveraging a relaxed\nassumption of sublinear-sized client-side private memory, adapting it to our\nscenario poses challenges due to the conflict between this relaxed assumption\nand our doubly oblivious requirement. To this end, we introduce several new\nefficient oblivious components to build a high-performance hierarchical\nO$_2$RAM (H$_2$O$_2$RAM). We implement our design and evaluate it on various\nscenarios. The results indicate that H$_2$O$_2$RAM reduces execution time by up\nto $\\sim 10^3$ times and saves memory usage by $5\\sim44$ times compared to\nstate-of-the-art solutions.","PeriodicalId":501332,"journal":{"name":"arXiv - CS - Cryptography and Security","volume":"44 1","pages":""},"PeriodicalIF":0.0000,"publicationDate":"2024-09-11","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"arXiv - CS - Cryptography and Security","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/arxiv-2409.07167","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

The combination of Oblivious RAM (ORAM) with Trusted Execution Environments (TEE) has found numerous real-world applications due to their complementary nature. TEEs alleviate the performance bottlenecks of ORAM, such as network bandwidth and roundtrip latency, and ORAM provides general-purpose protection for TEE applications against attacks exploiting memory access patterns. The defining property of this combination, which sets it apart from traditional ORAM designs, is its ability to ensure that memory accesses, both inside and outside of TEEs, are made oblivious, thus termed doubly oblivious RAM (O$_2$RAM). Efforts to develop O$_2$RAM with enhanced performance are ongoing. In this work, we propose H$_2$O$_2$RAM, a high-performance doubly oblivious RAM construction. The distinguishing feature of our approach, compared to the existing tree-based doubly oblivious designs, is its first adoption of the hierarchical framework that enjoys inherently better data locality and parallelization. While the latest hierarchical solution, FutORAMa, achieves concrete efficiency in the classic client-server model by leveraging a relaxed assumption of sublinear-sized client-side private memory, adapting it to our scenario poses challenges due to the conflict between this relaxed assumption and our doubly oblivious requirement. To this end, we introduce several new efficient oblivious components to build a high-performance hierarchical O$_2$RAM (H$_2$O$_2$RAM). We implement our design and evaluate it on various scenarios. The results indicate that H$_2$O$_2$RAM reduces execution time by up to $\sim 10^3$ times and saves memory usage by $5\sim44$ times compared to state-of-the-art solutions.

查看原文本刊更多论文

H$_2$O$_2$RAM：高性能分层双遗忘 RAM

遗忘内存（ORAM）与可信执行环境（TEE）的结合因其互补性而在现实世界中得到广泛应用。TEE 可减轻 ORAM 的性能瓶颈，如网络带宽和往返延迟，而 ORAM 可为 TEE 应用程序提供通用保护，防止利用内存访问模式的攻击。这种组合有别于传统的 ORAM 设计，其决定性特性是能够确保 TEE 内部和外部的内存访问都是遗忘的，因此被称为双遗忘 RAM（O$_2$RAM）。开发性能更强的 O$_2$RAM 的工作正在进行中。在这项工作中，我们提出了 H$_2$O$_2$RAM，一种高性能的双遗忘 RAM 结构。与现有的基于树的双遗忘设计相比，我们的方法的显著特点是首次采用了分层框架，该框架本身具有更好的数据局部性和并行性。虽然最新的分层解决方案 FutORAMa 通过利用亚线性大小的客户端私有内存这一宽松假设，在经典的客户端-服务器模型中实现了具体的效率，但由于这一宽松假设与我们的双重遗忘要求之间存在冲突，因此将其适用于我们的场景会面临挑战。为此，我们引入了几个新的高效遗忘组件来构建高性能分层 O$_2$RAM (H$_2$O$_2$RAM)。我们实现了我们的设计，并在各种情况下对其进行了评估。结果表明，与最先进的解决方案相比，H$_2$O$_2$RAM最多可将执行时间缩短10^3$倍，将内存使用量节省5$/sim44$倍。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

arXiv - CS - Cryptography and Security

自引率

0.00%

发文量