Abstract
The emerging hardware-assisted security technologies facilitate the deployment of secure and trustworthy applications in today’s cloud computing infrastructure. Despite promising, the advantages appear to diminish due to limited resources of trusted execution environments and ever-increasing workload to be processed inside. Different from existing taskspecific and system-level optimizations, our key observation is that those redundant computations occur commonly among several applications when handling the same input data.
In light of this, we propose SPEED, a secure and generic computation deduplication system in the context of Intel SGX. It allows SGX-enabled applications to identify redundant computations and reuse computation results, while protecting the confidentiality and integrity of code, inputs, and results. To maximize the benefit of computation deduplication, we design a cross-application deduplication scheme, empowering multiple applications to securely utilize the shared results as long as they perform identical computations. To ease the use of SPEED, we implement a fully functional prototype and provide a concise and expressive API for developers to deduplicate rich computations with minimal effort, as few as 2 lines of code per function call. Extensive evaluations of four popular applications demonstrate that SPEED improves performance by up to 400 times. The source code is available on GitHub for public use.
In light of this, we propose SPEED, a secure and generic computation deduplication system in the context of Intel SGX. It allows SGX-enabled applications to identify redundant computations and reuse computation results, while protecting the confidentiality and integrity of code, inputs, and results. To maximize the benefit of computation deduplication, we design a cross-application deduplication scheme, empowering multiple applications to securely utilize the shared results as long as they perform identical computations. To ease the use of SPEED, we implement a fully functional prototype and provide a concise and expressive API for developers to deduplicate rich computations with minimal effort, as few as 2 lines of code per function call. Extensive evaluations of four popular applications demonstrate that SPEED improves performance by up to 400 times. The source code is available on GitHub for public use.
| Original language | English |
|---|---|
| Title of host publication | Proceedings: 2019 39th IEEE International Conference on Distributed Computing Systems |
| Subtitle of host publication | ICDCS 2019 |
| Publisher | IEEE |
| Pages | 1072-1082 |
| Number of pages | 11 |
| ISBN (Electronic) | 9781728125190 |
| ISBN (Print) | 9781728125206 |
| DOIs | |
| Publication status | Published - Jul 2019 |
| Event | 39th IEEE International Conference on Distributed Computing Systems (ICDCS 2019) - Richardson, United States Duration: 7 Jul 2019 → 9 Jul 2019 https://theory.utdallas.edu/ICDCS2019/index.html |
Publication series
| Name | Proceedings - International Conference on Distributed Computing Systems |
|---|---|
| ISSN (Print) | 1063-6927 |
| ISSN (Electronic) | 2575-8411 |
Conference
| Conference | 39th IEEE International Conference on Distributed Computing Systems (ICDCS 2019) |
|---|---|
| Abbreviated title | ICDCS 2019 |
| Place | United States |
| City | Richardson |
| Period | 7/07/19 → 9/07/19 |
| Internet address |
Research Keywords
- Computation Deduplication
- Hardware-Assisted Security
- Message-Locked Encryption