RESCU-SQL: Oblivious Querying for the Zero Trust Cloud

Xiling Li; Gefei Tan; Xiao Wang; Jennie Rogers; Soamar Homsi

doi:10.14778/3611540.3611627

RESCU-SQL: Oblivious Querying for the Zero Trust Cloud

Xiling Li, Gefei Tan, Xiao Wang, Jennie Rogers, Soamar Homsi

Computer Science

Research output: Contribution to journal › Conference article › peer-review

1 Scopus citations

Abstract

Cloud service providers offer robust infrastructure for rent to organizations of all kinds. High stakes applications, such as the ones in defense and healthcare, are turning to the public cloud for a cost-effective, geographically distributed, always available solution to their hosting needs. Many such users are unwilling or unable to delegate their data to this third-party infrastructure. In this demonstration, we introduce RESCU-SQL, a zero-trust platform for resilient and secure SQL querying outsourced to one or more cloud service providers. RESCU-SQL users can query their DBMS using cloud infrastructure alone without revealing their private records to anyone. It does so by executing the query over secure multiparty computation. We call this system zero trust because it can tolerate any number of malicious servers provided one of them remains honest. Our demo will offer an interactive dashboard with which attendees can observe the performance of RESCU-SQL deployed on several in-cloud nodes for the TPC-H benchmark. Attendees can select a computing party and inject messages from it to explore how quickly it detects and reacts to a malicious party. This is the first SQL system to support all-but-one maliciously secure querying over a semi-honest coordinator for efficiency.

Original language	English (US)
Pages (from-to)	4086-4089
Number of pages	4
Journal	Proceedings of the VLDB Endowment
Volume	16
Issue number	12
DOIs	https://doi.org/10.14778/3611540.3611627
State	Published - 2023
Event	49th International Conference on Very Large Data Bases, VLDB 2023 - Vancouver, Canada Duration: Aug 28 2023 → Sep 1 2023

Funding

This work is supported by Air Force Research Lab grant #FA8750-22-2-0156. The views and conclusions contained herein are those of the authors and should not be interpreted as necessarily representing the official policies or endorsements, either expressed or implied, of the Air Force Research Laboratory or the U.S. Government. — Approved for Public Release on 26 July 2023. Distribution Is Unlimited. Case Number: AFRL-2023-3625.

ASJC Scopus subject areas

Computer Science (miscellaneous)
General Computer Science

Access to Document

10.14778/3611540.3611627

Cite this

@article{c7a9031130b8480e86b42f62731b1a40,

title = "RESCU-SQL: Oblivious Querying for the Zero Trust Cloud",

abstract = "Cloud service providers offer robust infrastructure for rent to organizations of all kinds. High stakes applications, such as the ones in defense and healthcare, are turning to the public cloud for a cost-effective, geographically distributed, always available solution to their hosting needs. Many such users are unwilling or unable to delegate their data to this third-party infrastructure. In this demonstration, we introduce RESCU-SQL, a zero-trust platform for resilient and secure SQL querying outsourced to one or more cloud service providers. RESCU-SQL users can query their DBMS using cloud infrastructure alone without revealing their private records to anyone. It does so by executing the query over secure multiparty computation. We call this system zero trust because it can tolerate any number of malicious servers provided one of them remains honest. Our demo will offer an interactive dashboard with which attendees can observe the performance of RESCU-SQL deployed on several in-cloud nodes for the TPC-H benchmark. Attendees can select a computing party and inject messages from it to explore how quickly it detects and reacts to a malicious party. This is the first SQL system to support all-but-one maliciously secure querying over a semi-honest coordinator for efficiency.",

author = "Xiling Li and Gefei Tan and Xiao Wang and Jennie Rogers and Soamar Homsi",

note = "Publisher Copyright: {\textcopyright} 2023, VLDB Endowment. All rights reserved.; 49th International Conference on Very Large Data Bases, VLDB 2023 ; Conference date: 28-08-2023 Through 01-09-2023",

year = "2023",

doi = "10.14778/3611540.3611627",

language = "English (US)",

volume = "16",

pages = "4086--4089",

journal = "Proceedings of the VLDB Endowment",

issn = "2150-8097",

publisher = "Very Large Data Base Endowment Inc.",

number = "12",

}

TY - JOUR

T1 - RESCU-SQL

T2 - 49th International Conference on Very Large Data Bases, VLDB 2023

AU - Li, Xiling

AU - Tan, Gefei

AU - Wang, Xiao

AU - Rogers, Jennie

AU - Homsi, Soamar

PY - 2023

Y1 - 2023

N2 - Cloud service providers offer robust infrastructure for rent to organizations of all kinds. High stakes applications, such as the ones in defense and healthcare, are turning to the public cloud for a cost-effective, geographically distributed, always available solution to their hosting needs. Many such users are unwilling or unable to delegate their data to this third-party infrastructure. In this demonstration, we introduce RESCU-SQL, a zero-trust platform for resilient and secure SQL querying outsourced to one or more cloud service providers. RESCU-SQL users can query their DBMS using cloud infrastructure alone without revealing their private records to anyone. It does so by executing the query over secure multiparty computation. We call this system zero trust because it can tolerate any number of malicious servers provided one of them remains honest. Our demo will offer an interactive dashboard with which attendees can observe the performance of RESCU-SQL deployed on several in-cloud nodes for the TPC-H benchmark. Attendees can select a computing party and inject messages from it to explore how quickly it detects and reacts to a malicious party. This is the first SQL system to support all-but-one maliciously secure querying over a semi-honest coordinator for efficiency.

AB - Cloud service providers offer robust infrastructure for rent to organizations of all kinds. High stakes applications, such as the ones in defense and healthcare, are turning to the public cloud for a cost-effective, geographically distributed, always available solution to their hosting needs. Many such users are unwilling or unable to delegate their data to this third-party infrastructure. In this demonstration, we introduce RESCU-SQL, a zero-trust platform for resilient and secure SQL querying outsourced to one or more cloud service providers. RESCU-SQL users can query their DBMS using cloud infrastructure alone without revealing their private records to anyone. It does so by executing the query over secure multiparty computation. We call this system zero trust because it can tolerate any number of malicious servers provided one of them remains honest. Our demo will offer an interactive dashboard with which attendees can observe the performance of RESCU-SQL deployed on several in-cloud nodes for the TPC-H benchmark. Attendees can select a computing party and inject messages from it to explore how quickly it detects and reacts to a malicious party. This is the first SQL system to support all-but-one maliciously secure querying over a semi-honest coordinator for efficiency.

UR - http://www.scopus.com/inward/record.url?scp=85174539453&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85174539453&partnerID=8YFLogxK

U2 - 10.14778/3611540.3611627

DO - 10.14778/3611540.3611627

M3 - Conference article

AN - SCOPUS:85174539453

SN - 2150-8097

VL - 16

SP - 4086

EP - 4089

JO - Proceedings of the VLDB Endowment

JF - Proceedings of the VLDB Endowment

IS - 12

Y2 - 28 August 2023 through 1 September 2023

ER -

RESCU-SQL: Oblivious Querying for the Zero Trust Cloud

Abstract

Funding

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this