Revisiting Secure Multi-Server Oblivious RAMs

Chaewon Kwak; Kangmo Ahn; Changhee Hahn; Dongyoung Koo; Junbeom Hur

doi:10.1109/ICOIN59985.2024.10572175

Revisiting Secure Multi-Server Oblivious RAMs

Chaewon Kwak, Kangmo Ahn, Changhee Hahn, Dongyoung Koo, Junbeom Hur

Dept. of Electrical and Information Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

Oblivious RAM (ORAM) facilitates search and update on outsourced encrypted databases without leaking access patterns. Since ORAM typically requires large client storage and high computational overhead, many studies proposed more efficient ORAM schemes. For example, Thang et al. proposed a multi-server ORAM, S3ORAM, by utilizing Shamir's secret sharing and secure multi-party computation, instead of fully homomorphic encryption to enhance the efficiency. However, recent studies show that Shamir's secret sharing is no longer secure in Galois Fields. To solve this security problem while achieving the efficiency, we propose two ORAM schemes: (1) BSS-ORAM by applying Blakley's secret sharing to S3ORAM, aiming to improve security with high efficiency, and (2) VH-BSS-ORAM, which further prevents size pattern leakage by storage padding. According to our analysis, BSS-ORAM is secure in Galois Fields with the same computational overhead of S3ORAM; and VH-BSS-ORAM further hides size pattern with higher overhead compared to S3ORAM.

Original language	English
Title of host publication	38th International Conference on Information Networking, ICOIN 2024
Publisher	IEEE Computer Society
Pages	469-472
Number of pages	4
ISBN (Electronic)	9798350330946
DOIs	https://doi.org/10.1109/ICOIN59985.2024.10572175
State	Published - 2024
Event	38th International Conference on Information Networking, ICOIN 2024 - Hybrid, Ho Chi Minh City, Viet Nam Duration: 17 Jan 2024 → 19 Jan 2024

Publication series

Name	International Conference on Information Networking
ISSN (Print)	1976-7684

Conference

Conference	38th International Conference on Information Networking, ICOIN 2024
Country/Territory	Viet Nam
City	Hybrid, Ho Chi Minh City
Period	17/01/24 → 19/01/24

Keywords

Blakley's secret sharing
information leakage
Oblivious RAM
searchable encryption

Access to Document

10.1109/ICOIN59985.2024.10572175

Cite this

@inproceedings{48367438cd5e47d195ebae18c95819a8,

title = "Revisiting Secure Multi-Server Oblivious RAMs",

abstract = "Oblivious RAM (ORAM) facilitates search and update on outsourced encrypted databases without leaking access patterns. Since ORAM typically requires large client storage and high computational overhead, many studies proposed more efficient ORAM schemes. For example, Thang et al. proposed a multi-server ORAM, S3ORAM, by utilizing Shamir's secret sharing and secure multi-party computation, instead of fully homomorphic encryption to enhance the efficiency. However, recent studies show that Shamir's secret sharing is no longer secure in Galois Fields. To solve this security problem while achieving the efficiency, we propose two ORAM schemes: (1) BSS-ORAM by applying Blakley's secret sharing to S3ORAM, aiming to improve security with high efficiency, and (2) VH-BSS-ORAM, which further prevents size pattern leakage by storage padding. According to our analysis, BSS-ORAM is secure in Galois Fields with the same computational overhead of S3ORAM; and VH-BSS-ORAM further hides size pattern with higher overhead compared to S3ORAM.",

keywords = "Blakley's secret sharing, information leakage, Oblivious RAM, searchable encryption",

author = "Chaewon Kwak and Kangmo Ahn and Changhee Hahn and Dongyoung Koo and Junbeom Hur",

note = "Publisher Copyright: {\textcopyright} 2024 IEEE.; 38th International Conference on Information Networking, ICOIN 2024 ; Conference date: 17-01-2024 Through 19-01-2024",

year = "2024",

doi = "10.1109/ICOIN59985.2024.10572175",

language = "English",

series = "International Conference on Information Networking",

publisher = "IEEE Computer Society",

pages = "469--472",

booktitle = "38th International Conference on Information Networking, ICOIN 2024",

}

Kwak, C, Ahn, K, Hahn, C, Koo, D & Hur, J 2024, Revisiting Secure Multi-Server Oblivious RAMs. in 38th International Conference on Information Networking, ICOIN 2024. International Conference on Information Networking, IEEE Computer Society, pp. 469-472, 38th International Conference on Information Networking, ICOIN 2024, Hybrid, Ho Chi Minh City, Viet Nam, 17/01/24. https://doi.org/10.1109/ICOIN59985.2024.10572175

TY - GEN

T1 - Revisiting Secure Multi-Server Oblivious RAMs

AU - Kwak, Chaewon

AU - Ahn, Kangmo

AU - Hahn, Changhee

AU - Koo, Dongyoung

AU - Hur, Junbeom

PY - 2024

Y1 - 2024

N2 - Oblivious RAM (ORAM) facilitates search and update on outsourced encrypted databases without leaking access patterns. Since ORAM typically requires large client storage and high computational overhead, many studies proposed more efficient ORAM schemes. For example, Thang et al. proposed a multi-server ORAM, S3ORAM, by utilizing Shamir's secret sharing and secure multi-party computation, instead of fully homomorphic encryption to enhance the efficiency. However, recent studies show that Shamir's secret sharing is no longer secure in Galois Fields. To solve this security problem while achieving the efficiency, we propose two ORAM schemes: (1) BSS-ORAM by applying Blakley's secret sharing to S3ORAM, aiming to improve security with high efficiency, and (2) VH-BSS-ORAM, which further prevents size pattern leakage by storage padding. According to our analysis, BSS-ORAM is secure in Galois Fields with the same computational overhead of S3ORAM; and VH-BSS-ORAM further hides size pattern with higher overhead compared to S3ORAM.

AB - Oblivious RAM (ORAM) facilitates search and update on outsourced encrypted databases without leaking access patterns. Since ORAM typically requires large client storage and high computational overhead, many studies proposed more efficient ORAM schemes. For example, Thang et al. proposed a multi-server ORAM, S3ORAM, by utilizing Shamir's secret sharing and secure multi-party computation, instead of fully homomorphic encryption to enhance the efficiency. However, recent studies show that Shamir's secret sharing is no longer secure in Galois Fields. To solve this security problem while achieving the efficiency, we propose two ORAM schemes: (1) BSS-ORAM by applying Blakley's secret sharing to S3ORAM, aiming to improve security with high efficiency, and (2) VH-BSS-ORAM, which further prevents size pattern leakage by storage padding. According to our analysis, BSS-ORAM is secure in Galois Fields with the same computational overhead of S3ORAM; and VH-BSS-ORAM further hides size pattern with higher overhead compared to S3ORAM.

KW - Blakley's secret sharing

KW - information leakage

KW - Oblivious RAM

KW - searchable encryption

UR - http://www.scopus.com/inward/record.url?scp=85198335617&partnerID=8YFLogxK

U2 - 10.1109/ICOIN59985.2024.10572175

DO - 10.1109/ICOIN59985.2024.10572175

M3 - Conference contribution

AN - SCOPUS:85198335617

T3 - International Conference on Information Networking

SP - 469

EP - 472

BT - 38th International Conference on Information Networking, ICOIN 2024

PB - IEEE Computer Society

T2 - 38th International Conference on Information Networking, ICOIN 2024

Y2 - 17 January 2024 through 19 January 2024

ER -

Revisiting Secure Multi-Server Oblivious RAMs

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this