Skip to main content
SpringerLink
Log in

Write-only oblivious RAM-based privacy-preserved access of outsourced data

  • Regular Contribution
  • Published:
International Journal of Information Security Aims and scope Submit manuscript

Abstract

Data outsourcing is plagued with several security and privacy concerns. Oblivious RAM (ORAM) can be used to address one of the many concerns, specifically to protect the privacy of data access pattern from outsourced cloud storage. This is achieved by simulating each original read or write operation with some read and write operations on both real and dummy data items. This paper proposes two single-server write-only ORAM schemes and one multi-server scheme, which simulate only the write operations and protect only the write pattern. The reduction in functionality however allows to build much simpler and efficient (in terms of communication/storage cost) ORAMs. Our schemes can achieve constant communication cost with acceptable storage usage. Write-only ORAM can be used in two situations: (i) only the write pattern is considered to contain sensitive information and needs protection. (ii) In outsourced data sharing, ORAM cannot be used to protect read pattern anyway due to access control issues, and Private Information Retrieval (PIR) has to be used instead. In this paper, we also study how to augment ORAM to support the use of PIR in the latter situation.

This is a preview of subscription content, log in via an institution to check access.

Access this article

Log in via an institution

Price excludes VAT (USA)
Tax calculation will be finalised during checkout.

Instant access to the full article PDF.

Fig. 1
Fig. 2
Fig. 3
Fig. 4
Fig. 5
Fig. 6

Similar content being viewed by others

References

  1. Fernandes, D.A., Soares, L.F., Gomes, J.V., Freire, M.M., Inácio, P.R.: Security issues in cloud environments: a survey. Int. J. Inf. Secur. 13(2), 113–170 (2014)

    Article  Google Scholar 

  2. Yu, Y., Au, M.H., Mu, Y., Tang, S., Ren, J., Susilo, W., Dong, L.: Enhanced privacy of a remote data integrity-checking protocol for secure cloud storage. Int. J. Inf. Secur. 1(12), 307–318 (2014)

    Google Scholar 

  3. Goodrich, M.T., Mitzenmacher, M.: Privacy-preserving access of outsourced data via oblivious RAM simulation. In: 38th International Colloquium on Automata, Languages and Programming, pp. 576–587. Springer, Zurich (2011)

  4. Boneh, D., Mazieres, D., Popa, R.A.: Remote Oblivious Storage: Making Oblivious RAM Practical. Technical Report MIT-CSAIL-TR-2011-018, (2011). http://dspace.mit.edu/bitstream/handle/1721.1/62006/MIT-CSAIL-TR-2011-018.pdf

  5. Franz, M., Williams, P., Carbunar, B., Katzenbeisser, S., Peter, A., Sion, R., Sotakova, M.: Oblivious outsourced storage with delegation. In: Financial Cryptography and Data Security, pp. 127–140. Springer, Berlin, Heidelberg (2011)

  6. Williams, P., Sion, R., Tomescu, A.: Privatefs: A parallel oblivious file system. In: Proceedings of the 2012 ACM Conference on Computer and Communications Security, pp. 977–988. ACM (2012)

  7. Pinkas, B., Reinman, T.: Oblivious RAM revisited. In: Advances in Cryptology–CRYPTO 2010, pp. 502–519. Springer, Berlin, Heidelberg (2010)

  8. Goldreich, O.: Towards a theory of software protection and simulation by oblivious RAMs. In: Proceedings of the nineteenth annual ACM Symposium on Theory of Computing, pp. 182–194. ACM (1987)

  9. Shi, E., Chan, 1383 T.H., Stefanov, E., Li, M.: Oblivious RAM with O((log N)3) worst-case cost. In: Advances in Cryptology–ASIACRYPT 2011. pp. 197–214. Springer, Berlin, Heidelberg (2011)

  10. Stefanov, E., Shi, E., Song, D.: Towards practical oblivious RAM. In: 19th Annual Network and Distributed System Security Symposium. The Internet Society (2012)

  11. Stefanov, E., Shi, E.: ObliviStore: high performance oblivious cloud storage. In: IEEE Symposium on Security and Privacy 2013, pp. 253–267. IEEE (2013)

  12. Stefanov, E., Shi, E.: Multi-cloud oblivious storage. In: ACM Conference on Computer and Communications Security, pp. 247–258. ACM (2013)

  13. Chor, B., Goldreich, O., Kushilevitz, E., Sudan, M.: Private Information Retrieval. In: Proceedings of the 36th Annual IEEE Conference on Foundations of Computer Science, pp. 41–50. IEEE, New York (1995)

  14. Asonov, D.: Private Information Retrieval: an overview and current trends. In: The ECDPvA Workshop (2001)

  15. Sassaman, L., Cohen, B., Mathewson, N.: The Pynchon Gate: A Secure Method of Pseudonymous Mail Retrieval. In: Proceedings of the 2005 ACM workshop on Privacy in the electronic society, pp. 1–9. ACM (2005)

  16. Mane, S.B., Sawant, S.T., Sinha, P.K.: Using Private Information Retrieval protocol for an E-commerce application. In: CUBE International Information Technical Conference (2012)

  17. Miceli, A.M., Sample, B.J., Ioup, C.E., Abdelguerfi, D.M.: Private Information Retrieval in an anonymous peer-to-peer environment. University of New Orleans Theses and Dissertations. Paper 1331 (2011)

  18. Huang, Y., Goldberg, I.: Outsourced Private Information Retrieval with Pricing and Access Control. Technical Report CACR (2013–11). http://cacr.uwaterloo.ca/techreports/2013/cacr2013-11.pdf

  19. Blass, E.-O., Mayberry, T., Noubir, G., Onarlioglu, K.: Toward robust hidden volumes using write-only oblivious RAM. In: Proceedings of the 2014 ACM SIGSAC Conference on Computer and Communications Security, pp. 203–214. ACM (2014)

  20. Lu, S., Ostrovsky, R.: Distributed oblivious RAM for secure two party computation. In: Theory of Cryptography, pp. 377–396. Springer, Berlin, Heidelberg (2013)

  21. Moataz, T., Blass, E.-O., Mayberry, T.: Constant communication ORAM without encryption. IACR Cryptology ePrint Archive, Report 2015/1116 (2015)

  22. Goodrich, M.T., Mitzenmacher, M., Ohrimenko, O., Tamassia, R.: Oblivious RAM simulation with efficient worst-case access overhead. In: Proceedings of the 3rd ACM workshop on Cloud computing security workshop, pp. 95–100. ACM (2011)

  23. Goodrich, M.T., Mitzenmacher, M., Ohrimenko, O., Tamassia, R.: Privacy-preserving group data access via stateless oblivious RAM simulation. In: Proceedings of the twenty-third annual ACM-SIAM Symposium on Discrete Algorithms, pp. 157–167. SIAM (2012)

  24. Stefanov, E., Dijk, M.V., Shi, E., Fletcher, C., Ren, L., Yu, X., Devadas, S.: Path ORAM: an extremely simple oblivious RAM protocol. In: Proceedings of the 2013 ACM SIGSAC Conference on Computer & Communications Security, pp. 299–310. ACM (2013)

  25. Kushilevitz, E., Lu, S., Ostrovsky, R.: On the (in)security of hash based oblivious RAM and a new balancing scheme. In: Proceedings of the twenty-third annual ACM-SIAM symposium on Discrete Algorithms, pp. 143–156. SIAM (2012)

  26. Mayberry, T., Blass, E.O., Chan, A.: Efficient private file retrieval by combining ORAM and PIR. In: 21st Annual Network and Distributed System Security Symposium. The Internet Society, San Diego, California, USA (2014)

  27. Devadas, S., van Dijk, M., Fletcher, C.W., Ren, L., Shi, E., Wichs, D.: Onion ORAM: a constant bandwidth blowup oblivious RAM. In: Theory of Cryptography, pp. 145–174. Springer, Berlin, Heidelberg (2016)

  28. Fletcher, C.W., Naveed, M., Ren, L., Shi, E., Stefanov, E.: Bucket ORAM: single online roundtrip, constant bandwidth oblivious RAM. IACR Cryptology ePrint Archive, Report 2015, 1065 (2015)

  29. Moataz, T., Mayberry, T., Blass, E.-O.: Constant communication ORAM with small blocksize. In: Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security, pp. 862–873. ACM (2015)

  30. Goodrich, M.T.: Randomized shellsort: a simple oblivious sorting algorithm. In: Proceedings of the twenty-first annual ACM-SIAM symposium on Discrete Algorithms, pp. 1262–1277. SIAM (2010)

  31. Goodrich, M.T.: Data-oblivious external-memory algorithms for the compaction, selection, and sorting of outsourced data. In: Proceedings of the twenty-third annual ACM Symposium on Parallelism in Algorithms and Architectures, pp. 379–388. ACM (2011)

  32. Beimel, A., Ishai, Y., Kushilevitz, E.: General constructions for information-theoretic Private Information Retrieval. J. Comput. Syst. Sci. 71(2), pp. 213–247 (2005)

  33. Beimel, A., Ishai, Y., Kushilevitz, E., Orlov, I.: Share conversion and Private Information Retrieval. In: 27th Annual Conference on Computational Complexity (CCC), pp. 258–268. IEEE (2012)

  34. Olumofin, F., Goldberg, I.: Revisiting the computational practicality of Private Information Retrieval. In: Financial Cryptography and Data Security, pp. 158–172. Springer, Berlin Heidelberg (2011)

  35. Sion, R., Carbunar, B.: On the computational practicality of Private Information Retrieval. In: Proceedings of the Network and Distributed Systems Security Symposium. The Internet Society (2007)

  36. Aguilar-Melchor, C., Barrier, J., Fousse, L., Killijian, M.-O.:XPIR: Private Information Retrieval for everyone. IACR Cryptology ePrint Archive, Report 2014/1025 (2014)

  37. Devet, C.: Evaluating Private Information Retrieval on the Cloud. Technical Report CACR 2013-05 (2013). http://cacr.uwaterloo.ca/techreports/2013/cacr2013-05.pdf

  38. Melchor, C.A., Crespin, B., Gaborit, P., Jolivet, V., Rousseau, P.: High-speed Private Information Retrieval computation on GPU. In: Second International Conference on Emerging Security Information, Systems and Technologies, pp. 263–272. IEEE (2008)

  39. Gentry, C., Ramzan, Z.: Single-database Private Information Retrieval with constant communication rate. In: International Colloquium on Automata, Languages and Programming, pp. 803–815. Springer, Berlin, Heidelberg (2005)

  40. Yekhanin, S.: Towards 3-query locally decodable codes of subexponential length. In: Proceedings of the 39th ACM Symposium on Theory of Computing, pp. 266–274. ACM (2007)

  41. Iliev, A., Smith, S.: Private information storage with logarithmic-space secure hardware. In: Information Security Management, Education and Privacy, pp. 201–216. Springer, US (2004)

  42. Iliev, A., Smith, S.: Protecting client privacy with trusted computing at the server. In: IEEE Security & Privacy, (2), pp. 20–28. IEEE (2005)

  43. Wang, S., Ding, X., Deng, R.H., Bao, F.: Private Information Retrieval using trusted hardware. In: 11th European Symposium on Research in Computer Security, pp. 49–64. Hamburg, Germany (2006)

  44. Williams, P., Radu, S.: Usable PIR. In: 19th Annual Network and Distributed System Security Symposium. The Internet Society, San Diego, California, USA (2008)

  45. Lipmaa, H., Zhang, B.: Two new efficient PIR-writing protocols. In: Applied Cryptography and Network Security, pp. 438–455. Springer, Berlin, Heidelberg (2010)

  46. Ostrovsky, R., Shoup, V.: Private information storage (extended abstract). In: Proceedings of the twenty-ninth annual ACM Symposium on Theory of Computing, pp. 294–303. ACM (1997)

  47. Schmuck, F.B., Haskin, R.L.: GPFS: a shared-disk file system for large computing clusters. In: Proceedings of the FAST’02 Conference on File and Storage Technologies, pp. 231–244. USENIX, Monterey, California (2002)

  48. VMware’s Virtual Machine File System (VMFS). http://www.vmware.com/products/vsphere/features/vmfs.html

  49. Shvachko, K., Kuang, H., Radia, S., Chansler, R.: The hadoop distributed file system. In: 2010 IEEE 26th Symposium on Mass Storage Systems and Technologies (MSST), pp. 1–10. IEEE (2010)

  50. Ghemawat, S., Gobioff, H., Leung, S.T.: The Google file system. In: ACM SIGOPS Operating Systems Review 37(5), 29–43 (2003)

  51. Goldwasser, S., Micali, S.: Probabilistic encryption. J. Comput. Syst. Sci. 28(2), 270–299 (1984)

    Article  MathSciNet  MATH  Google Scholar 

  52. Raab, M., Steger, A.: “Balls into bins”—a simple and tight analysis. In: Randomization and Approximation Techniques in Computer Science, pp. 159–170. Springer, Berlin, Heidelberg (1998)

  53. Chaum, D.L.: Untraceable electronic mail, return addresses, and digital pseudonyms. Commun. ACM 24(2), 84–90 (1981)

    Article  Google Scholar 

Download references

Acknowledgments

The authors would like to thank the editor and the anonymous reviewers for providing constructive and generous feedbacks, which have been immensely useful in improving the results as well as the presentation of this work.

Author information

Authors and Affiliations

  1. School of Electrical and Electronic Engineering, Nanyang Technological University, Singapore, 639798, Singapore

    Lichun Li

  2. School of Computer Engineering, Nanyang Technological University, Singapore, 639798, Singapore

    Anwitaman Datta

Authors
  1. Lichun Li
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Anwitaman Datta
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Lichun Li.

Appendix: Maximum bucket load in advanced write-only ORAM

Appendix: Maximum bucket load in advanced write-only ORAM

Raab and Steger [52] analyzes the maximum load in the standard balls in bins problem under different settings of ball count and bin count. In advanced write-only ORAM, data item distribution can be seen as a variant of the standard problem. Data items and buckets in ORAM are seen as balls and bins, respectively. In the standard problem, N balls are distributed to K bins uniformly at random. From the Theorem 1 in [52], we can know that the maximum number of balls in any bin is higher than \(max(2\times N\)/\(K,2\times \log K)\) with extremely low probability. If \(N\ge K\times \log K\), the maximum load in any bin is not more than \(2\times N/K\) with extremely high probability. Then we can set a bucket capacity of \(B=2\times N\)/K data items, and achieve \(O(N\times l)\) server-side storage and extremely rare overflows. If a bucket is overflowed, redistributing overflowed data items makes data item distribution different from the distribution in the standard balls in bins problem. However, a bucket capacity of \(2\times N\)/K is still big enough to make overflow rare after the redistributing. Assume one bucket is overflowed and overflowed data items are distributed to the other buckets randomly. Then, given this assumption, \(N^\prime =N-2\times N\)/K data items are distributed to the other \(K^\prime =K-1\) buckets randomly. This is a standard balls in bins problem, and the maximum number of balls in any bin is higher than \(max(2\times N^\prime /K^\prime ,2\times \log K^\prime )\) with extremely low probability. From below, we can see that the bucket capacity of \(2\times N\)/K is bigger than \(max(2\times N^\prime /K^\prime ,2\times \log K^\prime )\).

$$\begin{aligned}&N\times (K-1) > N \times K -2\times N \\&\quad \Rightarrow N\times (K-1) > (N-2\times N{/}K) \times K \\&\quad \Rightarrow N{/}K > (N-2\times N{/}K)/(K-1) \\&\quad \Rightarrow 2\times N{/}K > 2\times N^\prime /K^\prime \\&N\ge K\times \log K \Rightarrow 2\times N{/}K \ge 2\times \log K > 2\\&\quad \times \log (K-1) = 2\times \log K^\prime \end{aligned}$$

Therefore, if one bucket being overflowed and overflowed data items being redistributed (the probability that these events occur is extremely low), the probability of another bucket being overflowed is still extremely low. To sum up, if \(N\ge K\times \log K\), we can set a bucket capacity of \(B=O(N{/}K)\) data items to achieve \(O(N\times l)\) server-side storage and extremely rare overflows.

Rights and permissions

Reprints and permissions

About this article

Check for updates. Verify currency and authenticity via CrossMark

Cite this article

Li, L., Datta, A. Write-only oblivious RAM-based privacy-preserved access of outsourced data. Int. J. Inf. Secur. 16, 23–42 (2017). https://doi.org/10.1007/s10207-016-0329-x

Download citation

  • Published:

  • Issue Date:

  • DOI: https://doi.org/10.1007/s10207-016-0329-x

Keywords

Search

Navigation