EnclaveDB: A Secure Database Using SGX

@article{Priebe2018EnclaveDBAS,
  title={EnclaveDB: A Secure Database Using SGX},
  author={Christian Priebe and Kapil Vaswani and Manuel Costa},
  journal={2018 IEEE Symposium on Security and Privacy (SP)},
  year={2018},
  pages={264-278}
}
We propose EnclaveDB, a database engine that guarantees confidentiality, integrity, and freshness for data and queries. EnclaveDB guarantees these properties even when the database administrator is malicious, when an attacker has compromised the operating system or the hypervisor, and when the database runs in an untrusted host in the cloud. EnclaveDB achieves this by placing sensitive data (tables, indexes and other metadata) in enclaves protected by trusted hardware (such as Intel SGX… CONTINUE READING

Similar Papers

Figures, Tables, Results, and Topics from this paper.

Key Quantitative Results

  • Our experiments using standard database benchmarks and a performance model that simulates large enclaves show that EnclaveDB achieves strong security with low overhead (up to 40% for TPC-C) compared to an industry strength in-memory database engine.

Citations

Publications citing this paper.
SHOWING 1-10 OF 23 CITATIONS

Partitioned Data Security on Outsourced Sensitive and Non-Sensitive Data

  • 2019 IEEE 35th International Conference on Data Engineering (ICDE)
  • 2018
VIEW 4 EXCERPTS
HIGHLY INFLUENCED

CFHider: Control Flow Obfuscation with Intel SGX

  • IEEE INFOCOM 2019 - IEEE Conference on Computer Communications
  • 2019
VIEW 1 EXCERPT
CITES BACKGROUND

Enabling Encrypted Rich Queries in Distributed Key-Value Stores

  • IEEE Transactions on Parallel and Distributed Systems
  • 2019
VIEW 1 EXCERPT

LucidiTEE: Policy-based Fair Computing at Scale

  • IACR Cryptology ePrint Archive
  • 2019
VIEW 1 EXCERPT
CITES METHODS

SEP 2 P : Secure and Efficient P 2 P Personal Data Processing

Julien Loudet, Iulian Sandu-Popa
  • 2019
VIEW 3 EXCERPTS
CITES METHODS & BACKGROUND

References

Publications referenced by this paper.
SHOWING 1-10 OF 45 REFERENCES

Ariadne: A Minimal Approach to State Continuity

  • USENIX Security Symposium
  • 2016
VIEW 4 EXCERPTS
HIGHLY INFLUENTIAL

Secure database-as-a-service with Cipherbase

  • SIGMOD Conference
  • 2013
VIEW 4 EXCERPTS
HIGHLY INFLUENTIAL

Opaque: A Data Analytics Platform with Strong Security

W. Zheng, A. Dave, +3 authors I. Stoica
  • 14th USENIX Symposium on Networked Systems Design and Implementation (NSDI 17). Boston, MA: USENIX Association, 2017.
  • 2017
VIEW 1 EXCERPT