Cryptology ePrint Archive: Report 2015/073
Oblivious Network RAM and Leveraging Parallelism to Achieve Obliviousness
Dana Dachman-Soled and Chang Liu and Charalampos Papamanthou and Elaine Shi and Uzi Vishkin
Abstract: Oblivious RAM (ORAM) is a cryptographic primitive that allows a trusted CPU to securely access untrusted memory, such that the access patterns reveal nothing about sensitive data. ORAM is known to have broad applications in secure processor design and secure multi-party computation for big data. Unfortunately, due to a logarithmic lower bound by Goldreich and Ostrovsky (Journal of the ACM, '96), ORAM is bound to incur a moderate cost in practice. In
particular, with the latest developments in ORAM constructions, we are quickly approaching this limit, and the room for performance improvement is small.
In this paper, we consider new models of computation in which the cost of obliviousness can be fundamentally reduced in comparison with the standard ORAM model. We propose the Oblivious Network RAM model of computation, where a CPU communicates with multiple
memory banks, such that the adversary observes only which bank the CPU is communicating with, but not the address oset within each memory bank. In other words, obliviousness within each bank comes for free either because the architecture prevents a malicious party from observing the address accessed within a bank, or because another solution is used to obfuscate memory accesses within each bank and hence we only need to obfuscate communication patterns between the CPU and the memory banks. We present new constructions for obliviously simulating general or parallel programs in the Network RAM model. We describe applications of our new model in secure processor design and in distributed storage applications with a network adversary.
Category / Keywords: ORAM, parallel computing
Original Publication (with major differences): IACR-ASIACRYPT-2015
Date: received 1 Feb 2015, last revised 13 Jan 2017
Contact author: danadach at ece umd edu
Available format(s): PDF | BibTeX Citation
Version: 20170113:181858 (All versions of this report)
Short URL: ia.cr/2015/073
Discussion forum: Show discussion | Start new discussion
[ Cryptology ePrint archive ]