TimeCrypt: Encrypted Data Stream Processing at Scale with Cryptographic Access Control
Abstract
A growing number of devices and services collect detailed time series data that is stored in the cloud. Protecting the confidentiality of this vast and continuously generated data is an acute need for many applications in this space. At the same time, we must preserve the utility of this data by enabling authorized services to securely and selectively access and run analytics. This paper presents TimeCrypt, a system that provides scalable and real-time analytics over large volumes of encrypted time series data. TimeCrypt allows users to define expressive data access and privacy policies and enforces it cryptographically via encryption. In TimeCrypt, data is encrypted end-to-end, and authorized parties can only decrypt and verify queries within their authorized access scope. Our evaluation of TimeCrypt shows that its memory overhead and performance are competitive and close to operating on data in the clear. Show more
Permanent link
https://doi.org/10.3929/ethz-b-000402391Publication status
publishedBook title
Proceedings of the 17th USENIX Symposium on Networked Systems Design and ImplementationPages / Article No.
Publisher
USENIX AssociationEvent
Organisational unit
03528 - Mattern, Friedemann (emeritus) / Mattern, Friedemann (emeritus)
09653 - Paterson, Kenneth / Paterson, Kenneth
03757 - Roscoe, Timothy / Roscoe, Timothy
Funding
186050 - Privacy Preserving Federated Learning (SNF)
More
Show all metadata