FastVer: Making Data Integrity a Commodity

被引:7
作者
Arasu, Arvind [1 ]
Chandramouli, Badrish [1 ]
Gehrke, Johannes [1 ]
Ghosh, Esha [1 ]
Kossmann, Donald [1 ]
Protzenko, Jonathan [1 ]
Ramamurthy, Ravi [1 ]
Ramananandro, Tahina [1 ]
Rastogi, Aseem [1 ]
Setty, Srinath [1 ]
Swamy, Nikhil [1 ]
van Renen, Alexander [2 ]
Xu, Min [3 ]
机构
[1] Microsoft Res, Redmond, WA 98052 USA
[2] Tech Univ Munich, Munich, Germany
[3] Univ Chicago, Chicago, IL 60637 USA
来源
SIGMOD '21: PROCEEDINGS OF THE 2021 INTERNATIONAL CONFERENCE ON MANAGEMENT OF DATA | 2021年
关键词
D O I
10.1145/3448016.3457312
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
We present FASTVER, a high-performance key-value store with strong data integrity guarantees. FASTVER is built as an extension of FASTER, an open-source, high-performance key-value store. It offers the same key-value API as FASTER plus an additional verify() method that detects if an unauthorized attacker tampered with the database and checks whether results of all read operations are consistent with historical updates. FASTVER is based on a novel approach that combines the advantages of Merkle trees and deferred memory verification. We show that this approach achieves one to two orders of magnitudes higher throughputs than traditional approaches based on either Merkle trees or memory verification. We have formally proven the correctness of our approach in a proof assistant, ensuring that verify() detects any inconsistencies, except if a collision can be found on a cryptographic hash.
引用
收藏
页码:89 / 101
页数:13
相关论文
共 29 条
[1]  
[Anonymous], 2018, BLAKE3 CRYPTOGRAPHIC
[2]   Azure SQL Database Always Encrypted [J].
Antonopoulos, Panagiotis ;
Arasu, Arvind ;
Singh, Kunal D. ;
Eguro, Ken ;
Gupta, Nitish ;
Jain, Rajat ;
Kaushik, Raghav ;
Kodavalla, Hanuma ;
Kossmann, Donald ;
Ogg, Nikolas ;
Ramamurthy, Ravi ;
Szymaszek, Jakub ;
Trimmer, Jeffrey ;
Vaswani, Kapil ;
Venkatesan, Ramarathnam ;
Zwilling, Mike .
SIGMOD'20: PROCEEDINGS OF THE 2020 ACM SIGMOD INTERNATIONAL CONFERENCE ON MANAGEMENT OF DATA, 2020, :1511-1525
[3]   Concerto: A High Concurrency Key-Value Store with Integrity [J].
Arasu, Arvind ;
Eguro, Ken ;
Kaushik, Raghav ;
Kossmann, Donald ;
Meng, Pingfan ;
Pandey, Vineet ;
Ramamurthy, Ravi .
SIGMOD'17: PROCEEDINGS OF THE 2017 ACM INTERNATIONAL CONFERENCE ON MANAGEMENT OF DATA, 2017, :251-266
[4]  
Arasu A, 2015, PROC INT CONF DATA, P435, DOI 10.1109/ICDE.2015.7113304
[5]   TrustedDB: A Trusted Hardware-Based Database with Privacy and Data Confidentiality [J].
Bajaj, Sumeet ;
Sion, Radu .
IEEE TRANSACTIONS ON KNOWLEDGE AND DATA ENGINEERING, 2014, 26 (03) :752-765
[6]   Shielding Applications from an Untrusted Cloud with Haven [J].
Baumann, Andrew ;
Peinado, Marcus ;
Hunt, Galen .
ACM TRANSACTIONS ON COMPUTER SYSTEMS, 2015, 33 (03)
[7]  
BLUM M, 1991, PROCEEDINGS - 32ND ANNUAL SYMPOSIUM ON FOUNDATIONS OF COMPUTER SCIENCE, P90, DOI 10.1109/SFCS.1991.185352
[8]   FASTER: An Embedded Concurrent Key-Value Store for State Management [J].
Chandramouli, Badrish ;
Prasaad, Guna ;
Kossmann, Donald ;
Levandoski, Justin ;
Hunter, James ;
Barnett, Mike .
PROCEEDINGS OF THE VLDB ENDOWMENT, 2018, 11 (12) :1930-1933
[9]   SEEMless: Secure End-to-End Encrypted Messaging with less Trust [J].
Chase, Melissa ;
Deshpande, Apoorvaa ;
Ghosh, Esha ;
Malvai, Harjasleen .
PROCEEDINGS OF THE 2019 ACM SIGSAC CONFERENCE ON COMPUTER AND COMMUNICATIONS SECURITY (CCS'19), 2019, :1639-1656
[10]  
Cooper B. F., 2010, P ACM S CLOUD COMP S, P143, DOI DOI 10.1145/1807128.1807152
123