Home Publications Research Grants Inventions & Patents Awards Additional Research Activities Faculties & Institutions Research Areas

A fast and secure key-value service using hardware enclaves

Messadi I, Neumann S, Almstedt L, Kapitza R (2019)

---

Publication Type: Conference contribution

Publication year: 2019

Publisher: Association for Computing Machinery, Inc

Pages Range: 1-2

Conference Proceedings Title: Middleware Demos and Posters 2019 - Proceedings of the 2019 20th International Middleware Conference Demos and Posters, Part of Middleware 2019

Event location: Davis, CA, USA

ISBN: 9781450370424

DOI: 10.1145/3366627.3368104

Abstract

Trusted execution as offered by Intel Software Guard Extensions (SGX) enables confidentiality and integrity for cloud-hosted services. While in principle all kinds of workloads can be secured using trusted execution, key-value stores have gained special attention as these services are an essential building block of most complex cloud deployments. So far the main design challenge has been to address current performance limitations of SGX. In addition, we identify the integration of SGX-guarded workloads with recent network technology, especially Remote Direct Memory Access (RDMA) as an upcoming requirement. RDMA allows fast direct access to remote memory at high bandwidth. However, SGX protected memory cannot be directly accessed over the network. Furthermore, due to the more powerful network, secured services might likely be CPU-bound as a result of the necessary cryptographic operations. In this paper, we present a new key-value store architecture that utilizes trusted execution to offer confidentiality and integrity, while using RDMA for low latency and high bandwidth communication. To prevent a server-side CPU bottleneck, clients pre-compute cryptographic operations when possible while data movement in and out of the trusted execution environment has been reduced to the bare minimum.

Authors with CRIS profile

Involved external institutions

How to cite

APA:

Messadi, I., Neumann, S., Almstedt, L., & Kapitza, R. (2019). A fast and secure key-value service using hardware enclaves. In Middleware Demos and Posters 2019 - Proceedings of the 2019 20th International Middleware Conference Demos and Posters, Part of Middleware 2019 (pp. 1-2). Davis, CA, USA: Association for Computing Machinery, Inc.

MLA:

Messadi, Ines, et al. "A fast and secure key-value service using hardware enclaves." Proceedings of the 20th International Middleware Conference Demos and Posters, Middleware 2019, Davis, CA, USA Association for Computing Machinery, Inc, 2019. 1-2.

BibTeX: Download