Roberta De Viti and Isaac Sheff, Max Planck Institute for Software Systems (MPI-SWS), Saarland Informatics Campus; Noemi Glaeser, Max Planck Institute for Security and Privacy (MPI-SP) and University of Maryland; Baltasar Dinis, Instituto Superior Técnico (ULisboa), INESC-ID; Rodrigo Rodrigues, Instituto Superior Técnico (ULisboa) / INESC-ID; Bobby Bhattacharjee, University of Maryland; Anwar Hithnawi, ETH Zürich; Deepak Garg and Peter Druschel, Max Planck Institute for Software Systems (MPI-SWS), Saarland Informatics Campus
There is growing awareness that the analysis of personal data, such as individuals' mobility, financial, and health data, can provide significant benefits to society. However, liberal societies have so far refrained from such analytics, arguably due to the lack of secure analytics platforms that scale to billions of records while operating in a very strong threat model. We contend that one fundamental gap here is the lack of an architecture that can scale (actively-)secure multi-party computation (MPC) horizontally without weakening security. To bridge this gap, we present CoVault, an analytics platform that leverages server-aided MPC and trusted execution environments (TEEs) to colocate the MPC parties in a single datacenter without reducing security, and scales MPC horizontally to the datacenter's available resources. CoVault scales well empirically. For example, CoVault can scale the DualEx 2PC protocol to perform epidemic analytics for a country of 80M people (about 11.85B data records/day) on a continuous basis using one core pair for every 30,000 people.
Open Access Media
USENIX is committed to Open Access to the research presented at our events. Papers and proceedings are freely available to everyone once the event begins. Any video, audio, and/or slides that are posted after the event are also free and open to everyone. Support USENIX and our commitment to Open Access.
