SlideShare a Scribd company logo

Overview of MONOMI

Mateus S. H. Cruz, profile picture
Mateus S. H. Cruz

The document discusses a system called Monomi, which extends CryptDB for processing analytical queries over encrypted data, aiming to protect data against server compromises with a modest overhead. It presents split execution optimization techniques, such as per-row precomputation and space-efficient encryption, to enhance performance while ensuring security. The proposed architecture and query planning are evaluated through experiments demonstrating effective execution of complex queries without directly exposing sensitive data.

Technology
1 of 49
Downloaded 21 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
Processing Analytical Queries over Encrypted Data Stephen Tu, M. Frank Kaashoek, Samuel Madden, and Nickolai Zeldovich 39th International Conference on Very Large Data Bases Riva del Garda, Trento, Italy, August 2013 SWIM Seminar May 19th, 2015 Mateus Cruz
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion OUTLINE 1 Introduction 2 Split Execution 3 Optimization Techniques 4 Designer and Planner 5 Experiments 6 Conclusion 2 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion OUTLINE 1 Introduction 2 Split Execution 3 Optimization Techniques 4 Designer and Planner 5 Experiments 6 Conclusion 3 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion OVERVIEW System called MONOMI Extension of CryptDB Analytical queries over encrypted data Data protected against server compromises Modest overhead Slowdown of 1.03 to 2.33× 4 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion MAIN IDEAS Split client/server execution Optimization techniques Per-row precomputation Space-efficient encryption Grouped homomorphic addition Pre-filtering Designer Physical data layout Planner Efficient execution plan for queries 5 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion USED ENCRYPTION SCHEMES 6 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion ARCHITECTURE 7 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion OUTLINE 1 Introduction 2 Split Execution 3 Optimization Techniques 4 Designer and Planner 5 Experiments 6 Conclusion 8 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion INTUITION The server cannot execute all queries Limitations of cryptosystems Cannot transfer all data to the client Large amount of data Divide execution Execute as much as possible on server Transfer data to the client when it is not possible to execute on the server 9 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion LIMITATIONS OF SERVER EXECUTION Example (TPC-H Q11) SELECT ps partkey, SUM (ps supplycost * ps availqty) AS value FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 GROUP BY ps partkey HAVING SUM (ps supplycost * ps availqty) > ( SELECT SUM (ps supplycost * ps availqty) * 0.0001 FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 ) ORDER BY value DESC; 10 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion LIMITATIONS OF SERVER EXECUTION Example (TPC-H Q11) SELECT ps partkey, SUM (ps supplycost * ps availqty) AS value FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 GROUP BY ps partkey HAVING SUM Addition and comparison in- volve incompatible encryption schemes (ps supplycost * ps availqty) > ( SELECT SUM (ps supplycost * ps availqty) * 0.0001 FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 ) ORDER BY value DESC; 10 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion LIMITATIONS OF SERVER EXECUTION Example (TPC-H Q11) SELECT ps partkey, SUM (ps supplycost * ps availqty) AS value FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 GROUP BY ps partkey HAVING SUM (ps supplycost * ps availqty) > ( SELECT SUM (ps supplycost * ps availqty) No efficient encryption scheme allows multiplica- tion of two encrypted values * 0.0001 FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 ) ORDER BY value DESC; 10 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SPLIT QUERY PLAN Example (TPC-H Q11) SELECT ps partkey, SUM (ps supplycost * ps availqty) AS VALUE FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 GROUP BY ps partkey HAVING SUM (ps supplycost * ps availqty) > ( SELECT SUM (ps supplycost * ps availqty) * 0.0001 FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 ) ORDER BY value DESC; LocalSort key:[$1] LocalProjection exprs: [$0, sum($1)] LocalGroupFilter filter: sum($1) > subquery0() LocalDecrypt pos: [$0, $1] LocalProjection exprs: [sum($0) * 0.0001] RemoteSQL SELECT ps parkey DET, GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef GROUP BY ps partkey DET LocalDecrypt pos: [$0] RemoteSQL SELECT GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef 11 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SPLIT QUERY PLAN Example (TPC-H Q11) SELECT ps partkey, SUM (ps supplycost * ps availqty) AS VALUE FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 GROUP BY ps partkey HAVING SUM (ps supplycost * ps availqty) > ( SELECT SUM (ps supplycost * ps availqty) * 0.0001 FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 ) ORDER BY value DESC; LocalSort key:[$1] LocalProjection exprs: [$0, sum($1)] LocalGroupFilter filter: sum($1) > subquery0() LocalDecrypt pos: [$0, $1] LocalProjection exprs: [sum($0) * 0.0001] RemoteSQL SELECT ps parkey DET, GROUP(precomp DET Precomputed multiplication ) FROM ... WHERE n name DET = 0xabcdef GROUP BY ps partkey DET LocalDecrypt pos: [$0] RemoteSQL SELECT GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef 11 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SPLIT QUERY PLAN Example (TPC-H Q11) SELECT ps partkey, SUM (ps supplycost * ps availqty) AS VALUE FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 GROUP BY ps partkey HAVING SUM (ps supplycost * ps availqty) > ( SELECT SUM (ps supplycost * ps availqty) * 0.0001 FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 ) ORDER BY value DESC; LocalSort key:[$1] LocalProjection exprs: [$0, sum($1)] LocalGroupFilter filter: sum($1) > subquery0() LocalDecrypt pos: [$0, $1 Reference to the columns of the child operator ] LocalProjection exprs: [sum($0) * 0.0001] RemoteSQL SELECT ps parkey DET, GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef GROUP BY ps partkey DET LocalDecrypt pos: [$0] RemoteSQL SELECT GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef 11 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SPLIT QUERY PLAN Example (TPC-H Q11) SELECT ps partkey, SUM (ps supplycost * ps availqty) AS VALUE FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 GROUP BY ps partkey HAVING SUM (ps supplycost * ps availqty) > ( SELECT SUM (ps supplycost * ps availqty) * 0.0001 FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 ) ORDER BY value DESC; LocalSort key:[$1] LocalProjection exprs: [$0, sum($1)] LocalGroupFilter filter: sum($1) > subquery0() LocalDecrypt pos: [$0, $1] LocalProjection exprs: [sum($0) * 0.0001] RemoteSQL SELECT ps parkey DET, GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef Deterministic encryption of the value :1 GROUP BY ps partkey DET LocalDecrypt pos: [$0] RemoteSQL SELECT GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef 11 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SPLIT QUERY PLAN Example (TPC-H Q11) SELECT ps partkey, SUM (ps supplycost * ps availqty) AS VALUE FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 GROUP BY ps partkey HAVING SUM (ps supplycost * ps availqty) > ( SELECT SUM (ps supplycost * ps availqty) * 0.0001 FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 ) ORDER BY value DESC; LocalSort key:[$1] LocalProjection exprs: [$0, sum($1)] LocalGroupFilter filter: sum($1) > subquery0() LocalDecrypt pos: [$0, $1] LocalProjection exprs: [sum($0) * 0.0001] RemoteSQL SELECT ps parkey DET, GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef GROUP BY ps partkey DET LocalDecrypt pos: [$0] RemoteSQL SELECT GROUP Concatenation of all values from each GROUP BY group (precomp DET) FROM ... WHERE n name DET = 0xabcdef 11 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SPLIT QUERY PLAN Example (TPC-H Q11) SELECT ps partkey, SUM (ps supplycost * ps availqty) AS VALUE FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 GROUP BY ps partkey HAVING SUM (ps supplycost * ps availqty) > ( SELECT SUM (ps supplycost * ps availqty) * 0.0001 FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 ) ORDER BY value DESC; LocalSort key:[$1] LocalProjection exprs: [$0, sum($1)] LocalGroupFilter filter: sum($1) > subquery0() LocalDecrypt pos: [$0, $1] LocalProjection exprs: [sum($0) * 0.0001] RemoteSQL SELECT ps parkey DET, GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef GROUP BY ps partkey DET LocalDecrypt pos: [$0] RemoteSQL SELECT GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef 11 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SPLIT QUERY PLAN Example (TPC-H Q11) SELECT ps partkey, SUM (ps supplycost * ps availqty) AS VALUE FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 GROUP BY ps partkey HAVING SUM (ps supplycost * ps availqty) > ( SELECT SUM (ps supplycost * ps availqty) * 0.0001 FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 ) ORDER BY value DESC; LocalSort key:[$1] LocalProjection exprs: [$0, sum($1)] LocalGroupFilter filter: sum($1) > subquery0() LocalDecrypt pos: [$0, $1] LocalProjection exprs: [sum($0) * 0.0001] RemoteSQL SELECT Outmost SELECT ps parkey DET, GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef GROUP BY ps partkey DET LocalDecrypt pos: [$0] RemoteSQL SELECT GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef 11 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SPLIT QUERY PLAN Example (TPC-H Q11) SELECT ps partkey, SUM (ps supplycost * ps availqty) AS VALUE FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 GROUP BY ps partkey HAVING SUM (ps supplycost * ps availqty) > ( SELECT SUM (ps supplycost * ps availqty) * 0.0001 FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 ) ORDER BY value DESC; LocalSort key:[$1] LocalProjection exprs: [$0, sum($1)] LocalGroupFilter filter: sum($1) > subquery0() LocalDecrypt pos: [$0, $1] LocalProjection exprs: [sum($0) * 0.0001] RemoteSQL SELECT ps parkey DET, GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef GROUP BY ps partkey DET LocalDecrypt pos: [$0] RemoteSQL SELECT Innermost SELECT GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef 11 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SPLIT QUERY PLAN Example (TPC-H Q11) SELECT ps partkey, SUM (ps supplycost * ps availqty) AS VALUE FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 GROUP BY ps partkey HAVING SUM (ps supplycost * ps availqty) > ( SELECT SUM (ps supplycost * ps availqty) * 0.0001 FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 ) ORDER BY value DESC; LocalSort key:[$1] LocalProjection exprs: [$0, sum($1)] LocalGroupFilter filter: sum($1) > subquery0() LocalDecrypt pos: [$0, $1] LocalProjection exprs: [sum($0) * 0.0001] RemoteSQL SELECT ps parkey DET, GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef GROUP BY ps partkey DET LocalDecrypt Decrypts the data at the client pos: [$0] RemoteSQL SELECT GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef 11 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SPLIT QUERY PLAN Example (TPC-H Q11) SELECT ps partkey, SUM (ps supplycost * ps availqty) AS VALUE FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 GROUP BY ps partkey HAVING SUM (ps supplycost * ps availqty) > ( SELECT SUM (ps supplycost * ps availqty) * 0.0001 FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 ) ORDER BY value DESC; LocalSort key:[$1] LocalProjection exprs: [$0, sum($1)] LocalGroupFilter filter: sum($1) > subquery0() LocalDecrypt pos: [$0, $1] LocalProjection exprs: Multiplication by constant [sum($0) * 0.0001] RemoteSQL SELECT ps parkey DET, GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef GROUP BY ps partkey DET LocalDecrypt pos: [$0] RemoteSQL SELECT GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef 11 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SPLIT QUERY PLAN Example (TPC-H Q11) SELECT ps partkey, SUM (ps supplycost * ps availqty) AS VALUE FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 GROUP BY ps partkey HAVING SUM (ps supplycost * ps availqty) > ( SELECT SUM (ps supplycost * ps availqty) * 0.0001 FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 ) ORDER BY value DESC; LocalSort key:[$1] LocalProjection exprs: [$0, sum($1)] LocalGroupFilter filter: Filter referring to the HAVING clause sum($1) > subquery0() LocalDecrypt pos: [$0, $1] LocalProjection exprs: [sum($0) * 0.0001] RemoteSQL SELECT ps parkey DET, GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef GROUP BY ps partkey DET LocalDecrypt pos: [$0] RemoteSQL SELECT GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef 11 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SPLIT QUERY PLAN Example (TPC-H Q11) SELECT ps partkey, SUM (ps supplycost * ps availqty) AS VALUE FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 GROUP BY ps partkey HAVING SUM (ps supplycost * ps availqty) > ( SELECT SUM (ps supplycost * ps availqty) * 0.0001 FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 ) ORDER BY value DESC; LocalSort key:[$1] LocalProjection Selection of ps partkey and of the summation of the pre- computed expression exprs: [$0, sum($1)] LocalGroupFilter filter: sum($1) > subquery0() LocalDecrypt pos: [$0, $1] LocalProjection exprs: [sum($0) * 0.0001] RemoteSQL SELECT ps parkey DET, GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef GROUP BY ps partkey DET LocalDecrypt pos: [$0] RemoteSQL SELECT GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef 11 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SPLIT QUERY PLAN Example (TPC-H Q11) SELECT ps partkey, SUM (ps supplycost * ps availqty) AS VALUE FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 GROUP BY ps partkey HAVING SUM (ps supplycost * ps availqty) > ( SELECT SUM (ps supplycost * ps availqty) * 0.0001 FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 ) ORDER BY value DESC; LocalSort Sorting referring to the ORDER BY clause key:[$1] LocalProjection exprs: [$0, sum($1)] LocalGroupFilter filter: sum($1) > subquery0() LocalDecrypt pos: [$0, $1] LocalProjection exprs: [sum($0) * 0.0001] RemoteSQL SELECT ps parkey DET, GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef GROUP BY ps partkey DET LocalDecrypt pos: [$0] RemoteSQL SELECT GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef 11 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion OUTLINE 1 Introduction 2 Split Execution 3 Optimization Techniques 4 Designer and Planner 5 Experiments 6 Conclusion 12 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion PER-ROW PRECOMPUTATION Prior computation of certain expressions Materialized using additional columns Decision made by the designer module Example SUM (ps supplycost * ps availqty) 13 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SPACE-EFFICIENT ENCRYPTION Minimize ciphertext expansion FFX mode of operation: n bits to n bits Pack multiple columns in a row Pack multiple rows into a single Paillier Packed ciphertexts are kept in separate files on the local file system 14 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion GROUPED HOMOMORPHIC ADDITION Packed aggregates computed with a single modular multiplication (a1||...||an) + (b1||...||bn) = (a1 + b1)||...||(an + bn) E(a1||...||an)×E(b1||...||bn) = E((a1+b1)||...||(an+bn)) 15 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion PRE-FILTERING Minimize data sent to the client Apply filtering to encrypted data Example SELECT l orderkey FROM lineitem GROUP BY l orderkey HAVING SUM(l quantity) > :1 16 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion PRE-FILTERING Minimize data sent to the client Apply filtering to encrypted data Example SELECT l orderkey FROM lineitem GROUP BY l orderkey HAVING SUM(l quantity) > :1 Incompatible schemes for SUM and comparison (>) 16 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion PRE-FILTERING Minimize data sent to the client Apply filtering to encrypted data Example SELECT l orderkey det, PAILLIER SUM(l quantity paillier) FROM lineitem GROUP BY l orderkey det HAVING MAX(l quantity ope) > encrypt ope(m) OR COUNT(*) > (:1 / m) 16 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion PRE-FILTERING Minimize data sent to the client Apply filtering to encrypted data Example SELECT l orderkey det, PAILLIER SUM(l quantity paillier) FROM lineitem GROUP BY l orderkey det HAVING MAX(l quantity ope) > encrypt ope(m Maximum value of the column l quantity ) OR COUNT(*) > (:1 / m) 16 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion OUTLINE 1 Introduction 2 Split Execution 3 Optimization Techniques 4 Designer and Planner 5 Experiments 6 Conclusion 17 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion INTUITION Optimizations are not always better Designer Best physical design – Encryption schemes – Precomputed expressions Planner Best query plan at runtime 18 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion DESIGNER: INPUT AND OUTPUT Input Representative query workload – Q0, Q1, ..., Qn – Chosen by the administrator Sample data Space constraint factor (optional) Output Physical design of the server – Set of encrypted columns to materialize 19 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion DESIGNER: ALGORITHM 1 Consider all operations in query Qi Check what expression would allow execution on the server EncSeti – Set of value, scheme pairs for Qi Example WHERE x = :1 generates a x, DET pair, referring to the x column ORDER BY x + y generates a x + y, OPE pair, referring to a precomputed x + y value 20 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion DESIGNER: ALGORITHM 2 The designer invokes the planner to determine the best way to execute Qi The planner computes PowSeti – Contains the subsets of EncSeti The planner constructs an execution plan for Qi for each element of the power set 3 The planner uses a cost model to estimate the fastest execution plan 20 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion COST MODEL Sum of three components Execution time on the server Data transfer time Post-processing on client (decryption) Constraints are considered using an Integer Linear Programming (ILP) formulation 21 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion OUTLINE 1 Introduction 2 Split Execution 3 Optimization Techniques 4 Designer and Planner 5 Experiments 6 Conclusion 22 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion IMPLEMENTATION 8.000 lines of Scala for designer/planner 4.000 lines of C++ for client library OpenSSL for cryptography Each table is mapped to an encrypted table Copies of columns (different cryptosystems) Do not support Views Pattern matching with two or more patterns Example LIKE ’%foo%bar%’ 23 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion ENVIRONMENT Client Four 4-core 2.2GHz Intel Xeon E5520 24GB RAM Server Four 4-core 2.4GHz Intel Xeon E5530 24GB RAM Multiple cores used for decryption Postgres 8.4 Memory limit: 8GB TPC-H scale 10 dataset 24 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion OVERALL EFFICIENCY Median overhead of 1.24× 25 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion TECHNIQUE PERFORMANCE Cumulative use of optimization techniques 26 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SPACE OVERHEAD 27 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SENSITIVITY TO DESIGNER INPUT Choosing representative queries Aggregation over expressions Expressions requiring precomputation Very selective WHERE on large relations 28 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SECURITY Plaintext is never revealed OPE is used infrequently Leaks order 29 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion OUTLINE 1 Introduction 2 Split Execution 3 Optimization Techniques 4 Designer and Planner 5 Experiments 6 Conclusion 30 / 31
Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion CONCLUSION Novel system: MONOMI Analytic queries over confidential data New optimization techniques Use of designer and planner Modest overheads Execution: 1.24× Space: 1.72× 31 / 31

More Related Content

PDF
Inverted Index Based Multi-Keyword Public-key Searchable Encryption with Stro...
Mateus S. H. Cruz
 
PDF
Privacy-Preserving Multi-Keyword Fuzzy Search over Encrypted Data in the Cloud
Mateus S. H. Cruz
 
PDF
Fuzzy Keyword Search over Encrypted Data in Cloud Computing
Mateus S. H. Cruz
 
PDF
Overview of CryptDB
Mateus S. H. Cruz
 
PDF
Privacy-Preserving Search for Chemical Compound Databases
Mateus S. H. Cruz
 
PDF
DBMask: Fine-Grained Access Control on Encrypted Relational Databases
Mateus S. H. Cruz
 
PDF
Fast, Private and Verifiable: Server-aided Approximate Similarity Computation...
Mateus S. H. Cruz
 
PDF
ENKI: Access Control for Encrypted Query Processing
Mateus S. H. Cruz
 
Inverted Index Based Multi-Keyword Public-key Searchable Encryption with Stro...
Mateus S. H. Cruz
 
Privacy-Preserving Multi-Keyword Fuzzy Search over Encrypted Data in the Cloud
Mateus S. H. Cruz
 
Fuzzy Keyword Search over Encrypted Data in Cloud Computing
Mateus S. H. Cruz
 
Overview of CryptDB
Mateus S. H. Cruz
 
Privacy-Preserving Search for Chemical Compound Databases
Mateus S. H. Cruz
 
DBMask: Fine-Grained Access Control on Encrypted Relational Databases
Mateus S. H. Cruz
 
Fast, Private and Verifiable: Server-aided Approximate Similarity Computation...
Mateus S. H. Cruz
 
ENKI: Access Control for Encrypted Query Processing
Mateus S. H. Cruz
 

What's hot (19)

PPTX
Homomorphic Encryption
Göktuğ Serez
 
PDF
A survey on Fully Homomorphic Encryption
iosrjce
 
PPTX
Homomorphic encryption and Private Machine Learning Classification
Mohammed Ashour
 
PPTX
同態加密
峻豪 呂
 
PDF
Ntewrok secuirty cs7
Infinity Tech Solutions
 
PPTX
40+ examples of user defined methods in java with explanation
Harish Gyanani
 
PDF
Template Protection with Homomorphic Encryption
Tolun Tosun
 
PPTX
Partial Homomorphic Encryption
securityxploded
 
PDF
Lattice Cryptography
Priyanka Aash
 
PPT
Lecture 12: Classes and Files
Dr. Md. Shohel Sayeed
 
PPTX
Implementation of RSA Algorithm for Speech Data Encryption and Decryption
Md. Ariful Hoque
 
PDF
Compiler Construction | Lecture 2 | Declarative Syntax Definition
Eelco Visser
 
PPT
Computer Programming- Lecture 6
Dr. Md. Shohel Sayeed
 
PDF
ECSE 221 - Introduction to Computer Engineering - Tutorial 1 - Muhammad Ehtas...
Muhammad Ulhaque
 
PPT
Threshold and Proactive Pseudo-Random Permutations
Aleksandr Yampolskiy
 
PPTX
RSA-W7(rsa) d1-d2
Fahad Layth
 
PPTX
Algorithm analysis and design
Megha V
 
PPT
Computer Programming- Lecture 4
Dr. Md. Shohel Sayeed
 
PPT
Computer Programming- Lecture 9
Dr. Md. Shohel Sayeed
 
Homomorphic Encryption
Göktuğ Serez
 
A survey on Fully Homomorphic Encryption
iosrjce
 
Homomorphic encryption and Private Machine Learning Classification
Mohammed Ashour
 
同態加密
峻豪 呂
 
Ntewrok secuirty cs7
Infinity Tech Solutions
 
40+ examples of user defined methods in java with explanation
Harish Gyanani
 
Template Protection with Homomorphic Encryption
Tolun Tosun
 
Partial Homomorphic Encryption
securityxploded
 
Lattice Cryptography
Priyanka Aash
 
Lecture 12: Classes and Files
Dr. Md. Shohel Sayeed
 
Implementation of RSA Algorithm for Speech Data Encryption and Decryption
Md. Ariful Hoque
 
Compiler Construction | Lecture 2 | Declarative Syntax Definition
Eelco Visser
 
Computer Programming- Lecture 6
Dr. Md. Shohel Sayeed
 
ECSE 221 - Introduction to Computer Engineering - Tutorial 1 - Muhammad Ehtas...
Muhammad Ulhaque
 
Threshold and Proactive Pseudo-Random Permutations
Aleksandr Yampolskiy
 
RSA-W7(rsa) d1-d2
Fahad Layth
 
Algorithm analysis and design
Megha V
 
Computer Programming- Lecture 4
Dr. Md. Shohel Sayeed
 
Computer Programming- Lecture 9
Dr. Md. Shohel Sayeed
 
Ad

Viewers also liked (18)

PDF
Realizing Fine-Grained and Flexible Access Control to Outsourced Data with At...
Mateus S. H. Cruz
 
PPTX
モノのセンサ化による行動センシング
Yutaka Arakawa
 
PDF
Helib
文杰 陆
 
PPTX
Homomorphic Encryption
Vipin Tejwani
 
PPTX
Homomorphic encryption in cloud computing final
Santanu Das Saan
 
PDF
Introduction to Homomorphic Encryption
Christoph Matthies
 
PPTX
Take home exam
Paul Enrique Casas
 
PPT
антиреклама йогурта
WhdPC
 
PDF
Programmazione lineare - problemi con soluzioni
Cristina Scanu
 
DOCX
Pharaoh's snake at the chemist lab.
iesMola
 
PPTX
Presentation4
katsmith1988
 
PPT
Use iPhone Backup When iTunes Fails To Produce Backup
iPhone Backup
 
PDF
Hutan hujan prestashop study case
Mahda Gustarini
 
PDF
Peskovnik a5 vrtec web
peskovnik
 
PPTX
Materi dasar-
Mamedov Zaki
 
PPT
Alicante
iesMola
 
ODP
Esercizio 4
AnnalisaM91
 
PPTX
Angl
tatevtatev
 
Realizing Fine-Grained and Flexible Access Control to Outsourced Data with At...
Mateus S. H. Cruz
 
モノのセンサ化による行動センシング
Yutaka Arakawa
 
Helib
文杰 陆
 
Homomorphic Encryption
Vipin Tejwani
 
Homomorphic encryption in cloud computing final
Santanu Das Saan
 
Introduction to Homomorphic Encryption
Christoph Matthies
 
Take home exam
Paul Enrique Casas
 
антиреклама йогурта
WhdPC
 
Programmazione lineare - problemi con soluzioni
Cristina Scanu
 
Pharaoh's snake at the chemist lab.
iesMola
 
Presentation4
katsmith1988
 
Use iPhone Backup When iTunes Fails To Produce Backup
iPhone Backup
 
Hutan hujan prestashop study case
Mahda Gustarini
 
Peskovnik a5 vrtec web
peskovnik
 
Materi dasar-
Mamedov Zaki
 
Alicante
iesMola
 
Esercizio 4
AnnalisaM91
 
Angl
tatevtatev
 
Ad

Similar to Overview of MONOMI (20)

PDF
Workshop "Can my .NET application use less CPU / RAM?", Yevhen Tatarynov
Fwdays
 
ODP
Data Analysis in Python
Richard Herrell
 
PDF
GraphConnect Europe 2016 - Tuning Your Cypher - Petra Selmer, Mark Needham
Neo4j
 
PDF
OPTEX Mathematical Modeling and Management System
Jesus Velasquez
 
PPT
TopicMapReduceComet log analysis by using splunk
akashkale0756
 
PDF
Stack Hybridization: A Mechanism for Bridging Two Compilation Strategies in a...
Yusuke Izawa
 
PPTX
Introduction to Reactive Extensions (Rx)
Tamir Dresher
 
PDF
OPTEX - Mathematical Modeling and Management System
Jesus Velasquez
 
PDF
PySpark in practice slides
Dat Tran
 
PPTX
Flink Batch Processing and Iterations
Sameer Wadkar
 
PDF
Yevhen Tatarynov "From POC to High-Performance .NET applications"
LogeekNightUkraine
 
PDF
ClickHouse Query Performance Tips and Tricks, by Robert Hodges, Altinity CEO
Altinity Ltd
 
PDF
What's new in Python 3.11
Henry Schreiner
 
PPTX
Subroutines igcses computer science powerpoint
kireraruby
 
PPTX
4.1-Pig.pptx
akhileshyadav718837
 
PDF
The Ring programming language version 1.6 book - Part 184 of 189
Mahmoud Samir Fayed
 
PDF
Introduction to Hadoop
Apache Apex
 
PDF
Hadoop-Introduction
Sandeep Deshmukh
 
PDF
OpenStack for Centos
Chandan Kumar
 
PPT
9-Query Processing-05-06-2023.PPT
venkatapranaykumarGa
 
Workshop "Can my .NET application use less CPU / RAM?", Yevhen Tatarynov
Fwdays
 
Data Analysis in Python
Richard Herrell
 
GraphConnect Europe 2016 - Tuning Your Cypher - Petra Selmer, Mark Needham
Neo4j
 
OPTEX Mathematical Modeling and Management System
Jesus Velasquez
 
TopicMapReduceComet log analysis by using splunk
akashkale0756
 
Stack Hybridization: A Mechanism for Bridging Two Compilation Strategies in a...
Yusuke Izawa
 
Introduction to Reactive Extensions (Rx)
Tamir Dresher
 
OPTEX - Mathematical Modeling and Management System
Jesus Velasquez
 
PySpark in practice slides
Dat Tran
 
Flink Batch Processing and Iterations
Sameer Wadkar
 
Yevhen Tatarynov "From POC to High-Performance .NET applications"
LogeekNightUkraine
 
ClickHouse Query Performance Tips and Tricks, by Robert Hodges, Altinity CEO
Altinity Ltd
 
What's new in Python 3.11
Henry Schreiner
 
Subroutines igcses computer science powerpoint
kireraruby
 
4.1-Pig.pptx
akhileshyadav718837
 
The Ring programming language version 1.6 book - Part 184 of 189
Mahmoud Samir Fayed
 
Introduction to Hadoop
Apache Apex
 
Hadoop-Introduction
Sandeep Deshmukh
 
OpenStack for Centos
Chandan Kumar
 
9-Query Processing-05-06-2023.PPT
venkatapranaykumarGa
 

Recently uploaded (20)

PDF
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
PPTX
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
PDF
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
PPTX
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
PDF
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
PDF
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
PDF
Optimiser vos workloads AI/ML sur Amazon EC2 et AWS Graviton
Julien SIMON
 
PDF
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
PDF
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
PDF
Encapsulation theory and applications.pdf
gurumoop
 
PDF
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
PDF
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
PDF
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
PPTX
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
PPTX
ACSFv1EN-58255 AWS Academy Cloud Security Foundations.pptx
23bcla24
 
PDF
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
Optimiser vos workloads AI/ML sur Amazon EC2 et AWS Graviton
Julien SIMON
 
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
Encapsulation theory and applications.pdf
gurumoop
 
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
ACSFv1EN-58255 AWS Academy Cloud Security Foundations.pptx
23bcla24
 
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 

Overview of MONOMI

  • 1. Processing Analytical Queries over Encrypted Data Stephen Tu, M. Frank Kaashoek, Samuel Madden, and Nickolai Zeldovich 39th International Conference on Very Large Data Bases Riva del Garda, Trento, Italy, August 2013 SWIM Seminar May 19th, 2015 Mateus Cruz
  • 2. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion OUTLINE 1 Introduction 2 Split Execution 3 Optimization Techniques 4 Designer and Planner 5 Experiments 6 Conclusion 2 / 31
  • 3. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion OUTLINE 1 Introduction 2 Split Execution 3 Optimization Techniques 4 Designer and Planner 5 Experiments 6 Conclusion 3 / 31
  • 4. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion OVERVIEW System called MONOMI Extension of CryptDB Analytical queries over encrypted data Data protected against server compromises Modest overhead Slowdown of 1.03 to 2.33× 4 / 31
  • 5. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion MAIN IDEAS Split client/server execution Optimization techniques Per-row precomputation Space-efficient encryption Grouped homomorphic addition Pre-filtering Designer Physical data layout Planner Efficient execution plan for queries 5 / 31
  • 6. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion USED ENCRYPTION SCHEMES 6 / 31
  • 7. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion ARCHITECTURE 7 / 31
  • 8. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion OUTLINE 1 Introduction 2 Split Execution 3 Optimization Techniques 4 Designer and Planner 5 Experiments 6 Conclusion 8 / 31
  • 9. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion INTUITION The server cannot execute all queries Limitations of cryptosystems Cannot transfer all data to the client Large amount of data Divide execution Execute as much as possible on server Transfer data to the client when it is not possible to execute on the server 9 / 31
  • 10. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion LIMITATIONS OF SERVER EXECUTION Example (TPC-H Q11) SELECT ps partkey, SUM (ps supplycost * ps availqty) AS value FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 GROUP BY ps partkey HAVING SUM (ps supplycost * ps availqty) > ( SELECT SUM (ps supplycost * ps availqty) * 0.0001 FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 ) ORDER BY value DESC; 10 / 31
  • 11. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion LIMITATIONS OF SERVER EXECUTION Example (TPC-H Q11) SELECT ps partkey, SUM (ps supplycost * ps availqty) AS value FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 GROUP BY ps partkey HAVING SUM Addition and comparison in- volve incompatible encryption schemes (ps supplycost * ps availqty) > ( SELECT SUM (ps supplycost * ps availqty) * 0.0001 FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 ) ORDER BY value DESC; 10 / 31
  • 12. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion LIMITATIONS OF SERVER EXECUTION Example (TPC-H Q11) SELECT ps partkey, SUM (ps supplycost * ps availqty) AS value FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 GROUP BY ps partkey HAVING SUM (ps supplycost * ps availqty) > ( SELECT SUM (ps supplycost * ps availqty) No efficient encryption scheme allows multiplica- tion of two encrypted values * 0.0001 FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 ) ORDER BY value DESC; 10 / 31
  • 13. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SPLIT QUERY PLAN Example (TPC-H Q11) SELECT ps partkey, SUM (ps supplycost * ps availqty) AS VALUE FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 GROUP BY ps partkey HAVING SUM (ps supplycost * ps availqty) > ( SELECT SUM (ps supplycost * ps availqty) * 0.0001 FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 ) ORDER BY value DESC; LocalSort key:[$1] LocalProjection exprs: [$0, sum($1)] LocalGroupFilter filter: sum($1) > subquery0() LocalDecrypt pos: [$0, $1] LocalProjection exprs: [sum($0) * 0.0001] RemoteSQL SELECT ps parkey DET, GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef GROUP BY ps partkey DET LocalDecrypt pos: [$0] RemoteSQL SELECT GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef 11 / 31
  • 14. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SPLIT QUERY PLAN Example (TPC-H Q11) SELECT ps partkey, SUM (ps supplycost * ps availqty) AS VALUE FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 GROUP BY ps partkey HAVING SUM (ps supplycost * ps availqty) > ( SELECT SUM (ps supplycost * ps availqty) * 0.0001 FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 ) ORDER BY value DESC; LocalSort key:[$1] LocalProjection exprs: [$0, sum($1)] LocalGroupFilter filter: sum($1) > subquery0() LocalDecrypt pos: [$0, $1] LocalProjection exprs: [sum($0) * 0.0001] RemoteSQL SELECT ps parkey DET, GROUP(precomp DET Precomputed multiplication ) FROM ... WHERE n name DET = 0xabcdef GROUP BY ps partkey DET LocalDecrypt pos: [$0] RemoteSQL SELECT GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef 11 / 31
  • 15. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SPLIT QUERY PLAN Example (TPC-H Q11) SELECT ps partkey, SUM (ps supplycost * ps availqty) AS VALUE FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 GROUP BY ps partkey HAVING SUM (ps supplycost * ps availqty) > ( SELECT SUM (ps supplycost * ps availqty) * 0.0001 FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 ) ORDER BY value DESC; LocalSort key:[$1] LocalProjection exprs: [$0, sum($1)] LocalGroupFilter filter: sum($1) > subquery0() LocalDecrypt pos: [$0, $1 Reference to the columns of the child operator ] LocalProjection exprs: [sum($0) * 0.0001] RemoteSQL SELECT ps parkey DET, GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef GROUP BY ps partkey DET LocalDecrypt pos: [$0] RemoteSQL SELECT GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef 11 / 31
  • 16. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SPLIT QUERY PLAN Example (TPC-H Q11) SELECT ps partkey, SUM (ps supplycost * ps availqty) AS VALUE FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 GROUP BY ps partkey HAVING SUM (ps supplycost * ps availqty) > ( SELECT SUM (ps supplycost * ps availqty) * 0.0001 FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 ) ORDER BY value DESC; LocalSort key:[$1] LocalProjection exprs: [$0, sum($1)] LocalGroupFilter filter: sum($1) > subquery0() LocalDecrypt pos: [$0, $1] LocalProjection exprs: [sum($0) * 0.0001] RemoteSQL SELECT ps parkey DET, GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef Deterministic encryption of the value :1 GROUP BY ps partkey DET LocalDecrypt pos: [$0] RemoteSQL SELECT GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef 11 / 31
  • 17. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SPLIT QUERY PLAN Example (TPC-H Q11) SELECT ps partkey, SUM (ps supplycost * ps availqty) AS VALUE FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 GROUP BY ps partkey HAVING SUM (ps supplycost * ps availqty) > ( SELECT SUM (ps supplycost * ps availqty) * 0.0001 FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 ) ORDER BY value DESC; LocalSort key:[$1] LocalProjection exprs: [$0, sum($1)] LocalGroupFilter filter: sum($1) > subquery0() LocalDecrypt pos: [$0, $1] LocalProjection exprs: [sum($0) * 0.0001] RemoteSQL SELECT ps parkey DET, GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef GROUP BY ps partkey DET LocalDecrypt pos: [$0] RemoteSQL SELECT GROUP Concatenation of all values from each GROUP BY group (precomp DET) FROM ... WHERE n name DET = 0xabcdef 11 / 31
  • 18. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SPLIT QUERY PLAN Example (TPC-H Q11) SELECT ps partkey, SUM (ps supplycost * ps availqty) AS VALUE FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 GROUP BY ps partkey HAVING SUM (ps supplycost * ps availqty) > ( SELECT SUM (ps supplycost * ps availqty) * 0.0001 FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 ) ORDER BY value DESC; LocalSort key:[$1] LocalProjection exprs: [$0, sum($1)] LocalGroupFilter filter: sum($1) > subquery0() LocalDecrypt pos: [$0, $1] LocalProjection exprs: [sum($0) * 0.0001] RemoteSQL SELECT ps parkey DET, GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef GROUP BY ps partkey DET LocalDecrypt pos: [$0] RemoteSQL SELECT GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef 11 / 31
  • 19. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SPLIT QUERY PLAN Example (TPC-H Q11) SELECT ps partkey, SUM (ps supplycost * ps availqty) AS VALUE FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 GROUP BY ps partkey HAVING SUM (ps supplycost * ps availqty) > ( SELECT SUM (ps supplycost * ps availqty) * 0.0001 FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 ) ORDER BY value DESC; LocalSort key:[$1] LocalProjection exprs: [$0, sum($1)] LocalGroupFilter filter: sum($1) > subquery0() LocalDecrypt pos: [$0, $1] LocalProjection exprs: [sum($0) * 0.0001] RemoteSQL SELECT Outmost SELECT ps parkey DET, GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef GROUP BY ps partkey DET LocalDecrypt pos: [$0] RemoteSQL SELECT GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef 11 / 31
  • 20. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SPLIT QUERY PLAN Example (TPC-H Q11) SELECT ps partkey, SUM (ps supplycost * ps availqty) AS VALUE FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 GROUP BY ps partkey HAVING SUM (ps supplycost * ps availqty) > ( SELECT SUM (ps supplycost * ps availqty) * 0.0001 FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 ) ORDER BY value DESC; LocalSort key:[$1] LocalProjection exprs: [$0, sum($1)] LocalGroupFilter filter: sum($1) > subquery0() LocalDecrypt pos: [$0, $1] LocalProjection exprs: [sum($0) * 0.0001] RemoteSQL SELECT ps parkey DET, GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef GROUP BY ps partkey DET LocalDecrypt pos: [$0] RemoteSQL SELECT Innermost SELECT GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef 11 / 31
  • 21. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SPLIT QUERY PLAN Example (TPC-H Q11) SELECT ps partkey, SUM (ps supplycost * ps availqty) AS VALUE FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 GROUP BY ps partkey HAVING SUM (ps supplycost * ps availqty) > ( SELECT SUM (ps supplycost * ps availqty) * 0.0001 FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 ) ORDER BY value DESC; LocalSort key:[$1] LocalProjection exprs: [$0, sum($1)] LocalGroupFilter filter: sum($1) > subquery0() LocalDecrypt pos: [$0, $1] LocalProjection exprs: [sum($0) * 0.0001] RemoteSQL SELECT ps parkey DET, GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef GROUP BY ps partkey DET LocalDecrypt Decrypts the data at the client pos: [$0] RemoteSQL SELECT GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef 11 / 31
  • 22. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SPLIT QUERY PLAN Example (TPC-H Q11) SELECT ps partkey, SUM (ps supplycost * ps availqty) AS VALUE FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 GROUP BY ps partkey HAVING SUM (ps supplycost * ps availqty) > ( SELECT SUM (ps supplycost * ps availqty) * 0.0001 FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 ) ORDER BY value DESC; LocalSort key:[$1] LocalProjection exprs: [$0, sum($1)] LocalGroupFilter filter: sum($1) > subquery0() LocalDecrypt pos: [$0, $1] LocalProjection exprs: Multiplication by constant [sum($0) * 0.0001] RemoteSQL SELECT ps parkey DET, GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef GROUP BY ps partkey DET LocalDecrypt pos: [$0] RemoteSQL SELECT GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef 11 / 31
  • 23. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SPLIT QUERY PLAN Example (TPC-H Q11) SELECT ps partkey, SUM (ps supplycost * ps availqty) AS VALUE FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 GROUP BY ps partkey HAVING SUM (ps supplycost * ps availqty) > ( SELECT SUM (ps supplycost * ps availqty) * 0.0001 FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 ) ORDER BY value DESC; LocalSort key:[$1] LocalProjection exprs: [$0, sum($1)] LocalGroupFilter filter: Filter referring to the HAVING clause sum($1) > subquery0() LocalDecrypt pos: [$0, $1] LocalProjection exprs: [sum($0) * 0.0001] RemoteSQL SELECT ps parkey DET, GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef GROUP BY ps partkey DET LocalDecrypt pos: [$0] RemoteSQL SELECT GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef 11 / 31
  • 24. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SPLIT QUERY PLAN Example (TPC-H Q11) SELECT ps partkey, SUM (ps supplycost * ps availqty) AS VALUE FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 GROUP BY ps partkey HAVING SUM (ps supplycost * ps availqty) > ( SELECT SUM (ps supplycost * ps availqty) * 0.0001 FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 ) ORDER BY value DESC; LocalSort key:[$1] LocalProjection Selection of ps partkey and of the summation of the pre- computed expression exprs: [$0, sum($1)] LocalGroupFilter filter: sum($1) > subquery0() LocalDecrypt pos: [$0, $1] LocalProjection exprs: [sum($0) * 0.0001] RemoteSQL SELECT ps parkey DET, GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef GROUP BY ps partkey DET LocalDecrypt pos: [$0] RemoteSQL SELECT GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef 11 / 31
  • 25. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SPLIT QUERY PLAN Example (TPC-H Q11) SELECT ps partkey, SUM (ps supplycost * ps availqty) AS VALUE FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 GROUP BY ps partkey HAVING SUM (ps supplycost * ps availqty) > ( SELECT SUM (ps supplycost * ps availqty) * 0.0001 FROM partsupp JOIN supplier JOIN nation WHERE n name = :1 ) ORDER BY value DESC; LocalSort Sorting referring to the ORDER BY clause key:[$1] LocalProjection exprs: [$0, sum($1)] LocalGroupFilter filter: sum($1) > subquery0() LocalDecrypt pos: [$0, $1] LocalProjection exprs: [sum($0) * 0.0001] RemoteSQL SELECT ps parkey DET, GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef GROUP BY ps partkey DET LocalDecrypt pos: [$0] RemoteSQL SELECT GROUP(precomp DET) FROM ... WHERE n name DET = 0xabcdef 11 / 31
  • 26. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion OUTLINE 1 Introduction 2 Split Execution 3 Optimization Techniques 4 Designer and Planner 5 Experiments 6 Conclusion 12 / 31
  • 27. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion PER-ROW PRECOMPUTATION Prior computation of certain expressions Materialized using additional columns Decision made by the designer module Example SUM (ps supplycost * ps availqty) 13 / 31
  • 28. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SPACE-EFFICIENT ENCRYPTION Minimize ciphertext expansion FFX mode of operation: n bits to n bits Pack multiple columns in a row Pack multiple rows into a single Paillier Packed ciphertexts are kept in separate files on the local file system 14 / 31
  • 29. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion GROUPED HOMOMORPHIC ADDITION Packed aggregates computed with a single modular multiplication (a1||...||an) + (b1||...||bn) = (a1 + b1)||...||(an + bn) E(a1||...||an)×E(b1||...||bn) = E((a1+b1)||...||(an+bn)) 15 / 31
  • 30. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion PRE-FILTERING Minimize data sent to the client Apply filtering to encrypted data Example SELECT l orderkey FROM lineitem GROUP BY l orderkey HAVING SUM(l quantity) > :1 16 / 31
  • 31. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion PRE-FILTERING Minimize data sent to the client Apply filtering to encrypted data Example SELECT l orderkey FROM lineitem GROUP BY l orderkey HAVING SUM(l quantity) > :1 Incompatible schemes for SUM and comparison (>) 16 / 31
  • 32. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion PRE-FILTERING Minimize data sent to the client Apply filtering to encrypted data Example SELECT l orderkey det, PAILLIER SUM(l quantity paillier) FROM lineitem GROUP BY l orderkey det HAVING MAX(l quantity ope) > encrypt ope(m) OR COUNT(*) > (:1 / m) 16 / 31
  • 33. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion PRE-FILTERING Minimize data sent to the client Apply filtering to encrypted data Example SELECT l orderkey det, PAILLIER SUM(l quantity paillier) FROM lineitem GROUP BY l orderkey det HAVING MAX(l quantity ope) > encrypt ope(m Maximum value of the column l quantity ) OR COUNT(*) > (:1 / m) 16 / 31
  • 34. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion OUTLINE 1 Introduction 2 Split Execution 3 Optimization Techniques 4 Designer and Planner 5 Experiments 6 Conclusion 17 / 31
  • 35. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion INTUITION Optimizations are not always better Designer Best physical design – Encryption schemes – Precomputed expressions Planner Best query plan at runtime 18 / 31
  • 36. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion DESIGNER: INPUT AND OUTPUT Input Representative query workload – Q0, Q1, ..., Qn – Chosen by the administrator Sample data Space constraint factor (optional) Output Physical design of the server – Set of encrypted columns to materialize 19 / 31
  • 37. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion DESIGNER: ALGORITHM 1 Consider all operations in query Qi Check what expression would allow execution on the server EncSeti – Set of value, scheme pairs for Qi Example WHERE x = :1 generates a x, DET pair, referring to the x column ORDER BY x + y generates a x + y, OPE pair, referring to a precomputed x + y value 20 / 31
  • 38. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion DESIGNER: ALGORITHM 2 The designer invokes the planner to determine the best way to execute Qi The planner computes PowSeti – Contains the subsets of EncSeti The planner constructs an execution plan for Qi for each element of the power set 3 The planner uses a cost model to estimate the fastest execution plan 20 / 31
  • 39. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion COST MODEL Sum of three components Execution time on the server Data transfer time Post-processing on client (decryption) Constraints are considered using an Integer Linear Programming (ILP) formulation 21 / 31
  • 40. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion OUTLINE 1 Introduction 2 Split Execution 3 Optimization Techniques 4 Designer and Planner 5 Experiments 6 Conclusion 22 / 31
  • 41. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion IMPLEMENTATION 8.000 lines of Scala for designer/planner 4.000 lines of C++ for client library OpenSSL for cryptography Each table is mapped to an encrypted table Copies of columns (different cryptosystems) Do not support Views Pattern matching with two or more patterns Example LIKE ’%foo%bar%’ 23 / 31
  • 42. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion ENVIRONMENT Client Four 4-core 2.2GHz Intel Xeon E5520 24GB RAM Server Four 4-core 2.4GHz Intel Xeon E5530 24GB RAM Multiple cores used for decryption Postgres 8.4 Memory limit: 8GB TPC-H scale 10 dataset 24 / 31
  • 43. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion OVERALL EFFICIENCY Median overhead of 1.24× 25 / 31
  • 44. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion TECHNIQUE PERFORMANCE Cumulative use of optimization techniques 26 / 31
  • 45. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SPACE OVERHEAD 27 / 31
  • 46. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SENSITIVITY TO DESIGNER INPUT Choosing representative queries Aggregation over expressions Expressions requiring precomputation Very selective WHERE on large relations 28 / 31
  • 47. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion SECURITY Plaintext is never revealed OPE is used infrequently Leaks order 29 / 31
  • 48. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion OUTLINE 1 Introduction 2 Split Execution 3 Optimization Techniques 4 Designer and Planner 5 Experiments 6 Conclusion 30 / 31
  • 49. Introduction Split Execution Optimization Techniques Designer and Planner Experiments Conclusion CONCLUSION Novel system: MONOMI Analytic queries over confidential data New optimization techniques Use of designer and planner Modest overheads Execution: 1.24× Space: 1.72× 31 / 31