References & Citations
Computer Science > Cryptography and Security
Title: CoVault: A Secure Analytics Platform
(Submitted on 7 Aug 2022 (this version), latest version 22 Jan 2024 (v3))
Abstract: In a secure analytics platform, data sources consent to the exclusive use of their data for a pre-defined set of analytics queries performed by a specific group of analysts, and for a limited period. If the platform is secure under a sufficiently strong threat model, it can provide the missing link to enabling powerful analytics of sensitive personal data, by alleviating data subjects' concerns about leakage and misuse of data. For instance, many types of powerful analytics that benefit public health, mobility, infrastructure, finance, or sustainable energy can be made differentially private, thus alleviating concerns about privacy. However, no platform currently exists that is sufficiently secure to alleviate concerns about data leakage and misuse; as a result, many types of analytics that would be in the interest of data subjects and the public are not done. CoVault uses a new multi-party implementation of functional encryption (FE) for secure analytics, which relies on a unique combination of secret sharing, multi-party secure computation (MPC), and different trusted execution environments (TEEs). CoVault is secure under a very strong threat model that tolerates compromise and side-channel attacks on any one of a small set of parties and their TEEs. Despite the cost of MPC, we show that CoVault scales to very large data sizes using map-reduce based query parallelization. For example, we show that CoVault can perform queries relevant to epidemic analytics at scale.
Submission history
From: Roberta De Viti [view email][v1] Sun, 7 Aug 2022 18:17:10 GMT (1211kb,D)
[v2] Sat, 14 Jan 2023 16:22:48 GMT (1565kb,D)
[v3] Mon, 22 Jan 2024 18:12:34 GMT (671kb,D)
Link back to: arXiv, form interface, contact.