面向片外不可信内存的一种实用ORAM方案

信息安全研究 ›› 2023, Vol. 9 ›› Issue (3): 280-.

面向片外不可信内存的一种实用ORAM方案

濮传威;张功萱;周俊龙;付安民;

(南京理工大学计算机科学与工程学院南京210094)

出版日期:2023-03-04 发布日期:2023-03-03
通讯作者: 濮传威硕士研究生.主要研究方向为ORAM、可信计算. 120106010820@njust.edu.cn
作者简介:濮传威硕士研究生.主要研究方向为ORAM、可信计算. 120106010820@njust.edu.cn 张功萱博士，教授.主要研究方向为嵌入式与多核体系结构、可信计算与计算机系统安全、网络与Web服务安全. gongxuan@njust.edu.cn 周俊龙博士，副教授.主要研究方向为边缘(嵌入式设备)智能计算、端边云计算、服务计算. jlzhou@njust.edu.cn 付安民博士，教授.主要研究方向为人工智能安全、数据安全与隐私保护、工业互联网安全、网络攻防. fuam@njust.edu.cn

A Practical ORAM Scheme for Untrusted Offchip Memory

Online:2023-03-04 Published:2023-03-03

摘要/Abstract

摘要： 目前，大多数计算机系统都面临信息泄露的问题. 在物理层面上，处理器芯片和片外不可信内存之间的总线是造成信息泄露的一个安全隐患，攻击者可以窥探内存总线上的数据以及地址，从而获得敏感信息. 单独使用数据加密已经不足以保证系统的安全，因为每次内存访问仍然需要明文内存地址. 攻击者仍然可以通过总线窥探每次内存访问的地址从而获得隐式信息. 解决此问题的可能方法是使用不经意随机访问机(oblivious random access machine, ORAM)方案隐藏访问模式. 但是现有的ORAM方案对于每次真实内存访问都涉及大量虚拟访问，明显增加了性能开销. 提出了一种分组ORAM方案，该方案将真实内存访问隐藏在指定数量的一小簇虚拟访问中. 其性能开销不会随着内存容量增加而增加，且该方案采用了参数化的设计，针对不同平台对安全性以及性能的要求，可以进行灵活配置. 通过在Xilinx xc7vx330t FPGA平台上的实验表明，对于1次内存访问，与最先进的Tiny ORAM方案相比，分组ORAM可以显著减少性能开销.

关键词: 不经意随机访问机, 低性能开销, 片外不可信内存, 安全处理器, 隐私

Abstract: At present, most computer systems are facing the problem of information leakage. On the physical level, the bus between the processor chip and the offchip untrusted memory is a security risk that causes information leakage. Adversaries can snoop the data and address on the memory bus to obtain sensitive information. Data encryption alone is not enough to ensure the security of the system, because each memory access still needs a plaintext memory address. Adversaries can still snoop the address of each memory access through the bus to obtain implicit information. The possible way to solve this problem is to use the oblivious random access machine (ORAM) scheme to hide the access mode. However, the existing ORAM scheme involves a large number of virtual accesses for each real memory access, which significantly increases the performance overhead. This paper proposes a Group ORAM scheme, which hides the real memory access in a specified number of small clusters of virtual accesses. Its performance overhead will not increase with the increase of memory size, and the scheme adopts a parametric design, which can be flexibly configured according to the requirements of different platforms for security and performance. Experiments on Xilinx xc7vx330t FPGA platform show that Group ORAM can significantly reduce the performance overhead compared with the most advanced. Tiny ORAM scheme for one memory access.

Key words: ORAM, low performance overhead, untrusted offchip memory, secure processor, privacy

中图分类号:

中图法分类号TP309

濮传威, 张功萱, 周俊龙, 付安民, . 面向片外不可信内存的一种实用ORAM方案[J]. 信息安全研究, 2023, 9(3): 280-.

参考文献

参考文献
［1］Lie D J F, Thekkath C A, Mitchell M, et al. Architectural support for copy and tamper resistant software［J］. ACM SIGARCH Computer Architecture News, 2000, 28(5): 168177［2］Suh G E, Clarke D, Gassend B, et al. AEGIS: Architecture for tamperevident and tamperresistant processing［C］ Proc of the 25th ACM Int Conf on Supercomputing Anniversary Volume. New York: ACM, 2003: 357368［3］McKeen F, Alexandrovich I, Berenzon A, et al. Innovative Instructions and Software Model for Isolated Execution［M］. New York: ACM, 2013［4］Hussain S, Guo H. A low performanceoverhead ORAM design for processor system with untrusted offchip memory［C］ Proc of the 2nd IEEE Int Conf on Automation, Electronics and Electrical Engineering. Piscataway, NJ: IEEE, 2019: 2224［5］Goldreich O. Towards a theory of software protection and simulation by oblivious RAMs［C］ Proc of the 19th Annual ACM Symp on Theory of Computing. New York: ACM, 1987: 182194［6］Goldreich O, Ostrovsky R. Software protection and simulation on oblivious RAMs［J］. Journal of the ACM, 1996, 43(3): 431473［7］Maas M, Love E, Stefanov E, et al. Phantom: Practical oblivious computation in a secure processor［C］ Proc of the 2013 ACM SIGSAC Conf on Computer & Communications Security. New York: ACM, 2013: 311324［8］Fletcher C W, Ren L, Kwon A, et al. A lowlatency, lowarea hardware oblivious RAM controller［C］ Proc of the 23rd IEEE Annual Int Symp on FieldProgrammable Custom Computing Machines. Piscataway, NJ: IEEE, 2015: 215222［9］Shafiee A, Balasubramonian R, Tiwari M, et al. Secure DIMM: Moving ORAM primitives closer to memory［C］ Proc of IEEE Int Symp on High Performance Computer Architecture. Los Alamitos, CA: IEEE Computer Society, 2018: 428440［10］Wang Rujia, Zhang Youtao, Yang Jun. DORAM: PathORAM delegation for low execution interference on cloud servers with untrusted memory［C］ Proc of IEEE Int Symp on High Performance Computer Architecture. Los Alamitos, CA: IEEE Computer Society, 2018: 416427［11］Batcher K E. Sorting networks and their applications［C］ Proc of the Spring Joint Computer Conf. New York: ACM, 1968: 307314［12］Wu M, Lu W. On target coverage problem of angle rotatable directional sensor networks［C］ Proc of the 7th Int Conf on Innovative Mobile & Internet Services in Ubiquitous Computing. Los Alamitos, CA: IEEE Computer Society, 2013: 605610［13］Xie D, Li G, Yao B, et al. Practical private shortest path computation based on oblivious storage［C］ Proc of the 32nd IEEE Int Conf on Data Engineering. Piscataway, NJ: IEEE, 2016: 361372［14］Stefanov E, Shi E, Song D. Towards practical oblivious RAM［J］. arXiv preprint, arXiv:1106.3652, 2011［15］Shi E, Chan TH H, Stefanov E, et al. Oblivious RAM with O((logN)3) worstcase cost［C］ Proc of the 17th Int Conf on the Theory and Application of Cryptology and Information Security. Berlin: Springer, 2011: 197214 ［16］Stefanov E, Van Dijk M, Shi E, et al. Path ORAM: An extremely simple oblivious RAM protocol［J］. Journal of the Association for Computing Machinery, 2018, 65(4): 18.118.26［17］Fletcher C W, Ren L, Kwon A, et al. Freecursive ORAM:［Nearly］ free recursion and integrity verification for positionbased oblivious RAM［J］. ACM SiGPLAN Notices, 2015, 50(3): 103116［18］Ren L, Fletcher C W, Kwon A, et al. Design and implementation of the ascend secure processor［J］. IEEE Trans on Dependable and Secure Computing, 2019, 16(2): 204216［19］Burger D, Austin T M. The SimpleScalar tool set, version 2.0［J］. ACM SIGARCH Computer Architecture News, 1997, 25(3): 1325［20］Rukhin A, Soto J, Nechvatal J, et al. A statistical test suite for random and pseudorandom number generators for cryptographic applications［J］. Nist Special Publication, 2001, 5: 80022［21］国家密码管理局. SM2椭圆曲线公钥密码算法［EBOL］. 2010［20221025］. http:www.oscca.gov.cnNews201012News_1197.htm［22］Guthaus M R, Ringenberg J S, Ernst D, et al. Mibench: A free, commercially representative embedded benchmark suite［C］ Proc of the 4th Annual IEEE Int Workshop on Workload Characterization. Piscataway, NJ: IEEE, 2001: 314

[1]	王冠男, 马帅, 叶琛, 尧聪聪, 唐文佳, . 支持高效检索的电力数据密文存储方案[J]. 信息安全研究, 2023, 9(3): 254-.
[2]	张海俊, 丁平刚, 彭一轩, 孙晨雨, . 基于CKKS与CP-ABE的国网电力数据共享方案[J]. 信息安全研究, 2023, 9(3): 262-.
[3]	韩现群, 张建标. 基于BMC构建TPCM可信根[J]. 信息安全研究, 2022, 8(E2): 23-.
[4]	穆雷霆. 基于可信计算的工业控制系统原生安全防护方案研究[J]. 信息安全研究, 2022, 8(E2): 71-.
[5]	聂建军, 王泉景, 宋博, 周晓刚, 张应平, 马洪富, . 基于可信密码应用服务平台架构及中间件整体解决方案[J]. 信息安全研究, 2022, 8(E2): 81-.
[6]	包森成, 刘亦哲, 税雪飞, 袁国平, . 一种可编辑区块链的一般构造[J]. 信息安全研究, 2022, 8(E2): 125-.
[7]	吴保锡. 云数据中心可信计算池关键技术研究与应用[J]. 信息安全研究, 2022, 8(E2): 139-.
[8]	李玮. 虚拟化分布式防火墙系统TopVSP-vDFW[J]. 信息安全研究, 2022, 8(E1): 148-.