Explore a secure database solution using Intel SGX in this IEEE conference talk. Dive into EnclaveDB, a database engine designed to guarantee confidentiality, integrity, and freshness for data and queries, even in the face of malicious administrators or compromised operating systems. Learn about its architecture, including the in-memory storage and query engine, transaction manager, and pre-compiled stored procedures. Discover the efficient protocol for checking integrity and freshness of the database log, supporting concurrent, asynchronous appends and truncation with minimal thread synchronization. Examine the performance results using standard database benchmarks and understand how EnclaveDB achieves strong security with low overhead compared to industry-strength in-memory database engines.
Overview
Syllabus
Intro
Secure database - properties
Outline
EnclaveDB Architecture
Why in-memory engine?
EnclaveDB Transaction API
Checkpointing
State continuity for transaction log
Tracking sets using vector clocks
Invalidating uncommitted log records
Monotonic counters
Evaluation
Performance
Summary
Taught by
IEEE Symposium on Security and Privacy
