Practicing Oblivious Access on Cloud Storage: the Gap, the Fallacy, and the New Way Forward

In: ACM SIGSAC Conference on Computer and Communications Security (2015)

Type: Conference
Venue: CCS
Year
2015
Acceptance Rate
19.4%

Abstract:
To understand the gap between theory and practice for oblivious cloud storage, we experimentally evaluate four representative Oblivious RAM (ORAM) designs on Amazon S3. We replay realistic application traces to these ORAMs in order to understand whether they can meet the demands of various real applications using cloud storage as a backend. We find that metrics traditionally used in the ORAM literature, e.g., bandwidth overhead, fail to capture the practical needs of those applications. With a new understanding of the desirable properties, relevant metrics, and observations about the cloud services and their applications, we propose CURIOUS, a new modular partition-based ORAM framework, and show experimentally that it is thus far the most promising approach.
Related Artifacts: