File Download
There are no files associated with this item.
Links for fulltext
(May Require Subscription)
- Publisher Website: 10.1145/3359789.3359845
- Scopus: eid_2-s2.0-85077811180
- WOS: WOS:000540643900030
Supplementary
- Citations:
- Appears in Collections:
Conference Paper: SecDATAVIEW: A Secure Big Data Workflow Management System for Heterogeneous Computing Environments
| Title | SecDATAVIEW: A Secure Big Data Workflow Management System for Heterogeneous Computing Environments |
|---|---|
| Authors | |
| Keywords | AMD SEV Big data workflow Heterogeneous cloud Intel SGX Trusted computing |
| Issue Date | 2019 |
| Publisher | Association for Computing Machinery. The Proceedings of the web site is located at https://dl.acm.org/citation.cfm?id=3359789 |
| Citation | Proceedings of the 35th Annual Computer Security Applications Conference 2019 (ACSAC 2019), San Juan, Puerto Rico, 9-13 December 2019, p. 390-403 How to Cite? |
| Abstract | Big data workflow management systems (BDWFMSs) have recently emerged as popular platforms to perform large-scale data analytics in the cloud. However, the protection of data confidentiality and secure execution of workflow applications remains an important and challenging problem. Although a few data analytics systems were developed to address this problem, they are limited to specific structures such as Map-Reduce-style workflows and SQL queries. This paper proposes SecDATAVIEW, a BDWFMS that leverages Intel Software Guard eXtensions (SGX) and AMD Secure Encrypted Virtualization (SEV) to develop a heterogeneous trusted execution environment for workflows. SecDATAVIEW aims to (1) provide the confidentiality and integrity of code and data for workflows running on public untrusted clouds, (2) minimize the TCB size for a BDWFMS, (3) enable the trade-off between security and performance for workflows, and (4) support the execution of Java-based workflow tasks in SGX. Our experimental results show that SecDATAVIEW imposes $1.69x$ to $2.62x$ overhead on workflow execution time on SGX worker nodes, $1.04x$ to $1.29x$ overhead on SEV worker nodes, and $1.20x$ to $1.43x$ overhead on a heterogeneous setting in which both SGX and SEV worker nodes are used. |
| Description | Session: Big Data Security |
| Persistent Identifier | http://hdl.handle.net/10722/277271 |
| ISBN | |
| ISI Accession Number ID |
| DC Field | Value | Language |
|---|---|---|
| dc.contributor.author | Mofrad, S | - |
| dc.contributor.author | Ahmed, I | - |
| dc.contributor.author | Lu, S | - |
| dc.contributor.author | Yang, P | - |
| dc.contributor.author | Cui, H | - |
| dc.contributor.author | Zhang, F | - |
| dc.date.accessioned | 2019-09-20T08:47:53Z | - |
| dc.date.available | 2019-09-20T08:47:53Z | - |
| dc.date.issued | 2019 | - |
| dc.identifier.citation | Proceedings of the 35th Annual Computer Security Applications Conference 2019 (ACSAC 2019), San Juan, Puerto Rico, 9-13 December 2019, p. 390-403 | - |
| dc.identifier.isbn | 978-1-4503-7628-0 | - |
| dc.identifier.uri | http://hdl.handle.net/10722/277271 | - |
| dc.description | Session: Big Data Security | - |
| dc.description.abstract | Big data workflow management systems (BDWFMSs) have recently emerged as popular platforms to perform large-scale data analytics in the cloud. However, the protection of data confidentiality and secure execution of workflow applications remains an important and challenging problem. Although a few data analytics systems were developed to address this problem, they are limited to specific structures such as Map-Reduce-style workflows and SQL queries. This paper proposes SecDATAVIEW, a BDWFMS that leverages Intel Software Guard eXtensions (SGX) and AMD Secure Encrypted Virtualization (SEV) to develop a heterogeneous trusted execution environment for workflows. SecDATAVIEW aims to (1) provide the confidentiality and integrity of code and data for workflows running on public untrusted clouds, (2) minimize the TCB size for a BDWFMS, (3) enable the trade-off between security and performance for workflows, and (4) support the execution of Java-based workflow tasks in SGX. Our experimental results show that SecDATAVIEW imposes $1.69x$ to $2.62x$ overhead on workflow execution time on SGX worker nodes, $1.04x$ to $1.29x$ overhead on SEV worker nodes, and $1.20x$ to $1.43x$ overhead on a heterogeneous setting in which both SGX and SEV worker nodes are used. | - |
| dc.language | eng | - |
| dc.publisher | Association for Computing Machinery. The Proceedings of the web site is located at https://dl.acm.org/citation.cfm?id=3359789 | - |
| dc.relation.ispartof | Annual Computer Security Applications Conference | - |
| dc.subject | AMD SEV | - |
| dc.subject | Big data workflow | - |
| dc.subject | Heterogeneous cloud | - |
| dc.subject | Intel SGX | - |
| dc.subject | Trusted computing | - |
| dc.title | SecDATAVIEW: A Secure Big Data Workflow Management System for Heterogeneous Computing Environments | - |
| dc.type | Conference_Paper | - |
| dc.identifier.email | Cui, H: heming@cs.hku.hk | - |
| dc.identifier.authority | Cui, H=rp02008 | - |
| dc.identifier.doi | 10.1145/3359789.3359845 | - |
| dc.identifier.scopus | eid_2-s2.0-85077811180 | - |
| dc.identifier.hkuros | 305864 | - |
| dc.identifier.spage | 390 | - |
| dc.identifier.epage | 403 | - |
| dc.identifier.isi | WOS:000540643900030 | - |
| dc.publisher.place | New York, NY | - |