Secure Cloud Storage Best Senior Project Story › ~cs4912 › 2020-2021 › seminars ›...
Transcript of Secure Cloud Storage Best Senior Project Story › ~cs4912 › 2020-2021 › seminars ›...
-
Secure Cloud Storage
&
Best Senior Project Story
ALPTEKİN KÜPÇÜAssociate Professor of Computer Science and Engineering
Ph.D. Brown University
-
Alptekin Küpçü
• B.S., Bilkent University, 2000-2004
• Ph.D., Brown University, 2004-2010
• Faculty, Koç Üniversitesi, 2010-• 3 post-doctoral researcher alumni• 4 phd & 4 ms student alumni
• EPFL Switzerland, KU Leuven Belgium, University of VirginiaUSA, LinkedIn USA, NTU Singapore, Dapper Labs Canada
• Hiring for blockchain project (2 phd, 2 ms, 1 post-doctoral)
• Visiting Scholar• METU , 2020• Bilkent University, TOBB ETU, IZTECH, 2019• Microsoft Research, 2013 & 2015• Yahoo! Labs, 2015
3/12/2019 Alptekin Küpçü 216 November
2020Alptekin Küpçü 2
-
Collaborations & Awards
• UCL, UK
• Maryland University, Virginia
University, Brown University,
Northeastern University, Rutgers
University, USA
• EPFL, Switzerland
• Salzburg University, Austria
• KU Leuven, Belgium
• Bilkent University, Ege University,
Turkey
• Microsoft Research, Yahoo! Labs,
IBM Research, USA
• TEB, IDEA, Koç Sistem, Türk
Telekom, Turkey
• Science Academy, BAGEP
outstanding young scholar
• Turkish Academy of Sciences, GEBİP
outstanding young scholar
• ODTÜ Parlar Foundation, Research
Encouragement Award
• Royal Society of UK, Newton
Advanced Fellowship
• IEEE Senior Member
• ACM Senior Member
• 4 teaching awards from Koç University
• 6 international patents
3/12/2019 Alptekin Küpçü 316 November
2020Alptekin Küpçü 3
-
Cryptography, Security, and Privacy Research Group
Cryptography
Security
Privacy
Core Research
Application Areas Cloud Computing
Passwords and Authentication
Smart Homes and IoT
Peer-to-peer Systems
Blockchain Applications
E-ID and E-Health Systems
Game Theory and Mechanism Design
Provable Security
...3/12/2019 Alptekin Küpçü 416 November
2020Alptekin Küpçü 4
-
Goal
Cryptographic protocols can efficiently and scalably be used toprovide security and privacy forthe next generation systems.
3/12/2019 Alptekin Küpçü 516 November
2020Alptekin Küpçü 5
-
Overview
Secure Cloud Storage
Problems
Solutions
Summary
16 November 2020 Alptekin Küpçü 6
-
Overview
Secure Cloud Storage
Problems
Solutions
Summary
16 November 2020 Alptekin Küpçü 7
-
Outsourced Storage
16 November 2020 Alptekin Küpçü 8
-
Outsourced Storage
16 November 2020 Alptekin Küpçü 9
-
Outsourced Storage
16 November 2020 Alptekin Küpçü 10
-
Untrusted Storage
16 November 2020 Alptekin Küpçü 11
-
Untrusted Storage
16 November 2020 Alptekin Küpçü 12
-
Untrusted Storage
16 November 2020 Alptekin Küpçü 13
-
Overview
Secure Cloud Storage
Problems
Solutions
Summary
16 November 2020 Alptekin Küpçü 14
-
Confidentiality
16 November 2020 Alptekin Küpçü 15
-
Confidentiality
16 November 2020 Alptekin Küpçü 16
-
Confidentiality
16 November 2020 Alptekin Küpçü 17
-
Confidentiality
16 November 2020 Alptekin Küpçü 18
-
Integrity: Naïve Solution 1
16 November 2020 Alptekin Küpçü 19
-
Integrity: Naïve Solution 1
16 November 2020 Alptekin Küpçü 20
-
Integrity: Naïve Solution 1
16 November 2020 Alptekin Küpçü 21
-
Integrity: Naïve Solution 1
16 November 2020 Alptekin Küpçü 22
-
Integrity: Naïve Solution 1
16 November 2020 Alptekin Küpçü 23
-
Integrity: Naïve Solution 2
16 November 2020 Alptekin Küpçü 24
-
Integrity: Naïve Solution 2
16 November 2020 Alptekin Küpçü 25
-
Integrity: Naïve Solution 2
16 November 2020 Alptekin Küpçü 26
-
Integrity: Naïve Solution 2
16 November 2020 Alptekin Küpçü 27
-
Integrity: Naïve Solution 2
16 November 2020 Alptekin Küpçü 28
-
Integrity: Naïve Solution 2
16 November 2020 Alptekin Küpçü 29
-
Problem with Naïve Approaches
16 November 2020 Alptekin Küpçü 30
-
Problem with Naïve Approaches
16 November 2020 Alptekin Küpçü 31
-
Problem with Naïve Approaches
16 November 2020 Alptekin Küpçü 32
-
Overview
Secure Cloud Storage
Problems
Efficient Solutions
Summary
16 November 2020 Alptekin Küpçü 33
-
Provable Data Possession
16 November 2020 Alptekin Küpçü 34
1 2 3 4 5 6 7
[ABCHKPS ACM CCS 2007]
-
Provable Data Possession
16 November 2020 Alptekin Küpçü 35
1 2 3 4 5 6 7
[ABCHKPS ACM CCS 2007]
-
Provable Data Possession
16 November 2020 Alptekin Küpçü 36
1 2 3 4 5 6 7
[ABCHKPS ACM CCS 2007]
-
Provable Data Possession
16 November 2020 Alptekin Küpçü 37
1 2 3 4 5 6 7
[ABCHKPS ACM CCS 2007]
-
Provable Data Possession
16 November 2020 Alptekin Küpçü 38
1 2 3 4 5 6 7
[ABCHKPS ACM CCS 2007]
-
Provable Data Possession
16 November 2020 Alptekin Küpçü 39
1 2 3 4 5 6 7
[ABCHKPS ACM CCS 2007]
-
Provable Data Possession
16 November 2020 Alptekin Küpçü 40
1 2 3 4 5 6 7
[ABCHKPS ACM CCS 2007]
-
Provable Data Possession
16 November 2020 Alptekin Küpçü 41
1 2 3 4 5 6 7
[ABCHKPS ACM CCS 2007]
-
Provable Data Possession
16 November 2020 Alptekin Küpçü 42
1 2 3 4 5 6 7
[ABCHKPS ACM CCS 2007]
-
Provable Data Possession
16 November 2020 Alptekin Küpçü 43
1 2 3 4 5 6 7
[ABCHKPS ACM CCS 2007]
-
Provable Data Possession
16 November 2020 Alptekin Küpçü 44
1 2 3 4 5 6 7
[ABCHKPS ACM CCS 2007]
-
Provable Data Possession
16 November 2020 Alptekin Küpçü 45
1 2 3 4 5 6 7
1 4 7
[ABCHKPS ACM CCS 2007]
-
PDP is for Static Data
16 November 2020 Alptekin Küpçü 46
1 2 3 4 5 6 7
-
PDP is for Static Data
16 November 2020 Alptekin Küpçü 47
1 2 3 4 5 6 7
4
-
PDP is for Static Data
16 November 2020 Alptekin Küpçü 48
1 2 3 4 5 6 7
4
4
-
PDP is for Static Data
16 November 2020 Alptekin Küpçü 49
1 2 3 4 5 6 7
4
-
PDP is for Static Data
16 November 2020 Alptekin Küpçü 50
1 2 3 4 5 6 7
-
PDP is for Static Data
16 November 2020 Alptekin Küpçü 51
1 2 3 4 5 6 7
-
PDP is for Static Data
16 November 2020 Alptekin Küpçü 52
1 2 3 4 5 6 7
-
PDP is for Static Data
16 November 2020 Alptekin Küpçü 53
1 2 3 4 5 6 7
44
-
PDP is for Static Data
16 November 2020 Alptekin Küpçü 54
1 2 3 4 5 6 7
4
4
-
4
PDP is for Static Data
16 November 2020 Alptekin Küpçü 55
4
1 2 3 4 5 6 7
-
Overview
Secure Cloud Storage
Problems
Efficient Dynamic Solutions
Summary
16 November 2020 Alptekin Küpçü 56
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 57
1 2 3 4 5 6 7
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 58
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 59
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 60
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 61
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 62
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 63
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 64
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 65
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 66
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 67
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 68
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
11 1
2
6
1
7
2
4
1 1
3
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 69
1 2 3 4 5 6 7
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 70
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 71
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 72
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 73
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 74
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 75
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 76
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 77
1 2 3 4 5 6 7
1 1
3
11 1
2
6
1
7
2
4
1 1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 78
1 2 3 4 5 6 7
1 3
11 1
2
6
1
7
2
4
1 1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 79
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
1 1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 80
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
11 1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 81
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
11 1
2
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 82
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
11 1
2
1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 83
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
11 1
2
1
4 3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 84
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
11 1
2
6
1
4 3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 85
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
11 1
2
6
1
7
4 3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 86
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
11 1
2
6
1
7
4 3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 87
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
5
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 88
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
5
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 89
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 90
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 91
1 2 3 4 5 6 7
1
2
1 1
11 1
2
6
1
7
2
4
1 1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 92
1 2 3 4 5 6 7
1
2
1 1 11 1
2
6
1
7
2
4
1 1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 93
1 2 3 4 5 6 7
1
2
6
1
7
2
4
1 1
3
11 1
2
6
1
7
2
4
1 1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 94
1 2 3 4 5 6 7
1
2
6
1
7
2
4
1 1
3
11 1
2
6
1
7
2
4
1 1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 95
1 2 3 4 5 6 7
1
2
1 1 11 1
2
6
1
7
2
4
1 1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
1
2
6
1
7
2
4
1 1
3
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 96
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
1
2
6
1
7
2
4
1 1
3
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 97
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Dynamic Provable Data Possession
16 November 2020 Alptekin Küpçü 98
1 2 3 4 5 6 7
11 1
2
6
1
7
2
4
1 1
3
[EKPT ACM CCS 2009 & ACM TISSEC 2015]
-
Overview
Secure Cloud Storage
Problems
Solutions
Summary
16 November 2020 Alptekin Küpçü 99
-
Further Work
Distribution and Replication [EK13a]
Without increasing complexity
Failure Resiliency [CKW13][CKW17]
Via error-correcting and erasure codes
PDP vs. POR [EK16][EK19b]
POR uses erasure codes
PDP is more efficient
What happens when the proof fails?
Official arbitration [K15] NOT public verifiability
16 November 2020 Alptekin Küpçü 100
-
READING LIST
Static PDP and POR
Ateniese et al. ACM CCS 2007 & ACM TISSEC 2011, Provable Data
Possession
Shacham and Waters. ASIACRYPT 2008 & Journal of Cryptology 2013,
Compact POR
Dynamic PDP
Erway, Küpçü, Papamanthou, Tamassia. ACM CCS 2009 & ACM TISSEC
2015, Dynamic Provable Data Possession
Etemad and Küpçü. ACNS 2013, Distributed, and Replicated DPDP
Esiner, Küpçü, Özkasap. ICC 2014, FlexList
Esiner, Kachkeev, Braunfeld, Küpçü, Özkasap. ACM TOS 2016 FlexDPDP
Etemad and Küpçü. ACM CSUR 2020, Generic DPDP
Dynamic POR
Cash, Küpçü, Wichs. EUROCRYPT 2013 & Journal of Cryptology 2017,
PORAM
Shi et al. ACM CCS 2013, Practical DPOR
Chandran et al. TCC 2014, Locally Updatable and Locally Decodable Codes
Etemad and Küpçü. ACM CCSW 2016. Generic DPOR from PDP and DPDP.
Official Arbitration
Küpçü. The Computer Journal 2015, Official Arbitration16 November 2020 Alptekin Küpçü 101
-
Conclusion
Cloud Storage Can efficiently provide confidentiality and integrity of data,
among multiple servers
Proof and verification times on the order of milliseconds
Proof size is a few hundred KB for a few GB file
Can handle whole file systems or version control systems
16 November 2020 Alptekin Küpçü 102
-
Funding Acknowledgement
TÜBİTAK 111E019, 112E115, 114E487, 115E766, 119E088
Royal Society Newton Advanced Fellowship NA140464
BAGEP 2016
TÜBA GEBİP 2017
European Union COST Actions IC1206, IC1306
Koç Sistem
Türk Telekom 11315-06
-
Entrepreneurship Timeline
2001: Bilkent CS 102 project Maplab Map Simulator
2004: Bilkent CS 492 Senior Project Kaşif: Best Senior Project Award
Google Maps Beta was launched in 2005
2008-2010: while still in USA Brown University PRIME Entrepreneurship
Program
Rhode Island Center for Innovation
2020: TÜBİTAK BİGG awards, co-founded: FineSci Technology Inc.
Xtinge Technology Inc.
16 November 2020 Alptekin Küpçü 105
-
ALPTEKİN KÜPÇÜAssociate Professor of Computer Science and Engineering
crypto.ku.edu.tr
finesci.com
xtinge.com