University researchers have taken an important step forward on cloud security by proving it’s possible for a server to process encrypted data and to send back a still-encrypted result.
The new method involves stitching homomorphic encryption with two other techniques into what the researchers call a “functional-encryption scheme.” The technique is not ready for prime time. The researchers acknowledge that it requires too much computational power to be practical.
Nevertheless, that problem can be attacked over time, now that researchers know it is possible to process data without decryption. “Before, we didn’t even know if this was possible,” said Raluca Ada Popa, a coauthor of the research and a graduate student in the Department of Electrical Engineering and Computer Science at MIT.
With today’s technology, if an encrypted search term is not decrypted first, then the receiving server has no choice but to send back information on every database record it has. As a result, the recipient’s computer would then have to do the decryption and handle the computations necessary to determine the applicable results.
Homomorphic encryption, a promising research topic in cryptography, makes it possible to process data while maintaining end-to-end encryption. The researchers’ new functional-encryption scheme takes that technology a step further by enabling the cloud server to run a single, specified computation on the homomorphically encrypted result — such as, “Is this record a match?” — without having to extract any other information.
[In depth: End-to-end encryption: The PCI security Holy Grail]
To do that, the researchers used two other schemes, called garbled circuit and attribute-based encryption. Each has select capabilities necessary for functional encryption.
The new system begins with homomorphic encryption and embeds the decryption algorithm in a garbled circuit. The key to the garbled circuit is protected in turn by attribute-based encryption, which keeps the whole process encrypted.
Steve Pate, co-founder and chief technology officer for cloud encryption company HighCloud Security, said the new research was “encouraging.” But he noted a big stumbleblock: “The computation required for homomorphic encryption far exceeds what we have today in terms of computing resources.”
Before such a technique can work, there will need to be advances in hardware where the encryption and key management capabilities occur within the processor or other hardware module, he said.
The Latest Bing News on:
- Amazon has price cuts on Arlo and Blink home security camerason October 13, 2020 at 3:42 pm
Arlo and Blink have both dropped prices on best-selling home security cameras. This is a great chance to improve your home's security without breaking the bank.
- Ansible connects the dots between automation and cloudon October 13, 2020 at 3:42 pm
A year on from the announcement of the Ansible Automation Platform, the Ansible Collections Community is over 500 strong and growing. “That’s the vibe: Collections, collections, collections,” said ...
- Orca Security Research Reveals How Software Industry Unwittingly Distributes Virtual Appliances with Known Vulnerabilitieson October 13, 2020 at 2:28 pm
Cyber security's comprehensive news site is now an online community for security professionals, outlining cyber threats and the technologies for defending against them.
- JFrog Launches Free Subscription to Multi-Cloud DevOps Platform with Built-in Open Source Security Scanningon October 13, 2020 at 2:02 pm
Development teams can accelerate delivery with universal package management, DevSecOps tools and cloud-native CI/CD solutions across major cloud providers The JFrog Platform Free Subscription JFrog la ...
- Oracle Cloud Infrastructure Government Cloud Services Obtain FedRAMP JAB P-ATO Accreditationon October 13, 2020 at 11:18 am
Government Cloud Services has obtained a Provisional Authority to Operate (P-ATO) from the FedRAMP Joint Authorization Board (JAB).
- Palo Alto Networks beefs up its multicloud security platform Prisma Cloudon October 13, 2020 at 6:32 am
Palo Alto Networks Inc. said today it’s adding four new cloud security modules to Prisma Cloud, a multicloud security offering that enables developers to block vulnerabilities during the application ...
- CrowdStrike Enhances Security for Multi-Cloud Environments with New Module CrowdStrike Falcon Horizonon October 13, 2020 at 5:10 am
CrowdStrike, Inc. (Nasdaq: CRWD), a leader in cloud-delivered endpoint and workload protection, today announced the new CrowdStrike Falcon Horizon module to protect multi-cloud environments. Falcon Ho ...
- Palo Alto Networks Announces Prisma Cloud 2.0, the Industry's Only Comprehensive Cloud Native Security Platformon October 13, 2020 at 5:00 am
PRNewswire/ -- Palo Alto Networks (NYSE: PANW) today announced Prisma™ Cloud 2.0 which includes four new cloud security modules, enhancing its standing as ...
- Google Announces New Capabilities for Cloud Functions: Languages, Security and Moreon October 12, 2020 at 4:44 pm
Google’s Functions-as-a-Service (FaaS) offering on its cloud platform is Cloud Functions, allowing developers to build serverless solutions which integrate with third-party services and APIs, or IoT ...
- Cloud Security: A Work In Progresson October 12, 2020 at 7:47 am
Recent studies find that while companies continue to adopt cloud services rapidly, many fail to put in place proper cloud security measures.
The Latest Google Headlines on:
The Latest Bing News on:
- The Next Generation Of Artificial Intelligenceon October 12, 2020 at 6:28 pm
What will the next generation of artificial intelligence look like? Which novel AI approaches will unlock currently unimaginable possibilities in technology and business? This article highlights three ...
- Homomorphic encryption tools find their nicheon October 12, 2020 at 3:06 am
Current homomorphic encryption offerings require fewer specialized skills and are proving themselves effective in some use cases.
- Homomorphic Encryption Market 2020 Share, Size, by Global Major Companies Profile, Competitive Landscape and Key Regions 2026 Research Reports Worldon September 28, 2020 at 10:46 pm
Sep 29, 2020 (The Expresswire) -- Global "Homomorphic Encryption Market" 2020 Global Industry Research Report is deep analysis by historical and current status of the market/industries for Global ...
- A Texas County Clerk’s Bold Crusade to Transform How We Voteon September 15, 2020 at 3:00 am
How Dana DeBeauvoir set off the biggest, weirdest, and most promising revolution in election technology since the 1800s.
- Patent Issued for Homomorphic Encryption In A Healthcare Network Environment, System And Methods (USPTO 10,757,081)on September 3, 2020 at 5:01 pm
systems and methods for homomorphic encryption in a healthcare network environment is provided and includes receiving data at a data custodian server in a plurality of formats from various data ...
- Major Brazilian Bank Tests Homomorphic Encryption on Financial Dataon January 24, 2020 at 1:32 pm
Banco Bradesco, S.A., a prominent Brazilian financial institution, has for the past year been working with IBM Research to apply a technique called homomorphic encryption to banking data.
- Homomorphic encryptionon March 18, 2019 at 1:26 pm
Homomorphic encryption is a form of encryption which allows specific types of computations to be carried out on ciphertext and obtain an encrypted result which decrypted matches the result of ...
- ABS chain encryption version of WeChat spy exposure! IM communications will usher in a revolution!on November 30, 2018 at 9:31 am
Based on block chain technology, ABS chain creatively uses homomorphic encryption technology and proxy re-encryption technology to encrypt without changing the user's operating habits. Realizing ...