DataSeal: Ensuring the Verifiability of Private Computation on Encrypted Data

Muhammad Husni Santriaji,Jiaqi Xue,Qian Lou,Yan Solihin
2024-10-20
Abstract:Fully Homomorphic Encryption (FHE) allows computations to be performed directly on encrypted data without needing to decrypt it first. This "encryption-in-use" feature is crucial for securely outsourcing computations in privacy-sensitive areas such as healthcare and finance. Nevertheless, in the context of FHE-based cloud computing, clients often worry about the integrity and accuracy of the outcomes. This concern arises from the potential for a malicious server or server-side vulnerabilities that could result in tampering with the data, computations, and results. Ensuring integrity and verifiability with low overhead remains an open problem, as prior attempts have not yet achieved this goal. To tackle this challenge and ensure the verification of FHE's private computations on encrypted data, we introduce DataSeal, which combines the low overhead of the algorithm-based fault tolerance (ABFT) technique with the confidentiality of FHE, offering high efficiency and verification capability. Through thorough testing in diverse contexts, we demonstrate that DataSeal achieves much lower overheads for providing computation verifiability for FHE than other techniques that include MAC, ZKP, and TEE. DataSeal's space and computation overheads decrease to nearly negligible as the problem size increases.
Cryptography and Security
What problem does this paper attempt to address?
The problem that this paper attempts to solve is how to ensure the integrity and verifiability of outsourced computing in the fully homomorphic encryption (FHE) environment. Specifically: 1. **The contradiction between data privacy and computational integrity**: Although FHE can perform computations on encrypted data without decryption, thus ensuring data privacy, it cannot ensure the integrity and correctness of the computations. Malicious servers or system vulnerabilities may tamper with data, the computing process, or the results, causing the client to receive incorrect results. 2. **Limitations of existing methods**: - **Message Authentication Code (MAC)**: Although it can ensure data integrity, its scalability and performance overhead are relatively large. - **Zero - Knowledge Proof (ZKP)**: It provides strong security, but the computational overhead is very high, making it difficult to be deployed on a large scale in practical applications. - **Trusted Execution Environment (TEE)**: Although it provides relatively good security and scalability, it is not supported on some hardware platforms, and it cannot completely prevent memory - tampering attacks (such as RowHammer attacks), while also increasing the trust base. - **Algorithm - Based Fault Tolerance (ABFT)**: Although it can detect and correct unintentional errors, it does not have the ability to prevent malicious attacks. Attackers can bypass verification by modifying data and its checksum. 3. **The problem of low - overhead computational verification**: Another challenge is how to maintain low space and computational overhead while ensuring the verifiability of computational results. Existing methods often introduce significant performance losses while increasing security. To solve these problems, the paper proposes the **DataSeal** method, which combines the low - overhead characteristics of ABFT and the data confidentiality of FHE, and realizes efficient and secure computational verification by embedding secret redundant information. The key innovation of DataSeal lies in using the client's private key to generate redundant data, making it impossible for attackers to forge valid checksums, thereby improving the system's anti - attack ability. In summary, this paper aims to solve the problems of integrity and verifiability of computational results in the FHE environment while maintaining low performance overhead to meet the needs of practical applications.