TU Darmstadt / ULB / TUbiblio

Language-Integrated Privacy-Aware Distributed Queries

Salvaneschi, Guido and Köhler, Mirko and Sokolowski, Daniel and Haller, Philipp and Erdweg, Sebastian and Mezini, Mira (2019):
Language-Integrated Privacy-Aware Distributed Queries. (Publisher's Version)
In: Proceedings of the ACM on Programming Languages, 3 (OOPSLA), pp. 1-30. Association for Computing Machinery, ISSN 2475-1421,
DOI: 10.25534/tuprints-00014553,
[Article]

Abstract

Distributed query processing is an effective means for processing large amounts of data. To abstract from the technicalities of distributed systems, algorithms for operator placement automatically distribute sequential data queries over the available processing units. However, current algorithms for operator placement focus on performance and ignore privacy concerns that arise when handling sensitive data. We present a new methodology for privacy-aware operator placement that both prevents leakage of sensitive information and improves performance. Crucially, our approach is based on an information-flow type system for data queries to reason about the sensitivity of query subcomputations. Our solution unfolds in two phases. First, placement space reduction generates deployment candidates based on privacy constraints using a syntax-directed transformation driven by the information-flow type system. Second, constraint solving selects the best placement among the candidates based on a cost model that maximizes performance. We verify that our algorithm preserves the sequential behavior of queries and prevents leakage of sensitive data. We implemented the type system and placement algorithm for a new query language SecQL and demonstrate significant performance improvements in benchmarks.

Item Type: Article
Erschienen: 2019
Creators: Salvaneschi, Guido and Köhler, Mirko and Sokolowski, Daniel and Haller, Philipp and Erdweg, Sebastian and Mezini, Mira
Origin: Secondary publication via Golden Open Access
Status: Publisher's Version
Title: Language-Integrated Privacy-Aware Distributed Queries
Language: English
Abstract:

Distributed query processing is an effective means for processing large amounts of data. To abstract from the technicalities of distributed systems, algorithms for operator placement automatically distribute sequential data queries over the available processing units. However, current algorithms for operator placement focus on performance and ignore privacy concerns that arise when handling sensitive data. We present a new methodology for privacy-aware operator placement that both prevents leakage of sensitive information and improves performance. Crucially, our approach is based on an information-flow type system for data queries to reason about the sensitivity of query subcomputations. Our solution unfolds in two phases. First, placement space reduction generates deployment candidates based on privacy constraints using a syntax-directed transformation driven by the information-flow type system. Second, constraint solving selects the best placement among the candidates based on a cost model that maximizes performance. We verify that our algorithm preserves the sequential behavior of queries and prevents leakage of sensitive data. We implemented the type system and placement algorithm for a new query language SecQL and demonstrate significant performance improvements in benchmarks.

Journal or Publication Title: Proceedings of the ACM on Programming Languages
Journal volume: 3
Number: OOPSLA
Publisher: Association for Computing Machinery
Uncontrolled Keywords: Engineering; E5, emergenCITY_INF
Divisions: 20 Department of Computer Science
20 Department of Computer Science > Software Technology
DFG-Collaborative Research Centres (incl. Transregio)
DFG-Collaborative Research Centres (incl. Transregio) > Collaborative Research Centres
Profile Areas
Profile Areas > Cybersecurity (CYSEC)
LOEWE
LOEWE > LOEWE-Zentren
LOEWE > LOEWE-Zentren > emergenCITY
DFG-Collaborative Research Centres (incl. Transregio) > Collaborative Research Centres > CRC 1119: CROSSING – Cryptography-Based Security Solutions: Enabling Trust in New and Next Generation Computing Environments
TU-Projects: HMWK|III L6-519/03/05.001-(0016)|emergenCity TP Bock
Date Deposited: 30 Nov 2020 16:05
DOI: 10.25534/tuprints-00014553
Official URL: https://tuprints.ulb.tu-darmstadt.de/14553
URN: urn:nbn:de:tuda-tuprints-145533
Corresponding Links:
Export:
Suche nach Titel in: TUfind oder in Google
Send an inquiry Send an inquiry

Options (only for editors)
Show editorial Details Show editorial Details