Research On Performance Optimization Of Encrypted Data Access And Operation Based On CryptDB

Nowadays,more and more enterprises and individuals begin to use data services provided by the third-party database service providers.However,storing data in the public cloud means that there is a risk of leaking data.One way to solve this problem is to store the encrypted data in the database server,that is,encrypted database.But it can also cause some security problems.On the one hand,an attacker outside the database system utilizes system loopholes or illegally obtains database access rights to steal private data;on the other hand,within the database system,database administrators may spy on data and disclose data.CryptDB is proposed for these two issues.CryptDB is an encrypted database system that stores encrypted data in a database.During the process of deployment,we found that CryptDB proxy undertakes most of the encryption and decryption operations.Paillier is a complicated and time-consuming algorithm and it has become a bottleneck of CryptDB proxy.In this paper,we introduce the hardware accelerator to accelerate the Paillier.Although the Paillier algorithm has been proposed for a long time,there is still no hardware accelerator to support Paillier.We use Intel QuickAssist Technology to accelerate the Paillier.In this paper,we first implement the Paillier with OpenSSL,and then we accelerate the Paillier with QAT synchronous mode and asynchronous mode respectively.At last,we evaluate the performance of Paillier under different circumstances.We integrate the optimized Paillier with CryptDB,and use benchmark to evaluate the performance of CryptDB.However,we find that there is still a gap between the original CryptDB and optimized CryptDB.Then,we analyze the reasons for the performance gap.On the one hand,there exists a performance gap between NTL and OpenSSL.On the other hand,CryptDB doesn't use multi-threaded programming.At the same time,we also focus on analyzing the Paillier itself and use OpenSSL to test the Paillier's speed of encryption and decryption.The results show that the QAT asynchronous mode has an effect on improving the performance of Paillier.The average encryption speed of QAT asynchronous mode can improve the speed of Paillier up to 2x compared with the software-based Paillier.