TY - JOUR
T1 - ThinORAM
T2 - Towards Practical Oblivious Data Access in Fog Computing Environment
AU - Huang, Yanyu
AU - Li, Bo
AU - Liu, Zheli
AU - Li, Jin
AU - Yiu, Siu-Ming
AU - Baker, Thar
AU - Gupta, Brij B.
PY - 2019/12/24
Y1 - 2019/12/24
N2 - Oblivious RAM (ORAM) is important for applications that require hiding of access patterns. However, most of existing implementations of ORAM are very expensive, which are infeasible to be deployed in lightweight devices, like the terminal equipment for Internet of Things (IoT). In this article, we focus on how to apply the expensive ORAM to protect access pattern in IoT devices and propose an ORAM scheme supporting thin-client, called “ThinORAM”, under non-colluding clouds. Our proposed scheme removes complicated computations in the client side and requires only O(1) communication cost with a reasonable response time. We further show how to securely deploy ThinORAM in the fog computing environment to achieve oblivious data access with minimum client cost. Experiments show that our scheme can eliminate most of the client storage and reduce the cloud-cloud bandwidth by 2×, with 3× faster response time, when compared to the best scheme that aims at reducing client side overheads.
AB - Oblivious RAM (ORAM) is important for applications that require hiding of access patterns. However, most of existing implementations of ORAM are very expensive, which are infeasible to be deployed in lightweight devices, like the terminal equipment for Internet of Things (IoT). In this article, we focus on how to apply the expensive ORAM to protect access pattern in IoT devices and propose an ORAM scheme supporting thin-client, called “ThinORAM”, under non-colluding clouds. Our proposed scheme removes complicated computations in the client side and requires only O(1) communication cost with a reasonable response time. We further show how to securely deploy ThinORAM in the fog computing environment to achieve oblivious data access with minimum client cost. Experiments show that our scheme can eliminate most of the client storage and reduce the cloud-cloud bandwidth by 2×, with 3× faster response time, when compared to the best scheme that aims at reducing client side overheads.
U2 - 10.1109/TSC.2019.2962110
DO - 10.1109/TSC.2019.2962110
M3 - Article
VL - 13
SP - 602
EP - 612
JO - IEEE Transactions on Services Computing
JF - IEEE Transactions on Services Computing
IS - 4
ER -