ConcurORAM: High-Throughput Stateless Parallel Multi-Client ORAM

by   Anrin Chakraborti, et al.

ConcurORAM is a parallel, multi-client ORAM that eliminates waiting for concurrent stateless clients and allows overall throughput to scale gracefully, without requiring trusted third party components (proxies) or direct inter-client coordination. A key insight behind ConcurORAM is the fact that, during multi-client data access, only a subset of the concurrently-accessed server-hosted data structures require access privacy guarantees. Everything else can be safely implemented as oblivious data structures that are later synced securely and efficiently during an ORAM "eviction". Further, since a major contributor to latency is the eviction - in which client-resident data is reshuffled and reinserted back encrypted into the main server database - ConcurORAM also enables multiple concurrent clients to evict asynchronously, in parallel (without compromising consistency), and in the background without having to block ongoing queries. As a result, throughput scales well with increasing number of concurrent clients and is not significantly impacted by evictions. For example, about 65 queries per second can be executed in parallel by 30 concurrent clients, a 2x speedup over the state-of-the-art. The query access time for individual clients increases by only 2x when compared to a single-client deployment.


page 1

page 2

page 3

page 4


A Tale of Two Trees: One Writes, and Other Reads. Optimized Oblivious Accesses to Large-Scale Blockchains

The Bitcoin network has offered a new way of securely performing financi...

Scouting the Path to a Million-Client Server

To keep up with demand, servers will scale up to handle hundreds of thou...

Oblivious DNS: Practical Privacy for DNS Queries

Every Internet communication typically involves a Domain Name System (DN...

CIAO: An Optimization Framework for Client-Assisted Data Loading

Data loading has been one of the most common performance bottlenecks for...

Hidden-nodes in coexisting LAA Wi-Fi: a measurement study of real deployments

LTE-Licensed Assisted Access (LAA) networks are beginning to be deployed...

One-Time Model Adaptation to Heterogeneous Clients: An Intra-Client and Inter-Image Attention Design

The mainstream workflow of image recognition applications is first train...

Experiences Challenges with Server-Side WiFi Indoor Localization Using Existing Infrastructure

Real-world deployments of WiFi-based indoor localization in large public...

Please sign up or login with your details

Forgot password? Click here to reset