Skip to content

CongGroup/IWQoS-18

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
Caravel
Caravel
 
 
Client
Client
 
 
FastORE
FastORE
 
 
Gateway
Gateway
 
 
Middlebox
Middlebox
 
 
.gitignore
.gitignore
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
firewall.rule
firewall.rule
 
 

Repository files navigation

Enabling Privacy-Preserving Header Matching for Outsourced Middleboxes

Introduction:

This work introduces a middlebox system that can perform encrypted header matching based network functions. It leverages the latest practical primitives for search over encrypted data, i.e., searchable symmetric encryption (SSE) and order-revealing encryption (ORE). To mitigate recent inference attacks on ORE schemes, this work protects the order information during header matching inspection, and presents a rule-aware size reduction technique to achieve better performance.

We implement the prototype on Azure, and the evaluation results on real-world rulesets confirm the good performance of our design. Our design can be viewed as complementary components to be integrated with systems that support encrypted pattern matching for a more comprehensive and secure outsourced middlebox system.

#Publication: Yu Guo, Cong Wang, Xingliang Yuan, and Xiaohua Jia, "Enabling Privacy-Preserving Header Matching for Outsourced Middleboxes", In the 26th IEEE/ACM International Symposium on Quality of Service (IWQoS’18).

Installation:

Environment setup:

 * apt-get update
 * apt-get install gcc g++ libssl-dev libgmp-dev make cmake libboost-dev libboost-test-dev libboost-program-options-dev libboost-system-dev libboost-filesystem-dev libevent-dev automake libtool flex bison pkg-config libglib2.0-dev git
 * apt-get install libmsgpack-dev libboost-thread-dev libboost-date-time-dev libboost-test-dev libboost-filesystem-dev libboost-system-dev libhiredis-dev cmake build-essential libboost-regex-dev

Thrift installation:

 * wget http://apache.communilink.net/thrift/0.9.3/thrift-0.9.3.tar.gz
 * tar zxvf 
 * cd 
 * make
 * make install

Redis installation:

 * wget http://download.redis.io/releases/redis-3.2.0.tar.gz
 * tar zxvf redis-3.2.0.tar.gz
 * cd redis-3.2.0
 * make
 * make install

redis3m (a C++ Redis client) installation:

 * git clone https://github.com/luca3m/redis3m
 * cd redis3m
 * cmake .
 * make
 * make install

MAINTAINER:

Yu Guo, City University of Hong Kong, [email protected] Mengyu Yao, City University of Hong Kong, [email protected] Cong Wang, City University of Hong Kong, [email protected]

About

No description, website, or topics provided.

Resources

Readme
Activity
Custom properties

Stars

1 star

Watchers

5 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages