This course aims to teach participants how to accelerate encrypted deduplication using Intel SGX technology. The learning outcomes include understanding the concept of encrypted deduplication, implementing server-aided message-locked encryption (MLE) for deduplication, and utilizing SGX enclaves for secure operations. The course covers topics such as SGX basics, enclave management, renewable blinded key management, and SGX-based speculative encryption. The teaching method involves a presentation of the SGXDedup system, its secure interfaces, and various designs for efficient enclave operations. This course is intended for individuals interested in data security, storage optimization, and leveraging hardware-based security technologies like Intel SGX.
Overview
Syllabus
Intro
Outsourcing Storage
Encrypted Deduplication
MLE-based Implementation
Contributions
SGX Basics
Design Goals
SGXDedup
Questions
Enclave Management
Renewable Blinded Key Management
SGX-based Speculative Encryption
Experimental Setup
Overall System
Trace-driven Performance
Conclusion
Taught by
USENIX
