Self-Expiring Data Capsule using Trusted Execution Environment
Hung Dang, Ee-Chien Chang
TL;DR
This paper introduces TEEKAP, a hardware-augmented system that creates self-expiring data capsules with controlled access, enhancing data privacy through a trusted execution environment and distributed governance.
Contribution
It presents a novel framework combining hardware primitives, state machine replication, and threshold secret sharing for self-expiring data encapsulation.
Findings
TEEKAP processes access requests with sub-second latency.
The system effectively enforces data expiration and access policies.
Deployment across four regions demonstrates scalability and practicality.
Abstract
Data privacy is unarguably of extreme importance. Nonetheless, there exist various daunting challenges to safe-guarding data privacy. These challenges stem from the fact that data owners have little control over their data once it has transgressed their local storage and been managed by third parties whose trustworthiness is questionable at times. Our work seeks to enhance data privacy by constructing a self-expiring data capsule. Sensitive data is encapsulated into a capsule which is associated with an access policy an expiring condition. The former indicates eligibility of functions that can access the data, and the latter dictates when the data should become inaccessible to anyone, including the previously eligible functions. Access to the data capsule, as well as its dismantling once the expiring condition is met, are governed by a committee of independent and mutually distrusting…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsDistributed systems and fault tolerance · Cryptography and Data Security · Privacy-Preserving Technologies in Data