DIY Hosting for Online Privacy

Similar documents
DIY Hosting for Online Privacy. Shoumik Palkar and Matei Zaharia Stanford University

DISTRIBUTED SYSTEMS [COMP9243] Lecture 8a: Cloud Computing WHAT IS CLOUD COMPUTING? 2. Slide 3. Slide 1. Why is it called Cloud?

Splunk & AWS. Gain real-time insights from your data at scale. Ray Zhu Product Manager, AWS Elias Haddad Product Manager, Splunk

Karaoke. Distributed Private Messaging Immune to Passive Traffic Analysis. David Lazar, Yossi Gilad, Nickolai Zeldovich

#techsummitch

Here comes the. Cloud. But is your architecture ready for

Pocket: Elastic Ephemeral Storage for Serverless Analytics

Microservices without the Servers: AWS Lambda in Action

How to scale Windows Azure Application

Zombie Apocalypse Workshop

Cisco CloudCenter Solution with Cisco ACI: Common Use Cases

How to go serverless with AWS Lambda

Amazon Web Services. Block 402, 4 th Floor, Saptagiri Towers, Above Pantaloons, Begumpet Main Road, Hyderabad Telangana India

Architecting Microsoft Azure Solutions (proposed exam 535)

An Introduction to the Intelligent IoT Integrator (I3)

AWS Solutions Architect Associate (SAA-C01) Sample Exam Questions

Welcome to the. Migrating SQL Server Databases to Azure

How can you implement this through a script that a scheduling daemon runs daily on the application servers?

70-532: Developing Microsoft Azure Solutions

Stadium. A Distributed Metadata-private Messaging System. Matei Zaharia Nickolai Zeldovich SOSP 2017

Building a chain of trust from the device to the cloud Christian Kuhn, Senior Director, Business Development DNAC - 16 November 2017

Cloud Computing. An introduction using MS Office 365, Google, Amazon, & Dropbox.

Exam : Implementing Microsoft Azure Infrastructure Solutions

Identifying Workloads for the Cloud

Reactive Microservices Architecture on AWS

ARCHITECTING WEB APPLICATIONS FOR THE CLOUD: DESIGN PRINCIPLES AND PRACTICAL GUIDANCE FOR AWS

Provisioning IT at the Speed of Need with Microsoft Azure. Presented by Mark Gordon and Larry Kuhn Hashtag: #HAND5

70-532: Developing Microsoft Azure Solutions

BERLIN. 2015, Amazon Web Services, Inc. or its affiliates. All rights reserved

GOING FULLY SERVERLESS

Finished Application e.g. SalesForce.com. Software as a Service. Application Code Publish your app to the cloud. Platform as a Service

Database Architecture 2 & Storage. Instructor: Matei Zaharia cs245.stanford.edu

Rethinking Security CLOUDSEC2016. Ian Farquhar Distinguished Sales Engineer Field Lead for the Gigamon Security Virtual Team

Document Sub Title. Yotpo. Technical Overview 07/18/ Yotpo

Who s Protecting Your Keys? August 2018

Oracle WebLogic Server 12c on AWS. December 2018

CPS 510 final exam, 4/27/2015

Going Serverless. Building Production Applications Without Managing Infrastructure

COLLIN LEE INITIAL DESIGN THOUGHTS FOR A GRANULAR COMPUTING PLATFORM

Best Practices for Migrating Servers to Microsoft Azure with PlateSpin Migrate

Business today runs on technology. Modernize Your Datacenter. Challenges facing IT. Modernize Your Datacenter 10/17/ % Enterprise IT

BERLIN. 2015, Amazon Web Services, Inc. or its affiliates. All rights reserved

Azure Stack: The hybrid cloud revolution

FIREFLY ARCHITECTURE: CO-BROWSING AT SCALE FOR THE ENTERPRISE

PrepAwayExam. High-efficient Exam Materials are the best high pass-rate Exam Dumps

Storage Systems for Serverless Analytics

Pulse Secure Application Delivery

MyCloud Computing Business computing in the cloud, ready to go in minutes

Application Placement and Demand Distribution in a Global Elastic Cloud: A Unified Approach

Secure Internet of Things Project Overview. Philip Levis, Faculty Director SITP 2018 Retreat Santa Cruz, CA

VMWARE SERVICE PROVIDER PROGRAM PRODUCT USAGE GUIDE Q2

Vernetzte Fahrerassistenzsysteme (BMW + AWS ) Hazard Preview

Serverless Architecture Hochskalierbare Anwendungen ohne Server. Sascha Möllering, Solutions Architect

Introduction to the Internet

Oracle IaaS, a modern felhő infrastruktúra

Cloud platforms. T Mobile Systems Programming

Kubernetes made easy with Docker EE. Patrick van der Bleek Sr. Solutions Engineer NEMEA

Retiring Technical Debt and leveraging existing Microsoft licenses on AWS

Security Aspekts on Services for Serverless Architectures. Bertram Dorn EMEA Specialized Solutions Architect Security and Compliance

SERVERS TO SERVICES HOW MICROSOFT AZURE CAN MODERNISE YOUR IT INFRASTRUCTURE. Joey Lau 9 November 2017

The Windows Azure Platform: A Perspective

High Availability Distributed (Micro-)services. Clemens Vasters Microsoft

Cloud-Security: Show-Stopper or Enabling Technology?

Peeking Behind the Curtains of Serverless Platforms

Training on Amazon AWS Cloud Computing. Course Content

SafeBricks: Shielding Network Functions in the Cloud

The Software Driven Datacenter

AWS Storage Gateway. Not your father s hybrid storage. University of Arizona IT Summit October 23, Jay Vagalatos, AWS Solutions Architect

Amazon Web Services (AWS) Solutions Architect Intermediate Level Course Content

Copyright 2012 EMC Corporation. All rights reserved.

Network Implications of Cloud Computing Presentation to Internet2 Meeting November 4, 2010

Cisco Tetration Analytics

IBM Cloud Internet Services: Optimizing security to protect your web applications

Data Centers and Cloud Computing. Slides courtesy of Tim Wood

Managing and Auditing Organizational Migration to the Cloud TELASA SECURITY

A Cloud in Every Home. Host servers at home with zero sysadmin skills

My verizon financial services phone number

Architecting for the.

Microservices Architekturen aufbauen, aber wie?

Christopher Covert. Principal Product Manager Enterprise Solutions Group. Copyright 2016 Symantec Endpoint Protection Cloud

Azure SQL Database for Gaming Industry Workloads Technical Whitepaper

Lecture 44 Blockchain Security I (Overview)

Data Centers and Cloud Computing. Data Centers

Successfully migrate existing databases to Azure SQL Database. John Sterrett Principal Consultant

TIBCO Cloud Integration Security Overview

Copyright 2011 Trend Micro Inc.

Modern Data Warehouse The New Approach to Azure BI

Oracle Autonomous Database

Hyper-Convergence De-mystified. Francis O Haire Group Technology Director

Hybrid Cloud for Business Communications

The OnApp Cloud Platform

Randy Pagels Sr. Developer Technology Specialist DX US Team AZURE PRIMED

ActiveNET. #202, Manjeera Plaza, Opp: Aditya Park Inn, Ameerpetet HYD

Key aspects of cloud computing. Towards fuller utilization. Two main sources of resource demand. Cluster Scheduling

WLS Neue Optionen braucht das Land

CLOUD ECONOMICS: HOW TO QUANTIFY THE BENEFITS OF MOVING TO THE CLOUD

Delivering Complex Enterprise Applications via Hybrid Clouds

Microservices on AWS. Matthias Jung, Solutions Architect AWS

Cloud platforms T Mobile Systems Programming

Building an Operating System for AI

Transcription:

DIY Hosting for Online Privacy Shoumik Palkar and Matei Zaharia Stanford University Appeared at HotNets 2017

Before: A Federated Internet The Internet and its protocols were designed to be federated Organizations would host own email, chat, and file transfer servers and manage their own data!

Today: The Era of Centralized Services Centralized services store data for organization. Organizations trade control of data for high availability at low cost Highly Available Centralized Service (e.g., Gmail, Slack, Office 365)

Why Do We Use Centralized Services? They provide high availability at low cost + Failover Configuration + Geo-replication + Auto-scaling + etc. etc. etc. Strawman: Hosting your own tiny EC2 VM costs $4.50/month High availability costs even more

A New Hope: Serverless Computing Serverless computing: The availability of a top-tier cloud provider, but zero cost when idle Functions that run only when request is made, billed at 100 ms granularity Monthly Cost ($) 6 5 4 3 2 1 0 Most users are here. What does this mean? Lambda EC2 0 1500000 3000000 Monthly Requests

Deploy It Yourself: Taking Back the Internet Users run personal web applications using serverless computing platforms. High availability, low cost, and privacy for the first time.

Deploy It Yourself (DIY) Architecture Serverless Platform Key Service Email Key Load Balancer Storage Service Encrypted user data

Deploy It Yourself (DIY) Architecture Serverless Platform Key Service Email Key Load Balancer Storage Service Encrypted user data 1. Register Serverless Function

Deploy It Yourself (DIY) Architecture Serverless Platform Key Service Email Key Load Balancer Storage Service Encrypted user data 2. Configure a cloud storage provider

Deploy It Yourself (DIY) Architecture Serverless Platform Key Service Email Key Load Balancer Storage Service Encrypted user data 3. Register Key with a Key Service

Deploy It Yourself (DIY) Architecture Serverless Platform Key Service Email Key Load Balancer Storage Service Encrypted user data

Why is DIY More Secure? 1. Narrow boundary between data and service vs. centralized service: many internal systems can access user data 2. Stored data is encrypted to prevent leaks vs. centralized service: employees access data to monetize it. 3. Cloud providers minimize data access internally vs. centralized service: EULAs state data can be used for ad targeting, etc. etc. 4. Ability to migrate data off insecure clouds and regions vs. centralized service: generally, no control over where data lives.

Why is DIY More Secure*? 1. Narrow boundary between data and service vs. centralized service: many internal systems can access user data 2. Stored data is encrypted to prevent leaks vs. centralized service: employees access data to monetize it. 3. Cloud providers minimize data access internally. vs. centralized service: EULAs state data can be used for ad targeting, etc. etc. 4. Ability to migrate data off insecure clouds and regions vs. centralized service: generally, no control over where data lives. *Assumes the function code, isolation mechanisms, and key service are trusted.

Threat Model Trusted

Threat Model Trusted Serverless Computing Platform Isolation Function containers must hide execution and function state* *Could one day be attested and secured using hardware enclaves?

Threat Model Trusted Serverless Computing Platform Isolation Key Management Service Protecting access to users keys* *Management services already secured via enclaves today, have strict EULAs

Threat Model Trusted Serverless Computing Platform Isolation Key Management Service Function Code Function code must not leak data or have critical bugs

Threat Model Trusted Serverless Computing Platform Isolation Key Management Service Function Code Untrusted Internal Network Storage service and other cloud services Internet traffic between user and cloud provider

DIY Architecture Serverless Platform Key Service Email Key Load Balancer Storage Service Encrypted user data Trusted Components

DIY Architecture Serverless Platform Key Service Email Key Load Balancer Storage Service Encrypted user data Simple enough to be secured via hardware enclaves

What DIY Protects Against Snooping employees Data mining and sale Buggy or insecure software Government Surveillance J J K L

Rest of this Talk 1. Back-of-the-Envelope Costs 2. Chat Prototype and Challenges 3. A Marketplace for DIY

Back-of-the-Envelope Costs Application Daily Requests Compute / Request Memory Persistent Storage Monthly Cost Group Chat 2000 500 ms 128 MB 2 GB $0.14 Email 500 500 ms 128 MB 5 GB $0.21 File Transfer 100 2000 ms 1 GB 2 GB $0.14 IoT Control 100 500 ms 128 MB 1 GB $0.12 Video Chat* 1 15 min call 1.7 GB 1 GB $0.84 Comparison: un-replicated EC2 t2.nano server (500 MB, CPU burst only) = $4.50/month *On a billed-per-second VM.

Chat Prototype and Challenges Encrypted Storage Challenge 1: Asynchronous communication (reading messages without keeping Lambda running) HTTPS Endpoint HTTPS SQS SQS used to allow client polling without running Lambda function continuously. Challenge 2: Latency with Pay- Per-Request Storage Append small objects to S3.

Chat Prototype and Challenges Encrypted Storage 200ms Response Time. (Most time spent in reading from SQS queue and posting to S3) HTTPS Endpoint HTTPS SQS 25,000 messages/month at no cost. Including SQS and Lambda compute. + additional $0.09/mo. For storage

Bringing DIY Applications to Everyone Cloud provider manages: Installation Permissions/Signing Updates etc. etc. Available on the DIY App Store For Users Privacy with automatic low cost and availability For Developers Faster innovation: No need to manage a full multitenant scalable service

Conclusion DIY could revolutionize how we run web applications by offering privacy, high availability, and low cost for the first time. https://www.shoumik.xyz @sppalkia sppalkia shoumik@cs.stanford.edu

Related Work E2E Encrypted apps (e.g., Signal, WhatsApp) Don t support server side computation P2P Social Networks (e.g., Diaspora) Could be hosted on top of serverless platforms? No-trust cryptographic protocols (e.g., Dissent, Pung) Stronger security guarantees, but harder to deploy

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback