TECHNOLOGY FOR CHANGE

IBM Encryption Breakthrough Could Secure Cloud Computing

R. Colin Johnson | Date: 10-14-09 | Comments

• 70
• PrintPDF
• Filed Under: Technology For Change




• IBM is working on a homomorphic encryption scheme that would allow cyphertext to be manipulated as easily as plaintext, making it perfect for modern cloud computing.

• Searching databases is usually done in the clear. And even if the query is encrypted, it has to be decrypted (revealing its contents) before it can be used by a search engine. What's worse is that databases themselves are stored as plaintext, available to anyone gaining access. The smarter way to handle sensitive information would be to encrypt the queries, encrypt the database and search it in its encrypted form. Impossible until now, IBM's T.J. Watson Research Center (Yorktown Heights, N.Y.) recently described a "homomorphic" encryption scheme that allows encrypted data to be searched, sorted and processed without decrypting it.

  "Since public key encryption was invented, mathematicians have tried to construct a fully homomorphic encryption scheme," said Craig Gentry, a researcher at IBM. "We've found that an ideal lattice is partly homomorphic, but noise eventually drowns out the message, so what we've done is find a way to refresh it periodically so the noise becomes small again."

  Using IBM's algorithm, operations of any complexity can be performed on encrypted data, with the condition that its noise level gets periodically refreshed. Since many encryption schemes are already partially homomorphic, the key to IBM's success was the refreshing scheme.

  Even the industry-standard RSA encryption scheme—named after its inventors Rivest, Shamir and Adleman—is partially homomorphic, in that it allows simple multiplication of two encrypted numbers to yield their product. What Gentry and IBM have succeeded in crafting is a fully homomorphic encryption scheme where any mathematical operation can be made to work as expected. Fully homomorphic encryption schemes theoretically allow cyphertext to be manipulated as easily as plaintext, making it perfect for modern cloud computing, where your data is located remotely.

  "The point is to allow others to manipulate your encrypted data without revealing it to them. For example, in cloud computing you want to store your encrypted data files out on the cloud, so that you can access it from anywhere. But you would also like to be able to search your data with some combination of keywords, then just decrypt the query results," said Gentry.

  IBM's algorithm enables queries and data to remain encrypted while searching, sorting and processing, but in practice requires longer times to compute results—since encrypted operations are much more complicated. The inefficiency of the algorithm, resulting in longer execution times, is the reason IBM says homomorphic encryption is not ready for commercialization yet.

  Gentry is working to improve the algorithm's efficiency. His goal is to make it easier to perform the mathematical calculations without decreasing their security level. So far he has discovered that homomorphic encryption schemes can be scaled without explosive exponential growth—a good sign—but they still need further optimization to become efficient enough to be practical.

IBM Resources

• End to End Virtualization: A holistic approach for a dynamic environment.
• Business Analytics and Optimization Jumpstart: Embedding analytics to transform insights into action
• Cloud computing insights from 110 implementation projects
• Capturing the Potential of Cloud
• Analytics - the new path to value
• Social Business: Advent of a new age
• Becoming a Social Business: The IBM Story
• Meeting the Demands of the Smarter Consumer
• Business agility powers innovation, transformation and growth
• Inside the Midmarket - A 2011 Perspective
• Building a strong enterprise cloud foundation is critical to manage growth for SaaS providers
• Blue Cross Blue Shield of South Carolina: A Model of IT Efficiency
• A Simple Idea that Changed the World

Most Read

• Tablets, Smartphones Obsolete PowerPoint
• Top 10 Innovations of 2012
• Cloud Desktop Boosts Small Business
• Quantum Computing Almost Here
• Recent Reports Examine Smartphone Shopping Behaviors
• Tool Educates SMBs on the Cloud
• Facebook Gaming in Decline
• Meeting the Increasing Demand for Remote Internships
• New Wireless Technology Transforms the Remote

Trending

• Cloud Desktop Boosts Small Business
• Robots Construct Reconfigurable Buildings
• Facebook Gaming in Decline
• Motion Control Vaults Augmented Reality
• Nintendo Wii Diagnoses Eye Malady
• Smart Cities Win Awards
• Shipboard Humanoid Robot to Aid Navy
• Success Depends on Phrasing
• Online Video Spells Death for DVD

RELATED CONTENT

• Cloud Security Preludes Major IT Deployments
• Hardware Encryption Makes Non-Volatile Main Memory Ultra-Secure
• Look Who's Not So Worried About Data in the Cloud
• A Closer Look at Public Cloud Security
• 10 Old Technologies That Are Now the Next Big Thing
• Security Experts Warn Hackers Could Threaten More Drones Soon
• IT Security: Focus on Mobile Devices and Cloud Computing

View the IBM Smarter Analytics Leadership Summit

Videos

TWITTER FEED

• 21 minutes agoGood morning from Los Angeles! #ibmcloud
  
• 24 minutes agoThat's it from me! Over to North America.
  
• 30 minutes agoThe data processing of Roland Garros 2012 (#RG12) rests on IBM Private Cloud http://t.co/JUaY1ItM [French Press release]
  
• about 2 hours agoIBM Accelerates Business from Supply to Demand with New #Cloud Offerings For Smarter Commerce http://t.co/OFxknOb0 [Press Release]
  
• about 3 hours agoHow IBM #SmartCloud Foundation technology powers cloud adoption? IBM VP @SLHebner explains here http://t.co/sSzfa0O5 [VIDEO]
  
• about 4 hours agoIBM's Fiona Cullen will present ‘The Power of #Cloud: Driving Business Model’ On May 24 @ Utrecht, Netherlands #cloudforum2012 #ibmcloud
  
• about 5 hours agoBlog Post: Why service providers should not ignore cloud http://t.co/ZfQyue4r via @eMarcusNet #thoughtsoncloud
  
• about 6 hours agoHave any #cloudmoment? Share your story with us via Twitter, Instagram, YouTube, Facebook and tag it. See other stories http://t.co/J4ntsaQ5
  
• about 7 hours agoSign up now for IBM #SmartCloud Enterprise! No charge for select VMs (only till May 28). More Details >> http://t.co/2LEzOUZC #ibmcloud
  
• about 7 hours agoRT @HansMoen: See this video from @IBMCloud to learn how to cut costs in building innovation in your business http://t.co/XOyJoFn6 #clou ...
  
< PrevNext >

JOIN US

Like us on Facebook Follow us on Twitter Get the Smarter Tech Newsletter Register to view the archived "Data Center Optimization Techniques: Stop Wasting Time & Money" eSeminar Register Now >

Connect with the The Future of IT Architecture blog