opaque-sql icon indicating copy to clipboard operation
opaque-sql copied to clipboard

Published 20 hours ago verified publisher icon mc2-project

Key gen

Open eric-feng-2011 opened this issue 3 years ago • 2 comments

The goal of this part is to allow Opaque enclaves to establish a shared, secret key that is not known to any untrusted party (i.e. clients, driver, etc.). This key will be used to encrypt the intermediate results in the Spark-generated DAG (with Opaque operators).

See https://drive.google.com/file/d/1EtHdv1WbyuTk4r6OGGWCNuufK6MC6SnA/view?usp=sharing

The pull requests should be done in the following order: Key-get -> gRPC reEncryption -> gRPC ServiceProvider -> gRPC Python Files

eric-feng-2011 avatar Mar 24 '21 14:03 eric-feng-2011

can you please add a description of the workflow? i.e. a sequence of steps that are taken during local attestation, and the functions that are called? the PR is a bit large, and this will help with understanding all the code that you've added. thanks!

chester-leung avatar Apr 13 '21 18:04 chester-leung

I wrote up a quick document about the steps and functions calls. I linked it in the original description, but here it is again for convenience: https://drive.google.com/file/d/1EtHdv1WbyuTk4r6OGGWCNuufK6MC6SnA/view?usp=sharing

eric-feng-2011 avatar Apr 15 '21 01:04 eric-feng-2011