Oblivious RAM: Difference between revisions

Template:Multiple issues An Oblivious RAM (ORAM) simulator is a compiler that transforms an algorithm in such a way that the resulting algorithm preserves the input-output behavior of the original algorithm but the distribution of the memory access patterns of the transformed algorithm is independent of the memory access pattern of the original algorithm.

The use of ORAMs is motivated by the fact that an adversary can obtain nontrivial information about the execution of a program and the data that the program is using just by observing the pattern in which the program accesses various memory locations during its execution. An adversary can get this information even if the data in memory is encrypted.

This definition is suited for settings like protected programs running on unprotected shared memory or clients running programs on their systems by accessing previously stored data on a remote server. The concept was formulated by Oded Goldreich and Rafail Ostrovsky in 1996.^[1]

A Turing machine (TM), a mathematical abstraction of a real computer (program), is said to be oblivious if, for any two inputs of the same length, the motions of the tape heads remain the same. Pippenger and Fischer^[2] proved that every TM with running time ${\displaystyle T(n)}$ can be made oblivious and that the running time of the oblivious TM is ${\displaystyle O(T(n)\log T(n))}$. A more realistic model of computation is the RAM model. In the RAM model of computation, there is a CPU that can execute the basic mathematical, logical, and control instructions. The CPU is also associated with a few registers and a physical random access memory, where it stores the operands of its instructions. The CPU also has instructions to read the contents of a memory cell and write a specific value to a memory cell. The definition of ORAMs captures a similar notion of obliviousness for memory accesses in the RAM model.

Informally, an ORAM is an algorithm at the interface of a protected CPU and the physical RAM such that it acts like a RAM to the CPU by querying the physical RAM for the CPU while hiding information about the actual memory access pattern of the CPU from the physical RAM. In other words, the distribution of memory accesses of two programs that make the same number of memory accesses to the RAM is indistinguishable from each other. This description will still make sense if the CPU is replaced by a client with a small storage and the physical RAM is replaced with a remote server with a large storage capacity, where the data of the client resides.

The following is a formal definition of ORAMs. Let ${\displaystyle \mathrm{\Pi }}$ denote a program requiring memory of size ${\displaystyle n}$ when executing on an input ${\displaystyle x}$. Suppose that ${\displaystyle \mathrm{\Pi }}$ has instructions for basic mathematical and control operations in addition to two special instructions ${\displaystyle 𝗋𝖾𝖺𝖽(l)}$ and ${\displaystyle 𝗐𝗋𝗂𝗍𝖾(l,v)}$, where ${\displaystyle 𝗋𝖾𝖺𝖽(l)}$ reads the value at location ${\displaystyle l}$ and ${\displaystyle 𝗐𝗋𝗂𝗍𝖾(l,v)}$ writes the value ${\displaystyle v}$ to ${\displaystyle l}$. The sequence of memory cells accessed by a program ${\displaystyle \mathrm{\Pi }}$ during its execution is called its memory access pattern and is denoted by ${\displaystyle \tilde{\mathrm{\Pi }}(n,x)}$.

A polynomial-time algorithm ${\displaystyle C}$ is an Oblivious RAM (ORAM) compiler with computational overhead ${\displaystyle c(\cdot )}$ and memory overhead ${\displaystyle m(\cdot )}$, if ${\displaystyle C}$ given ${\displaystyle n\in N}$ and a deterministic RAM program ${\displaystyle \mathrm{\Pi }}$ with memory-size ${\displaystyle n}$ outputs a program ${\displaystyle {\mathrm{\Pi }}_0}$ with memory-size ${\displaystyle m(n)\cdot n}$ such that for any input ${\displaystyle x}$, the running-time of ${\displaystyle {\mathrm{\Pi }}_0(n,x)}$ is bounded by ${\displaystyle c(n)\cdot T}$ where ${\displaystyle T}$ is the running-time of ${\displaystyle \mathrm{\Pi }(n,x)}$, and there exists a negligible function ${\displaystyle \mu }$ such that the following properties hold:

• Correctness: For any ${\displaystyle n\in \mathbb{N}}$ and any string ${\displaystyle x\in \{0,1{\}}^{*}}$, with probability at least ${\displaystyle 1-\mu (n)}$, ${\displaystyle \mathrm{\Pi }(n,x)={\mathrm{\Pi }}_0(n,x)}$.
• Obliviousness: For any two programs ${\displaystyle {\mathrm{\Pi }}_1,{\mathrm{\Pi }}_2}$, any ${\displaystyle n\in \mathbb{N}}$ and any two inputs, ${\displaystyle x_1,x_2\in \{0,1{\}}^{*}}$ if ${\displaystyle |{\tilde{\mathrm{\Pi }}}_1(n,x_1)|=|{\tilde{\mathrm{\Pi }}}_2(n,x_2)|}$, then ${\displaystyle {\tilde{\mathrm{\Pi }}}_1\text{'}(n,x_1)}$ is ${\displaystyle \mu }$-close to ${\displaystyle {\tilde{\mathrm{\Pi }}}_2\text{'}(n,x_2)}$ in statistical distance, where ${\displaystyle {\mathrm{\Pi }}_1\text{'}=C(n,{\mathrm{\Pi }}_1)}$ and ${\displaystyle {\mathrm{\Pi }}_2\text{'}=C(n,{\mathrm{\Pi }}_2)}$.

Note that the above definition uses the notion of statistical security. One can also have a similar definition for the notion of computational security.^[3]

ORAMs were introduced by Goldreich and Ostrovsky,^[4][5][1] where the key motivation was stated as providing software protection from an adversary who can observe a program's memory access pattern (but not the contents of the memory).

The main result in this work^[1] is that there exists an ORAM compiler that uses ${\displaystyle O(n)}$ server space and incurs a running time overhead of ${\displaystyle O({\log }^{3}n)}$ when making a program that uses ${\displaystyle n}$ memory cells oblivious. There are several attributes that need to be considered when comparing various ORAM constructions. The most important parameters of an ORAM construction's performance are the client-side space overhead, server-side space overhead, and the time overhead required to make one memory access. Based on these attributes, the construction of Asharov et al.,^[6] called "OptORAMa", is the first optimal ORAM construction. It achieves ${\displaystyle O(1)}$ client storage, ${\displaystyle O(n)}$ server storage, and ${\displaystyle O(\log n)}$ access overhead, matching the known lower bounds.

Another important attribute of an ORAM construction is whether the access overhead is amortized or worst-case. Several earlier ORAM constructions have good amortized access overhead guarantees but have ${\displaystyle \mathrm{\Omega }(N)}$ worst-case access overheads. Some ORAM constructions with polylogarithmic worst-case computational overheads are.^{[7][8][9][10][11][12]} The constructions of^[4][5][1] were in the random oracle model, where the client assumes access to an oracle that behaves like a random function and returns consistent answers for repeated queries. Access to the oracle could be replaced by a pseudorandom function whose seed is a secret key stored by the client, if one assumes the existence of one-way functions. The papers^[13][14] were aimed at removing this assumption completely. The authors of^[14] also achieve an access overhead of ${\displaystyle O({\log }^{3}n)}$

While most of the earlier works focus on proving security computationally, there are more recent works^{[3][10][13][14]} that use the stronger statistical notion of security.

One of the only known lower bounds on the access overhead of ORAMs is due to Goldreich et al.^[1] They show a ${\displaystyle \mathrm{\Omega }(\log n)}$ lower bound for ORAM access overhead, where ${\displaystyle n}$ is the data size. Another lower bound is by Larsen and Nielsen.^[15] There is also a conditional lower bound on the access overhead of ORAMs due to Boyle et al.^[16] that relates this quantity with that of the size of sorting networks.

A trivial ORAM simulator construction, for each read or write operation, reads from and writes to every single element in the array, only performing a meaningful action for the address specified in that single operation. The trivial solution thus, scans through the entire memory for each operation. This scheme incurs a time overhead of ${\displaystyle \mathrm{\Omega }(n)}$ for each memory operation, where Template:Mvar is the size of the memory.

A simple version of a statistically secure ORAM compiler constructed by Chung and Pass^[3] is described in the following along with an overview of a proof of its correctness. The compiler on input Template:Mvar and a program Template:Math with its memory requirement Template:Mvar, outputs an equivalent oblivious program Template:Math.

If the input program Template:Math uses Template:Mvar registers, the output program Template:Math will need ${\displaystyle r+n/\alpha +\text{poly}\log n}$ registers, where ${\displaystyle \alpha >1}$ is a parameter of the construction. Template:Math uses ${\displaystyle O(n\text{ poly}\log n)}$ memory and its (worst-case) access overhead is ${\displaystyle O(\text{poly}\log n)}$.

The ORAM compiler is very simple to describe. Suppose that the original program Template:Math has instructions for basic mathematical and control operations in addition to two special instructions ${\displaystyle 𝗋𝖾𝖺𝖽(l)}$ and ${\displaystyle 𝗐𝗋𝗂𝗍𝖾(l,v)}$, where ${\displaystyle 𝗋𝖾𝖺𝖽(l)}$ reads the value at location Template:Mvar and ${\displaystyle 𝗐𝗋𝗂𝗍𝖾(l,v)}$ writes the value Template:Mvar to Template:Mvar. The ORAM compiler, when constructing Template:Math, simply replaces each Template:Sans-serif and Template:Sans-serif instructions with subroutines Template:Sans-serif and Template:Sans-serif and keeps the rest of the program the same. It may be noted that this construction can be made to work even for memory requests coming in an online fashion.

The program Template:Math stores a complete binary tree Template:Mvar of depth ${\displaystyle d=\log (n/\alpha )}$ in its memory. Each node in Template:Mvar is represented by a binary string of length at most Template:Mvar. The root is the empty string, denoted by Template:Mvar. The left and right children of a node represented by the string ${\displaystyle \gamma }$ are ${\displaystyle {\gamma }_0}$ and ${\displaystyle {\gamma }_1}$ respectively. The program Template:Math thinks of the memory of Template:Math as being partitioned into blocks, where each block is a contiguous sequence of memory cells of size Template:Mvar. Thus, there are at most ${\displaystyle \lceil n/\alpha \rceil }$ blocks in total. In other words, the memory cell Template:Mvar corresponds to block ${\displaystyle b=\lfloor r/\alpha \rfloor }$.

At any point in time, there is an association between the blocks and the leaves in Template:Mvar. To keep track of this association, Template:Math also stores a data structure called a position map, denoted by ${\displaystyle Pos}$, using ${\displaystyle O(n/\alpha )}$ registers. This data structure, for each block Template:Mvar, stores the leaf of Template:Mvar associated with Template:Mvar in ${\displaystyle Pos(b)}$.

Each node in Template:Mvar contains an array with at most Template:Mvar triples. Each triple is of the form ${\displaystyle (b,Pos(b),v)}$, where Template:Mvar is a block identifier and Template:Mvar is the contents of the block. Here, Template:Mvar is a security parameter and is ${\displaystyle O(\text{poly}\log n)}$.

The program Template:Math starts by initializing its memory as well as registers to Template:Math. Describing the procedures, Template:Sans-serif and Template:Sans-serif is enough to complete the description of Template:Math. The sub-routine Template:Sans-serif is given below. The inputs to the sub-routine are a memory location ${\displaystyle l\in [n]}$ and the value Template:Mvar to be stored at the location Template:Mvar. It has three main phases, namely FETCH, PUT_BACK, and FLUSH.

 input: a location Template:Mvar, a value Template:Mvar

 Procedure FETCH  // Search for the required block.
   ${\displaystyle b\leftarrow \lfloor l/\alpha \rfloor }$    // Template:Mvar is the block containing Template:Mvar.
   ${\displaystyle i\leftarrow lmod\alpha }$    // Template:Mvar is Template:Mvar's component in block Template:Mvar.
   ${\displaystyle pos\leftarrow Pos(b)}$
   if ${\displaystyle pos=\perp }$ then ${\displaystyle pos{\leftarrow }_R[n/\alpha ]}$.    // Set Template:Mvar to a uniformly random leaf in Template:Mvar.
   flag ${\displaystyle \leftarrow 0}$.
   for each node Template:Mvar on the path from the root to Template:Mvar do
     if Template:Mvar has a triple of the form ${\displaystyle (b,pos,x)}$ then
       Remove ${\displaystyle (b,pos,x)}$ from Template:Mvar, store Template:Mvar in a register, and write back the updated Template:Mvar to Template:Mvar.
       flag ${\displaystyle \leftarrow 1}$.
     else
       Write back Template:Mvar to Template:Mvar.

 Procedure PUT_BACK  // Add back the updated block at the root.
   ${\displaystyle po{s}^{\prime }{\leftarrow }_R[n/\alpha ]}$.  // Set Template:Mvar to a uniformly random leaf in Template:Mvar.
   if flag${\displaystyle =1}$ then
     Set Template:Mvar to be the same as Template:Mvar except for Template:Mvar at the Template:Mvar-th position.
   else
     Set Template:Mvar to be a block with Template:Mvar at Template:Mvar-th position and Template:Math's everywhere else.
   if there is space left in the root then
     Add the triple ${\displaystyle (b,po{s}^{\prime },x^{\prime })}$ to the root of Template:Mvar.
   else
     Abort outputting overflow.

 Procedure FLUSH  // Push the blocks present in a random path as far down as possible.
   ${\displaystyle po{s}^{*}{\leftarrow }_R[n/\alpha ]}$.  // Set ${\displaystyle po{s}^{*}}$ to a uniformly random leaf in Template:Mvar.
   for each triple ${\displaystyle (b^{″},po{s}^{″},v^{″})}$ in the nodes traversed the path from the root to ${\displaystyle po{s}^{*}}$
     Push down this triple to the node Template:Mvar that corresponds to the longest common prefix of ${\displaystyle po{s}^{″}}$ and ${\displaystyle po{s}^{*}}$.
     if at any point some bucket is about to overflow then
       Abort outputting overflow.

The task of the FETCH phase is to look for the location Template:Mvar in the tree Template:Mvar. Suppose Template:Mvar is the leaf associated with the block containing location Template:Mvar. For each node Template:Mvar in Template:Mvar on the path from root to Template:Mvar, this procedure goes over all triples in Template:Mvar and looks for the triple corresponding to the block containing Template:Mvar. If it finds that triple in Template:Mvar, it removes the triple from Template:Mvar and writes back the updated state of Template:Mvar. Otherwise, it simply writes back the whole node Template:Mvar.

In the next phase, it updates the block containing Template:Mvar with the new value Template:Mvar, associates that block with a freshly sampled uniformly random leaf of the tree, and writes back the updated triple to the root of Template:Mvar.

The last phase, which is called FLUSH, is an additional operation to release the memory cells in the root and other higher internal nodes. Specifically, the algorithm chooses a uniformly random leaf ${\displaystyle po{s}^{*}}$ and then tries to push down every node as much as possible along the path from root to ${\displaystyle po{s}^{*}}$. It aborts outputting an overflow if at any point some bucket is about to overflow its capacity.

The sub-routine Template:Sans-serif is similar to Template:Sans-serif. For the Template:Sans-serif sub-routine, the input is just a memory location ${\displaystyle l\in [n]}$ and it is almost the same as Template:Sans-serif. In the FETCH stage, if it does not find a triple corresponding to location Template:Mvar, it returns Template:Math as the value at location Template:Mvar. In the PUT_BACK phase, it will write back the same block that it read to the root, after associating it with a freshly sampled uniformly random leaf.

Let Template:Mvar stand for the ORAM compiler that was described above. Given a program Template:Math, let Template:Math denote ${\displaystyle C(\mathrm{\Pi })}$. Let ${\displaystyle \mathrm{\Pi }(n,x)}$ denote the execution of the program Template:Math on an input Template:Mvar using Template:Mvar memory cells. Also, let ${\displaystyle \tilde{\mathrm{\Pi }}(n,x)}$ denote the memory access pattern of ${\displaystyle \mathrm{\Pi }(n,x)}$. Let Template:Mvar denote a function such that for any ${\displaystyle n\in \mathbb{N}}$, for any program Template:Math and for any input ${\displaystyle x\in \{0,1{\}}^{*}}$, the probability that ${\displaystyle {\mathrm{\Pi }}^{\prime }(n,x)}$ outputs an overflow is at most ${\displaystyle \mu (n)}$. The following lemma is easy to see from the description of Template:Mvar.

Equivalence Lemma

Let ${\displaystyle n\in \mathbb{N}}$ and ${\displaystyle x\in \{0,1{\}}^{*}}$. Given a program Template:Math, with probability at least ${\displaystyle 1-\mu (n)}$, the output of ${\displaystyle {\mathrm{\Pi }}^{\prime }(n,x)}$ is identical to the output of ${\displaystyle \mathrm{\Pi }(n,x)}$.

It is easy to see that each Template:Sans-serif and Template:Sans-serif operation traverses root-to-leaf paths in Template:Mvar chosen uniformly and independently at random. This fact implies that the distribution of memory access patterns of any two programs that make the same number of memory accesses are indistinguishable if they both do not overflow.

Obliviousness Lemma

Given two programs Template:Tmath and Template:Tmath and two inputs ${\displaystyle x_1,x_2\in \{0,1{\}}^{*}}$ such that ${\displaystyle |\widetilde{{\mathrm{\Pi }}_1}(x_1,n)|=|\widetilde{{\mathrm{\Pi }}_2}(x_2,n)|}$, with probability at least ${\displaystyle 1-2\mu (n)}$, the access patterns ${\displaystyle \stackrel{~}{{{\mathrm{\Pi }}_1}^{\prime }}(x_1,n)}$ and ${\displaystyle \stackrel{~}{{{\mathrm{\Pi }}_2}^{\prime }}(x_2,n)}$ are identical.

The following lemma completes the proof of correctness of the ORAM scheme.

Overflow Lemma

There exists a negligible function Template:Mvar such that for every program Template:Math, every Template:Mvar and input Template:Mvar, the program ${\displaystyle {\mathrm{\Pi }}^{\prime }(n,x)}$ outputs overflow with probability at most ${\displaystyle \mu (n)}$.

During each Template:Sans-serif and Template:Sans-serif operation, two random root-to-leaf paths of Template:Mvar are fully explored by Template:Math. This takes ${\displaystyle O(K\cdot \log (n/\alpha ))}$ time. This is the same as the computational overhead and is ${\displaystyle O(\text{poly}\log n)}$ since Template:Mvar is ${\displaystyle O(\text{poly}\log n)}$.

The total memory used up by Template:Math is equal to the size of Template:Mvar. Each triple stored in the tree has ${\displaystyle \alpha +2}$ words in it and thus there are ${\displaystyle K(\alpha +2)}$ words per node of the tree. Since the total number of nodes in the tree is ${\displaystyle O(n/\alpha )}$, the total memory size is ${\displaystyle O(nK)}$ words, which is ${\displaystyle O(n\text{ poly}\log n)}$. Hence, the memory overhead of the construction is ${\displaystyle O(\text{poly}\log n)}$.

Template:Reflist

• Oblivious data structure
• Cache-oblivious algorithm