Categories: CloudCloud Management

Microsoft Researchers ‘Solve’ Secure Cloud Data Exchange

Microsoft researchers are touting a potential security breakthrough that will give users the ability to fully control the exchange of data, securely in the cloud.

It comes after the researchers said that too often nowadays users are faced with a trade-off between data usability and security.

Cloud Exchange

Essentially, Microsoft is touting a way for encrypted data to be processed via the cloud without prior decryption. The user will also have “full control” over how much information is passed along to the other party.

It’s based on secure multiparty computation, where every entity involved gets a result without having to expose their actual encrypted data to the other parties.

“New research from Microsoft aims to unlock the full value of encrypted data by using the cloud itself to perform secure data trades between multiple willing parties in a way that provides users full control over how much information the exchange reveals,” Redmond blogged.

“What we are trying to do is keep the data private and, at the same time, get the value out of it,” said Ran Gilad-Bachrach, a researcher in the Cryptography Research group within Microsoft’s research organisation.

According to Microsoft, ‘multiparty computation’ is where “two or more parties agree to evaluate their data in a way that one or more of the parties gets a result, but none of the parties learns anything about the others’ data, except for what can be inferred from the result.”

It likened ‘multiparty computation’ to a group of employees who want to know where their individual salary is ranked in relation to the group as a whole. But at the same time no one wants their salary details to be revealed to the group. It sounds like an impossible problem to solve, but Microsoft thinks it has cracked it.

Using the above example, each employee would tell their salary (in confidence) to a trusted colleague. This colleague then calculates the average salary and shares the result with the group.

That results in the employees being able to see where their salary in ranked with their co workers, but they don’t learn how much their fellow employees are actually paid. And the trusted colleague then conveniently forgets everything.

“This secure data exchange emulates that, but without the need for the trusted colleague,” said paper co-author Peter Rindal, who is a PhD candidate doing his second internship at Microsoft. He also happens to be an expert on secure multiparty computation.

How It Works

The cloud acts as a key part of the exchange, as it becomes a “secure system to train algorithms, perform market research, conduct auctions and enable new business opportunities.”

So how does it actually work? Well the data owner encrypts his or her data and sends it to the cloud for storage. In a traditional setup, if someone wanted that data they would have to have the decrypt keys for the data sent to them by the data owner.

But since those keys can decrypt the data stored in the cloud, the cloud can’t directly share the stored data with the buyer, otherwise security and privacy would be compromised.

“Instead, we want to use the keys to decrypt the data inside a multiparty computation,” said paper co-author Kim Laine. Doing so unencrypts the data for a computation “without actually revealing anything to anyone except the result” of the computation.

Microsoft says that all of the computation is performed in the cloud, and the computation itself is encrypted in such a way that not even the cloud knows what is being computed, which protects any of the buyer’s data used in the computation such as a proprietary algorithm. If everything goes as expected, the cloud reveals the decrypted results to the interested parties.

It is worth noting that the cloud is an increasingly important revenue stream for Microsoft.

Last month Redmond revealed that revenue from Microsoft Azure had grown more than 100 percent year over year, as usage of the platform doubled.

Take our cloud in 2016 quiz!

Tom Jowitt

Tom Jowitt is a leading British tech freelancer and long standing contributor to Silicon UK. He is also a bit of a Lord of the Rings nut...

Recent Posts

The Sustainability of AI

While AI promises unparalleled efficiency, productivity, and innovation, questions regarding its environmental impact loom large.…

2 hours ago

Trump’s Truth Social Makes Successful Market Debut

Shares in Donald Trump’s social media company rose about 16 percent after first day of…

2 hours ago

Dutch PM Raises Cyber Espionage Case With China’s Xi

Beijing visit sees Dutch Prime Minister Mark Rutte discuss cyber espionage incident with Chinese President…

3 hours ago

Vodafone Germany Confirms 2,000 Job Losses, Amid European Restructuring

More downsizing at Vodafone after German operation announces 2,000 jobs will be axed, as automation…

19 hours ago

AI Poses ‘Jobs Apocalypse’, Warns Report

IPPR report warns AI could remove almost 8 million jobs in the United Kingdom, with…

20 hours ago

Europe’s Longest Hyperloop Test Track Opens

European Hyperloop Center in the Netherlands seeks to advance futuristic transport technology, despite US setbacks

21 hours ago