ConSeal: A Secure Analytics Platform

Many types of analytics on personal data can be made differentially private, thus alleviating concerns about the privacy of individuals. However, no analytics platform currently exists that can technically prevent data leakage and misuse with minimal trust assumptions; as a result, analytics that would be in the public interest are not done in privacy-conscious societies. To bridge this gap, we present secure selective analytics (SSA), where data sources can a priori restrict the use of their data to a pre-defined set of privacy-preserving analytics queries performed by a specific group of analysts, and for a limited period. Furthermore, we show that a scalable SSA platform can be built in a strong threat model based on minimal trust.

In this talk, I will present ConSeal, an SSA platform that relies on a minimal trust implementation of functional encryption (FE), using a combination of secret sharing, secure multi-party computation (MPC), and trusted execution environments (TEEs). ConSeal tolerates the compromise of a subset of TEE implementations as well as side channels. Despite the high cost of MPC, we show that ConSeal scales to very large databases using MapReduce-based query parallelization.