Controlling secure processing of confidential data in untrusted devices

Assignee

• MICROSOFT TECHNOLOGY LICENSING, LLC · US

Inventors

• Arvind Arasu · Bothell, US
• Kenneth Eguro · Redmond, US
• Manas Rajendra Joglekar · Mountain View, US
• Raghav Kaushik · Kirkland, US
• Donald Kossmann · Kirkland, US
• Ravishankar Ramamurthy · Redmond, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L2463/062
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

A number of transmissions of secure data communicated between a secure trusted device and an unsecure untrusted device in a DBMS is controlled. The data is communicated for database transaction processing in the secure trusted device. The number of transmissions may be controlled by receiving, from the untrusted device, an encrypted key value of a key and a representation of an index of a B-tree structure, decrypting, at the trusted device, the key and one or more encrypted index values, and initiating a transmission, a pointer value that identifies a lookup position in the index for the key. The index comprises secure, encrypted index values. Other optimizations for secure processing are also described, including controlling available computation resources on a secure trusted device in a DBMS and controlling transmissions of secure data that is communicated between a secure trusted device and an unsecure untrusted device in a DBMS.