Embedded devices security: design and implementation of a light RDBMS encryption utilizing multi-core processors
The pervasive proliferation of embedded, mobile, and IoT devices continue to change our lifestyle dramatically. However, the huge increase in these devices has come with critical breaches to data resting inside them. Many types of such data are considered to be sensitive and confidential. Because th...
Saved in:
| Main Authors: | , , , , , , , |
|---|---|
| Format: | Article |
| Published: |
Institute of Electrical and Electronics Engineers
2023
|
| Online Access: | http://psasir.upm.edu.my/id/eprint/107654/ https://ieeexplore.ieee.org/document/10050501/ |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| id |
my.upm.eprints.107654 |
|---|---|
| record_format |
eprints |
| spelling |
my.upm.eprints.1076542024-09-12T07:50:14Z http://psasir.upm.edu.my/id/eprint/107654/ Embedded devices security: design and implementation of a light RDBMS encryption utilizing multi-core processors Alomari, Mohammad Ahmed Aris, Hazleen Ghaleb, Mukhtar Almurtadha, Yahya Alkawsi, Gamal Abdulnaser Al-Hadi, Ismail Ahmad Al-Qasem Baashar, Yahia Samsudin, Khairulmizam The pervasive proliferation of embedded, mobile, and IoT devices continue to change our lifestyle dramatically. However, the huge increase in these devices has come with critical breaches to data resting inside them. Many types of such data are considered to be sensitive and confidential. Because the most sensitive data of such devices are resting in databases, focusing on encrypting SQLite databases will be more efficient than full disk encryption (FDE). While SQLite is a very popular, lightweight, and easy-to-use relational database suitable for embedded and mobile devices, its stored data suffers serious security risks. If an attacker can gain access to higher system privileges or find a way to access the database plain file, he can tamper with the database files and user-sensitive data, which breaches the security CIA triad of SQLite. To ensure data confidentiality in SQLite databases of embedded devices, we present a design and implementation of a parallel database encryption system, called SQLite-XTS. The developed system encrypts the database pages on- the-fly in a transparent manner without user intervention. Because performance is a critical issue, SQLite-XTS utilizes multi-core processors coming with most current mobile and embedded devices. The developed parallel SQLite-XTS was successfully implemented and integrated into a testbed device. To assess the performance and feasibility of this system, it was compared to three other SQLite implementations: plain SQLite, serial XTS SQLite, and SQLCipher-CBC. The results show that SQLite-XTS reduces the overhead of database encryption from 30.8 with serial implementation to 17.8 when SQLite-XTS is used. This provides the developed system with an efficiency of 73 compared with its serial counterpart. The results clarify that SQLite-XTS introduces significant performance improvements compared to other implementations. Experiments also show that the system has a very low impact on the memory of these resource-limited devices. Institute of Electrical and Electronics Engineers 2023-02-23 Article PeerReviewed Alomari, Mohammad Ahmed and Aris, Hazleen and Ghaleb, Mukhtar and Almurtadha, Yahya and Alkawsi, Gamal Abdulnaser and Al-Hadi, Ismail Ahmad Al-Qasem and Baashar, Yahia and Samsudin, Khairulmizam (2023) Embedded devices security: design and implementation of a light RDBMS encryption utilizing multi-core processors. IEEE Access, 11. pp. 19836-19848. ISSN 2169-3536 https://ieeexplore.ieee.org/document/10050501/ 10.1109/access.2023.3248300 |
| institution |
Universiti Putra Malaysia |
| building |
UPM Library |
| collection |
Institutional Repository |
| continent |
Asia |
| country |
Malaysia |
| content_provider |
Universiti Putra Malaysia |
| content_source |
UPM Institutional Repository |
| url_provider |
http://psasir.upm.edu.my/ |
| description |
The pervasive proliferation of embedded, mobile, and IoT devices continue to change our lifestyle dramatically. However, the huge increase in these devices has come with critical breaches to data resting inside them. Many types of such data are considered to be sensitive and confidential. Because the most sensitive data of such devices are resting in databases, focusing on encrypting SQLite databases will be more efficient than full disk encryption (FDE). While SQLite is a very popular, lightweight, and easy-to-use relational database suitable for embedded and mobile devices, its stored data suffers serious security risks. If an attacker can gain access to higher system privileges or find a way to access the database plain file, he can tamper with the database files and user-sensitive data, which breaches the security CIA triad of SQLite. To ensure data confidentiality in SQLite databases of embedded devices, we present a design and implementation of a parallel database encryption system, called SQLite-XTS. The developed system encrypts the database pages on- the-fly in a transparent manner without user intervention. Because performance is a critical issue, SQLite-XTS utilizes multi-core processors coming with most current mobile and embedded devices. The developed parallel SQLite-XTS was successfully implemented and integrated into a testbed device. To assess the performance and feasibility of this system, it was compared to three other SQLite implementations: plain SQLite, serial XTS SQLite, and SQLCipher-CBC. The results show that SQLite-XTS reduces the overhead of database encryption from 30.8 with serial implementation to 17.8 when SQLite-XTS is used. This provides the developed system with an efficiency of 73 compared with its serial counterpart. The results clarify that SQLite-XTS introduces significant performance improvements compared to other implementations. Experiments also show that the system has a very low impact on the memory of these resource-limited devices. |
| format |
Article |
| author |
Alomari, Mohammad Ahmed Aris, Hazleen Ghaleb, Mukhtar Almurtadha, Yahya Alkawsi, Gamal Abdulnaser Al-Hadi, Ismail Ahmad Al-Qasem Baashar, Yahia Samsudin, Khairulmizam |
| spellingShingle |
Alomari, Mohammad Ahmed Aris, Hazleen Ghaleb, Mukhtar Almurtadha, Yahya Alkawsi, Gamal Abdulnaser Al-Hadi, Ismail Ahmad Al-Qasem Baashar, Yahia Samsudin, Khairulmizam Embedded devices security: design and implementation of a light RDBMS encryption utilizing multi-core processors |
| author_facet |
Alomari, Mohammad Ahmed Aris, Hazleen Ghaleb, Mukhtar Almurtadha, Yahya Alkawsi, Gamal Abdulnaser Al-Hadi, Ismail Ahmad Al-Qasem Baashar, Yahia Samsudin, Khairulmizam |
| author_sort |
Alomari, Mohammad Ahmed |
| title |
Embedded devices security: design and implementation of a light RDBMS encryption utilizing multi-core processors |
| title_short |
Embedded devices security: design and implementation of a light RDBMS encryption utilizing multi-core processors |
| title_full |
Embedded devices security: design and implementation of a light RDBMS encryption utilizing multi-core processors |
| title_fullStr |
Embedded devices security: design and implementation of a light RDBMS encryption utilizing multi-core processors |
| title_full_unstemmed |
Embedded devices security: design and implementation of a light RDBMS encryption utilizing multi-core processors |
| title_sort |
embedded devices security: design and implementation of a light rdbms encryption utilizing multi-core processors |
| publisher |
Institute of Electrical and Electronics Engineers |
| publishDate |
2023 |
| url |
http://psasir.upm.edu.my/id/eprint/107654/ https://ieeexplore.ieee.org/document/10050501/ |
| _version_ |
1811685965299712000 |
| score |
13.211869 |