Airavat: Security and Privacy for MapReduce
- Indrajit Roy ,
- Srinath Setty ,
- Ann Kilzer ,
- Vitaly Shmatikov ,
- Emmett Witchel
Symposium on Networked Systems Design and Implementation (NSDI) |
Published by USENIX - Advanced Computing Systems Association
We present Airavat, a Map Reduce-based system which provides strong security and privacy guarantees for distributed computations on sensitive data. Airavat is a novel integration of mandatory access control and differential privacy. Data providers control the security policy for their sensitive data, including a mathematical bound on potential privacy violations. Users without security expertise can perform computations on the data, but Airavat confines these computations, preventing information leakage beyond the data provider’s policy. Our prototype implementation demonstrates the flexibilityofAiravatonseveralcasestudies. The prototype is efficient, with run times on Amazon’s cloud computing infrastructure within 32% of a MapReduce system with no security.