TY - GEN
T1 - Confidential Analytics with Scylla
AU - Mangipudi, Shamiek
AU - Chuprikov, Pavel
AU - Prendi, Gerald
AU - Eugster, Patrick
N1 - Publisher Copyright:
© 2025 Copyright held by the owner/author(s).
PY - 2026/1/13
Y1 - 2026/1/13
N2 - While security concerns of data at rest and in transit have been addressed over the years using standard cryptographic measures, those surrounding data in use have garnered significant attention in recent times. In response, various trusted execution environments (TEEs) have been proposed and are on offer from leading public cloud providers. With development and re-programming efforts, availability, threat models, pricing, performance, etc., differing between various TEEs themselves and also with viable alternatives such as software solutions like partially homomorphic encryption (PHE) to protect data in use, it is imperative to have a system that is independent of these several varying dimensions while also efficiently achieving end-to-end confidentiality guarantees on data processing.We propose Scylla, a mechanism-agnostic confidential analytics framework, built on top of the popular Spark data analytics engine. Scylla utilizes a customizable combination of TEEs and PHE schemes to achieve end-to-end confidentiality guarantees with prime performance. Our evaluation shows that Scylla's query execution times are 1.91× faster than state-of-the-art system Opaque providing similar guarantees. Scylla's novel general architecture enables integrating latest TEEs such as AWS Nitro, AMD SEV-SNP, and Intel TDX with zero rebuilding efforts.
AB - While security concerns of data at rest and in transit have been addressed over the years using standard cryptographic measures, those surrounding data in use have garnered significant attention in recent times. In response, various trusted execution environments (TEEs) have been proposed and are on offer from leading public cloud providers. With development and re-programming efforts, availability, threat models, pricing, performance, etc., differing between various TEEs themselves and also with viable alternatives such as software solutions like partially homomorphic encryption (PHE) to protect data in use, it is imperative to have a system that is independent of these several varying dimensions while also efficiently achieving end-to-end confidentiality guarantees on data processing.We propose Scylla, a mechanism-agnostic confidential analytics framework, built on top of the popular Spark data analytics engine. Scylla utilizes a customizable combination of TEEs and PHE schemes to achieve end-to-end confidentiality guarantees with prime performance. Our evaluation shows that Scylla's query execution times are 1.91× faster than state-of-the-art system Opaque providing similar guarantees. Scylla's novel general architecture enables integrating latest TEEs such as AWS Nitro, AMD SEV-SNP, and Intel TDX with zero rebuilding efforts.
KW - Confidential Computing
KW - Nitro enclave
KW - PHE
KW - SEV-SNP
KW - SGX
KW - TDX
UR - https://www.scopus.com/pages/publications/105028570233
U2 - 10.1145/3772052.3772209
DO - 10.1145/3772052.3772209
M3 - Conference contribution
AN - SCOPUS:105028570233
T3 - SoCC 2025 - Proceedings of the 2025 ACM Symposium on Cloud Computing
SP - 29
EP - 44
BT - SoCC 2025 - Proceedings of the 2025 ACM Symposium on Cloud Computing
PB - Association for Computing Machinery, Inc
T2 - 2025 ACM Symposium on Cloud Computing, SoCC 2025
Y2 - 19 November 2025 through 21 November 2025
ER -