Embedded Devices Security: Design and Implementation of a Light RDBMS Encryption Utilizing Multi-Core Processors
The pervasive proliferation of embedded, mobile, and IoT devices continue to change our lifestyle dramatically. However, the huge increase in these devices has come with critical breaches to data resting inside them. Many types of such data are considered to be sensitive and confidential. Because th...
| Main Authors: | , , , , , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
IEEE
2023-01-01
|
| Series: | IEEE Access |
| Subjects: | |
| Online Access: | https://ieeexplore.ieee.org/document/10050501/ |
| _version_ | 1811160972408127488 |
|---|---|
| author | Mohammad Ahmed Alomari Hazleen Aris Mukhtar Ghaleb Yahya Almurtadha Gamal Abdulnaser Alkawsi Ismail Ahmad Al-Qasem Al-Hadi Yahia Baashar Khairulmizam Samsudin |
| author_facet | Mohammad Ahmed Alomari Hazleen Aris Mukhtar Ghaleb Yahya Almurtadha Gamal Abdulnaser Alkawsi Ismail Ahmad Al-Qasem Al-Hadi Yahia Baashar Khairulmizam Samsudin |
| author_sort | Mohammad Ahmed Alomari |
| collection | DOAJ |
| description | The pervasive proliferation of embedded, mobile, and IoT devices continue to change our lifestyle dramatically. However, the huge increase in these devices has come with critical breaches to data resting inside them. Many types of such data are considered to be sensitive and confidential. Because the most sensitive data of such devices are resting in databases, focusing on encrypting SQLite databases will be more efficient than full disk encryption (FDE). While SQLite is a very popular, lightweight, and easy-to-use relational database suitable for embedded and mobile devices, its stored data suffers serious security risks. If an attacker can gain access to higher system privileges or find a way to access the database plain file, he can tamper with the database files and user-sensitive data, which breaches the security CIA triad of SQLite. To ensure data confidentiality in SQLite databases of embedded devices, we present a design and implementation of a parallel database encryption system, called SQLite-XTS. The developed system encrypts the database pages on- the-fly in a transparent manner without user intervention. Because performance is a critical issue, SQLite-XTS utilizes multi-core processors coming with most current mobile and embedded devices. The developed parallel SQLite-XTS was successfully implemented and integrated into a testbed device. To assess the performance and feasibility of this system, it was compared to three other SQLite implementations: plain SQLite, serial XTS SQLite, and SQLCipher-CBC. The results show that SQLite-XTS reduces the overhead of database encryption from 30.8% with serial implementation to 17.8% when SQLite-XTS is used. This provides the developed system with an efficiency of 73% compared with its serial counterpart. The results clarify that SQLite-XTS introduces significant performance improvements compared to other implementations. Experiments also show that the system has a very low impact on the memory of these resource-limited devices. |
| first_indexed | 2024-04-10T06:06:46Z |
| format | Article |
| id | doaj.art-ec71c0a950b44857ae5e97600c3f880c |
| institution | Directory Open Access Journal |
| issn | 2169-3536 |
| language | English |
| last_indexed | 2024-04-10T06:06:46Z |
| publishDate | 2023-01-01 |
| publisher | IEEE |
| record_format | Article |
| series | IEEE Access |
| spelling | doaj.art-ec71c0a950b44857ae5e97600c3f880c2023-03-03T00:01:00ZengIEEEIEEE Access2169-35362023-01-0111198361984810.1109/ACCESS.2023.324830010050501Embedded Devices Security: Design and Implementation of a Light RDBMS Encryption Utilizing Multi-Core ProcessorsMohammad Ahmed Alomari0https://orcid.org/0000-0001-9403-5439Hazleen Aris1Mukhtar Ghaleb2Yahya Almurtadha3Gamal Abdulnaser Alkawsi4https://orcid.org/0000-0002-2456-4033Ismail Ahmad Al-Qasem Al-Hadi5Yahia Baashar6https://orcid.org/0000-0002-8004-3929Khairulmizam Samsudin7Institute of Informatics and Computing in Energy, Universiti Tenaga Nasional, Kajang, MalaysiaInstitute of Informatics and Computing in Energy, Universiti Tenaga Nasional, Kajang, MalaysiaCollege of Sciences and Arts, University of Bisha, Al Namas, Saudi ArabiaFaculty of Computing and Information Technology, University of Tabuk, Tabuk, Saudi ArabiaInstitute of Sustainable Energy (ISE), Universiti Tenaga Nasional, Kajang, Selangor, MalaysiaInstitute of Computer Science and Digital Innovation, UCSI University, Kuala Lumpur, MalaysiaFaculty of Computing and Informatics, Universiti Malaysia Sabah (UMS), Labuan, MalaysiaFaculty of Engineering, Universiti Putra Malaysia, Serdang, Selangor, MalaysiaThe pervasive proliferation of embedded, mobile, and IoT devices continue to change our lifestyle dramatically. However, the huge increase in these devices has come with critical breaches to data resting inside them. Many types of such data are considered to be sensitive and confidential. Because the most sensitive data of such devices are resting in databases, focusing on encrypting SQLite databases will be more efficient than full disk encryption (FDE). While SQLite is a very popular, lightweight, and easy-to-use relational database suitable for embedded and mobile devices, its stored data suffers serious security risks. If an attacker can gain access to higher system privileges or find a way to access the database plain file, he can tamper with the database files and user-sensitive data, which breaches the security CIA triad of SQLite. To ensure data confidentiality in SQLite databases of embedded devices, we present a design and implementation of a parallel database encryption system, called SQLite-XTS. The developed system encrypts the database pages on- the-fly in a transparent manner without user intervention. Because performance is a critical issue, SQLite-XTS utilizes multi-core processors coming with most current mobile and embedded devices. The developed parallel SQLite-XTS was successfully implemented and integrated into a testbed device. To assess the performance and feasibility of this system, it was compared to three other SQLite implementations: plain SQLite, serial XTS SQLite, and SQLCipher-CBC. The results show that SQLite-XTS reduces the overhead of database encryption from 30.8% with serial implementation to 17.8% when SQLite-XTS is used. This provides the developed system with an efficiency of 73% compared with its serial counterpart. The results clarify that SQLite-XTS introduces significant performance improvements compared to other implementations. Experiments also show that the system has a very low impact on the memory of these resource-limited devices.https://ieeexplore.ieee.org/document/10050501/Storage securityembedded devicesSQLite RDBMSperformance evaluationmobile devicesmulti-core processors |
| spellingShingle | Mohammad Ahmed Alomari Hazleen Aris Mukhtar Ghaleb Yahya Almurtadha Gamal Abdulnaser Alkawsi Ismail Ahmad Al-Qasem Al-Hadi Yahia Baashar Khairulmizam Samsudin Embedded Devices Security: Design and Implementation of a Light RDBMS Encryption Utilizing Multi-Core Processors IEEE Access Storage security embedded devices SQLite RDBMS performance evaluation mobile devices multi-core processors |
| title | Embedded Devices Security: Design and Implementation of a Light RDBMS Encryption Utilizing Multi-Core Processors |
| title_full | Embedded Devices Security: Design and Implementation of a Light RDBMS Encryption Utilizing Multi-Core Processors |
| title_fullStr | Embedded Devices Security: Design and Implementation of a Light RDBMS Encryption Utilizing Multi-Core Processors |
| title_full_unstemmed | Embedded Devices Security: Design and Implementation of a Light RDBMS Encryption Utilizing Multi-Core Processors |
| title_short | Embedded Devices Security: Design and Implementation of a Light RDBMS Encryption Utilizing Multi-Core Processors |
| title_sort | embedded devices security design and implementation of a light rdbms encryption utilizing multi core processors |
| topic | Storage security embedded devices SQLite RDBMS performance evaluation mobile devices multi-core processors |
| url | https://ieeexplore.ieee.org/document/10050501/ |
| work_keys_str_mv | AT mohammadahmedalomari embeddeddevicessecuritydesignandimplementationofalightrdbmsencryptionutilizingmulticoreprocessors AT hazleenaris embeddeddevicessecuritydesignandimplementationofalightrdbmsencryptionutilizingmulticoreprocessors AT mukhtarghaleb embeddeddevicessecuritydesignandimplementationofalightrdbmsencryptionutilizingmulticoreprocessors AT yahyaalmurtadha embeddeddevicessecuritydesignandimplementationofalightrdbmsencryptionutilizingmulticoreprocessors AT gamalabdulnaseralkawsi embeddeddevicessecuritydesignandimplementationofalightrdbmsencryptionutilizingmulticoreprocessors AT ismailahmadalqasemalhadi embeddeddevicessecuritydesignandimplementationofalightrdbmsencryptionutilizingmulticoreprocessors AT yahiabaashar embeddeddevicessecuritydesignandimplementationofalightrdbmsencryptionutilizingmulticoreprocessors AT khairulmizamsamsudin embeddeddevicessecuritydesignandimplementationofalightrdbmsencryptionutilizingmulticoreprocessors |