Tiptoe is a private web search engine that allows clients to search over hundreds of millions
of documents, while revealing no information about their search query to the search engine's …

We focus on the problem of I/O-efficient Dynamic Searchable Encryption (DSE), ie, schemes
that perform well when executed with the dataset on-disk. Towards this direction, for HDDs …

End-to-end encrypted messaging applications ensure that an attacker cannot read a user's
message history without their decryption keys. While this provides strong privacy, it creates a …

We focus on the problem of Dynamic Searchable Encryption (DSE) with efficient
(optimal/quasi-optimal) search in the presence of deletions. Towards that end, we first …

We propose GraphOS, a system that allows a client that owns a graph database to
outsource it to an untrusted server for storage and querying. It relies on doubly-oblivious …

Existing oblivious systems offer robust security by concealing memory access patterns, but
they encounter significant scalability and performance challenges. Recent efforts to enhance …

We present Waffle, a datastore that protects an application's data access patterns from a
passive persistent adversary. Waffle achieves this without prior knowledge of the input data …

As more privacy-preserving solutions leverage trusted execution environments (TEEs) like
Intel SGX, it becomes pertinent that these solutions can by design thwart TEE side-channel …

Secure computation via MPC/homomorphic encryption versus hardware enclaves presents
tradeoffs involving deployment, security, and performance. Regarding performance, it …

In end-to-end encrypted (E2EE) messaging systems, protecting communication metadata,
such as who is communicating with whom, at what time, etc., remains a challenging …