Cloud computing is becoming indispensable for performing big data analysis and building machine learning pipelines at scale through massive parallelization of tasks across large clusters of computing nodes. In datacenters the large number of computing resources and tasks are managed by distributed data processing frameworks, such as Apache Spark. These frameworks offer data and programming abstractions that ease the development of data analytics algorithms, and provide cluster management and scheduling algorithms that facilitate efficient resource orchestration and task allocation.
While efficiency in data processing is achieved, outsourcing computation on private data to the Cloud often leads to privacy concerns when the data is sensitive. Even if data is protected with encryption while in transmission or in storage, it has to be decrypted before being processed by Spark.
- "Apache Spark: A Unified Engine For Big Data Processing". Matei Zaharia, Reynold S. Xin, Patrick Wendell, Tathagata Das, Michael Armbrust, Ankur Dave, Xiangrui Meng, Josh Rosen, Shivaram Venkataraman, Michael J. Franklin, Ali Ghodsi, Joseph Gonzalez, Scott Shenker, Ion Stoica. Communications of the ACM, November 2016, Vol. 59 No. 11, Pages 56-65. DOI 10.1145/2934664
FHE, a cryptography technique that enables arithmetic computations on encrypted data without decrypting it first.
- "Computing arbitrary functions of encrypted data". Craig Gentry. Communications of the ACM. March 2010. DOI 1666420.1666444.
- "Technical Perspective: A First Glimpse of Cryptography's Holy Grail". Daniele Micciancio. Communications of the ACM, March 2010, Vol. 53 No. 3, Page 96. DOI 10.1145/1666420.1666445
SparkFHE integrates Apache Spark with fully homomorphic encryption – an encryption technology that allows computing directly on encrypted data without requiring a secret key. This integration makes two novel contributions to large-scale secure data analytics in the Cloud: (1) enabling Spark to perform efficient computation on large datasets while preserving user privacy, and (2) accelerating intensive homomorphic computation through parallelization of tasks across clusters of computing nodes. To our best knowledge, SparkFHE is the first addressing these two needs simultaneously. This project is in collaboration with Microsoft Research, Redmond.
- Learn more about this project in our research group page.
- We greatly appreciated the contributions from our contributors.
If you want to go for a quick test drive of the SparkFHE code within the Apache Spark environment, please visit and follow these instructions, https://github.com/SpiRITlab/SparkFHE-Examples/wiki
If you are a developer working on the SparkFHE-Examples code, you can use the following instructions to develop new example code. You will also need to setup the Apache Spark environment, because it will download and install all dependencies. If you haven't done so, please visit and follow these instructions, https://github.com/SpiRITlab/SparkFHE-Examples/wiki
Note, there are two pom files which you can use to compile or package:
pom-devel.xml # will use the existing shared lib within ./libSparkFHE/lib
pom.xml # will download and refresh the C++ shared lib from our repoNote, change ${PATH_TO_spark-3.1.0-SNAPSHOT-bin-SparkFHE} to where you install "spark-3.1.0-SNAPSHOT-bin-SparkFHE"
cd SparkFHE-Examples
ln -s ${PATH_TO_spark-3.1.0-SNAPSHOT-bin-SparkFHE}/deps/ ././mvn -f pom-devel.xml scm:checkoutor
git submodule updateThe example code will use the shared libraries downloaded while setting up the Apache Spark environment.
./mvn -f pom-devel.xml -U clean compileNote, without '-f pom-devel.xml', maven will download a new shared library from our repo and overwrite the existing one in libSparkFHE/lib.
cd scripts
bash HELIB-BGV-Nonbatching-MavenExampleRun.bashIn addition, you can try the following scripts.
HELIB-BGV-Batching-MavenExampleRun.bash SEAL-BFV-Batching-MavenExampleRun.bash
HELIB-BGV-Nonbatching-MavenExampleRun.bash SEAL-BFV-Nonbatching-MavenExampleRun.bash testConnectionToSharedLib.bash
HELIB-CKKS-Batching-MavenExampleRun.bash SEAL-CKKS-Batching-MavenExampleRun.bash# this will generate the example key pair
./mvn -f pom-devel.xml exec:java -Dexec.mainClass=spiritlab.sparkfhe.example.nonbatching.KeyGenExample -Dexec.args="local HELIB BGV"
# this will generate some ciphertexts
./mvn -f pom-devel.xml exec:java -Dexec.mainClass=spiritlab.sparkfhe.example.nonbatching.EncDecExample -Dexec.args="local HELIB BGV gen/keys/my_public_key.txt gen/keys/my_secret_key.txt" Step 2. Run examples: Test different FHE operations on example ciphertexts and vectors of ciphertexts
# this will perform some basic FHE operations
./mvn -f pom-devel.xml exec:java -Dexec.mainClass=spiritlab.sparkfhe.example.nonbatching.BasicOPsExample -Dexec.args="local HELIB BGV gen/keys/my_public_key.txt gen/keys/my_secret_key.txt"
# this will perform dot product calculation on vectors of encrypted numbers
./mvn -f pom-devel.xml exec:java -Dexec.mainClass=spiritlab.sparkfhe.example.nonbatching.DotProductExample -Dexec.args="local HELIB BGV gen/keys/my_public_key.txt gen/keys/my_secret_key.txt"
# this will perform total sum calculation on vector and matrix of encrypted numbers
./mvn -f pom-devel.xml exec:java -Dexec.mainClass=spiritlab.sparkfhe.example.nonbatching.TotalSumExample -Dexec.args="local HELIB BGV gen/keys/my_public_key.txt gen/keys/my_secret_key.txt"./mvn -f pom-devel.xml test./mvn -f pom-devel.xml -U -DskipTests clean packageSymbol not foundandExpected in: /usr/lib/libstdc++.6.dylibReason: This is due to the misalignment of the C++ compiler in your runtime and our libSparkFHE shared library. Resolution: Recompile the C++ ibSparkFHE shared library.
You may see the these warnings. It maybe due to Spark's internal bugs.
Note, you will neeed to softlink the deps folder in the project root.
In shell
export PYTHONPATH="${PYTHONPATH}:deps/lib"In PyCharm
Preferences/Project: sparkfhe-examples/Project Structure/Add Content Root- add
deps/lib