Computing on encrypted data (COED) technologies keep data encrypted during processing. Stemming from the family of privacy-enhancing technologies, the main representatives of this breed of cryptographic techniques are secure multiparty computation (MPC) and homomorphic encryption. In combination with well-known encryption methods for data at rest and in transit, for the first time, COEDs enable data to be encrypted end-to-end throughout its entire lifecycle – ensuring data confidentiality and privacy protection for digital services. The next step towards industrial deployment: Lifting MPC into the cloud. For this purpose, we at Bosch Research have launched the open-source project "Carbyne Stack".
There are many attractive application areas for COEDs, including processing of sensitive personal data, protecting intellectual property when working with partners, and building customer trust in consumer AIoT.
The standardization and commercialization of COEDs is still in its infancy. Implementations to date are mostly prototypes from research, and first products are coming almost exclusively from innovative young startups. Fast-growing industry associations are emerging to raise awareness about COEDs in the industry and further accelerate their adoption. One example is the MPC Alliance, which Bosch joined in late 2020.
More in this blog article: Driving privacy-preserving computing technologies – Bosch has joined the MPC Alliance
The Carbyne Stack secure multiparty computation platform leverages cloud-native technology to lift MPC into the cloud, allowing easy, scalable and fault-tolerant deployment of the still nascent technology.
"Cloud native technologies empower organizations to build and run scalable applications in modern, dynamic environments such as public, private, and hybrid clouds.“
We at Bosch Research have decided to further develop our Carbyne Stack MPC cloud platform as an open-source project. Carbyne Stack combines state-of-the-art MPC protocols with modern cloud-native technologies, such as Kubernetes, Istio and Knative. In the medium term, the goal is to create a scalable, fault tolerant MPC platform suitable for use in industrial settings.
This decision reflects our conviction that the development of security-related software benefits from the transparency and openness of an open-source project. In making Carbyne Stack open source, we are also setting the stage for pushing the technology forward together with partners outside the Bosch Group.
The Carbyne Stack open-source project is already living up to its role as an enabler for collaboration. Together with like-minded fellows from Bosch Corporate IT and external partners from industry and academia, Bosch Research is working over the next three years to expand the feature set of Carbyne Stack and test it in a commercial environment within the scope of the CRYPTECS project funded by the German Federal Ministry of Education and Research.
We encourage anyone committed to advancing and promoting the use of privacy-friendly technology – whether individuals or organizations – to contribute to the project. Contributions of any kind are welcome via our Carbyne Stack GitHub organization.
What are your thoughts on this topic?
Please feel free to share them or to contact us directly.
Author: Sebastian Becker
With his academic background in health information management and medical engineering, Sebastian joined Bosch Research in 2011 as a Research Engineer in the field of telemedical systems. His deep-seated interest in the protection of (personal) data during IT-based processing has consistently played an important role in his activities. With his work in the field of privacy-preserving computing technologies (PPCTs), not only does Sebastian want to provide a basis for secure and confidential processing of critical data to the company – he also wants to make it available for application to the public.
Author: Sven Trieflinger
Sven is a Research Engineer and Senior Project Manager at Bosch Research. He received his doctoral degree from the Institute for Parallel and Distributed Systems at the University of Stuttgart in 2011 for his work on peer-to-peer grid computing for irregularly structured problems. His scientific expertise is in distributed systems, cloud technologies and scientific computing. He has over 15 years of experience in the design, architecture and implementation of distributed systems and cloud platforms. Sven holds several patents in the area of theory and application of privacy-preserving computing technologies. As a Senior Project Manager, he draws on eight years of experience managing international research projects.