Sriram, V and Narayan, Ganesh and Gopinath, K (2007) SAFIUS - A secure and accountable filesystem over untrusted storage. In: Fourth International IEEE Security in Storage Workshop, 2007 - SISW '07. Publication Date: 27-27 Sept. 2007, September 2007, San Diego, California, USA, pp. 34-45.
|
PDF
safius.pdf Download (473kB) |
Abstract
We describe SAFIUS, a secure accountable file system that resides over an untrusted storage. SAFIUS provides strong security guarantees like confidentiality, integrity, prevention from rollback attacks, and accountability. SAFIUS also enables read/write sharing of data and provides the standard UNIX-like interface for applications. To achieve accountability with good performance, it uses asynchronous signatures; to reduce the space required for storing these signatures, a novel signature pruning mechanism is used. SAFIUS has been implemented on a GNU/Linux based system modifying OpenGFS. Preliminary performance studies show that SAFIUS has a tolerable overhead for providing secure storage: while it has an overhead of about 50% of OpenGFS in data intensive workloads (due to the overhead of performing encryption/decryption in software), it is comparable (or better in some cases) to OpenGFS in metadata intensive workloads.
Item Type: | Conference Paper |
---|---|
Publisher: | IEEE Computer Society Press |
Additional Information: | Complete publication details not available yet. |
Keywords: | Operating Systems;Storage Security;Filessytem;Accountability |
Department/Centre: | Division of Electrical Sciences > Computer Science & Automation |
Date Deposited: | 27 Mar 2008 |
Last Modified: | 19 Sep 2010 04:43 |
URI: | http://eprints.iisc.ac.in/id/eprint/13501 |
Actions (login required)
View Item |