Title :
Effective Storage Security in Incompletely Trusted Environment
Author :
Rong, Chunming ; Kim, Won-Chol
Author_Institution :
Univ. of Stavanger, Stavanger
Abstract :
This paper presents a design of effective cryptographic file system (ECFS) for storage services. ECFS can be used to provide the data security in existing network and p2p file system such as NFS, CIFS, OceanStore and Yahoo! Briefcase. We assume that the storage system isn´t trusted entirely and end user must be able to control some security functions. Adding security to storage systems leads to performance degradation. In order to achieve good performance, ECFS uses a key management using symmetric cipher instead of public-key approach. ECFS also uses two-phases revocation to decrease the overhead of key revocation. We evaluate the ECFS security based on the set of criteria for evaluating a storage solution.
Keywords :
cryptography; peer-to-peer computing; storage management; P2P file system; data security; effective cryptographic file system; incompletely trusted environment; storage security; Access control; Authentication; Data security; Degradation; Digital signatures; File servers; File systems; Public key; Public key cryptography; Secure storage;
Conference_Titel :
Advanced Information Networking and Applications Workshops, 2007, AINAW '07. 21st International Conference on
Conference_Location :
Niagara Falls, Ont.
Print_ISBN :
978-0-7695-2847-2
DOI :
10.1109/AINAW.2007.162
