Title :
SAFIUS - A Secure and Accountable Filesystem over Untrusted Storage
Author :
Sriram, V. ; Narayan, Ganesh ; Gopinath, K.
Author_Institution :
Indian Inst. of Sci., Bangalore
Abstract :
We describe SAFIUS, a secure accountable file system that resides over an untrusted storage. SAFIUS provides strong security guarantees like confidentiality, integrity, prevention from rollback attacks, and accountability. SAFIUS also enables read/write sharing of data and provides the standard UNIX-like interface for applications. To achieve accountability with good performance, it uses asynchronous signatures; to reduce the space required for storing these signatures, a novel signature pruning mechanism is used. SAFIUS has been implemented on a GNU/Linux based system modifying OpenGFS. Preliminary performance studies show that SAFIUS has a tolerable overhead for providing secure storage: while it has an overhead of about 50% of OpenGFS in data intensive workloads, it is comparable (or better in some cases) to OpenGFS in metadata intensive workloads.
Keywords :
Linux; meta data; open systems; security of data; GNU; Linux; OpenGFS; SAFIUS; UNIX; accountable file system; data storage; metadata; read-write data sharing; Computer security; Conferences; Data security; File systems; Memory; Outsourcing; Protection; Quality management; Secure storage; Storage automation;
Conference_Titel :
Security in Storage Workshop, 2007. SISW '07. Fourth International IEEE
Conference_Location :
San Diego, CA
Print_ISBN :
978-0-7695-3052-9
DOI :
10.1109/SISW.2007.7
