Cryptographic Security for a High-Performance Distributed File System

San Diego, California, USA September 24-September 27

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/MSST.2007.10

24th IEEE Conference on Mass Storage ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Roman Pletka Articles by Christian Cachin

	ASCII Text	x
	Roman Pletka, Christian Cachin, "Cryptographic Security for a High-Performance Distributed File System," Mass Storage Systems and Technologies, IEEE / NASA Goddard Conference on, pp. 227-232, 24th IEEE Conference on Mass Storage Systems and Technologies (MSST 2007), 2007.

	BibTex	x
	@article{ 10.1109/MSST.2007.10, author = {Roman Pletka and Christian Cachin}, title = {Cryptographic Security for a High-Performance Distributed File System}, journal ={Mass Storage Systems and Technologies, IEEE / NASA Goddard Conference on}, volume = {0}, year = {2007}, isbn = {0-7695-3025-7}, pages = {227-232}, doi = {http://doi.ieeecomputersociety.org/10.1109/MSST.2007.10}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Mass Storage Systems and Technologies, IEEE / NASA Goddard Conference on TI - Cryptographic Security for a High-Performance Distributed File System SN - 0-7695-3025-7 SP227 EP232 A1 - Roman Pletka, A1 - Christian Cachin, PY - 2007 KW - null VL - 0 JA - Mass Storage Systems and Technologies, IEEE / NASA Goddard Conference on ER -

Roman Pletka, AdNovum Informatik AG, Switzerland

Christian Cachin, IBM Zurich Research Laboratory, Switzerland

Storage systems are increasingly subject to attacks. Cryptographic file systems mitigate the danger of exposing data by using encryption and integrity protection methods and guarantee end-to-end security for their clients. This paper describes a generic design for cryptographic file systems and its realization in a distributed storage-area network (SAN) file system. Key management is integrated with the meta-data service of the SAN file system. The implementation supports file encryption as well as integrity protection through hash trees. Both techniques have been implemented in the client file system driver. Benchmarks demonstrate that the overhead is noticeable for some artificially constructed use cases, but that it is very small for typical file system applications.

Citation:

Roman Pletka, Christian Cachin, "Cryptographic Security for a High-Performance Distributed File System," msst, pp.227-232, 24th IEEE Conference on Mass Storage Systems and Technologies (MSST 2007), 2007

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.