首页> 外文会议>Cloud computing security workshop 2009 >On Protecting Integrity and Confidentiality of Cryptographic File System for Outsourced Storage

【24h】

On Protecting Integrity and Confidentiality of Cryptographic File System for Outsourced Storage

机译：论外包存储密码文件系统的完整性和机密性

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
引文网络
相似文献
相关主题

摘要

A cryptographic network file system has to guarantee confidentiality and integrity of its files, and also it has to support random access. For this purpose, existing designs mainly rely on (often ad-hoc) combination of Merkle hash tree with a block cipher mode of encryption. In this paper, we propose a new design based on a MAC tree construction which uses a universal-hash based stateful MAC. This new design enables standard model security proof and also better performance compared with Merkle hash tree. We formally define the security notions for file encryption and prove that our scheme provides both confidentiality and integrity. We implement our scheme in coreFS, a user-level network file system, and evaluate the performance in comparison with the standard design. Experimental results confirm that our construction provides integrity protection at a smaller cost.

机译：加密网络文件系统必须保证其文件的机密性和完整性，并且还必须支持随机访问。为此，现有设计主要依靠Merkle哈希树与块密码加密模式的组合（通常是临时的）。在本文中，我们提出了一种基于MAC树结构的新设计，该结构使用了基于通用哈希的有状态MAC。与Merkle哈希树相比，此新设计可实现标准模型安全性证明并具有更好的性能。我们正式定义了文件加密的安全概念，并证明我们的方案可提供机密性和完整性。我们在核心级文件系统（用户级网络文件系统）中实施我们的方案，并与标准设计进行比较来评估性能。实验结果证实，我们的结构以更低的成本提供了完整性保护。

著录项

来源
《Cloud computing security workshop 2009》|2009年|P.67-75|共9页
会议地点 Chicago IL(US);Chicago IL(US)
作者
Aaram Yun; rnChunhui Shi; rnYongdae Kim;
展开▼
作者单位

University of Minnesota Minneapolis, MN 55455;

rnUniversity of Minnesota Minneapolis, MN 55455;

rnUniversity of Minnesota Minneapolis, MN 55455;

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类安全保密;
关键词
file encryption scheme; cryptographic file system; MAC tree; merkle hash tree; universal-hash based MAC; provable security;

机译：文件加密方案；密码文件系统； MAC树;默克尔哈希树基于通用哈希的MAC；可证明的安全性;

相似文献

外文文献
中文文献
专利

1. The design and implementation of network file system providing confidentiality and data integrity [J] . Tomonori Fujita, Masanori Ogawara 電子情報通信学会技術研究報告. コンピュ-タシステム. Computer Systems . 2002,第153期

机译：提供机密性和数据完整性的网络文件系统的设计和实现
2. The design and implementation of network file system providing confidentiality and data integrity [J] . Tomonori Fujita, Masanori Ogawara 電子情報通信学会技術研究報告. コンピュ-タシステム. Computer Systems . 2002,第153期

机译：网络文件系统的设计与实现提供机密性和数据完整性
3. Cryptographic Public Verification of Data Integrity for Cloud Storage Systems [J] . Yuan Zhang, Chunxiang Xu, Hongwei Li, Cloud Computing, IEEE . 2016,第5期

机译：云存储系统数据完整性的加密公共验证
4. On protecting integrity and confidentiality of cryptographic file system for outsourced storage [C] . Aaram Yun, Chunhui Shi, Yongdae Kim Proceedings of the 2009 ACM workshop on Cloud computing security . 2009

机译：关于保护加密文件系统用于外包存储的完整性和机密性
5. Architectural support for protecting memory integrity and confidentiality. [D] . Shi, Weidong. 2006

机译：用于保护内存完整性和机密性的体系结构支持。
6. Protecting Location Privacy for Outsourced Spatial Data in Cloud Storage [O] . Feng Tian, Xiaolin Gui, Jian An, -1

机译：保护云存储中外包空间数据的位置隐私
7. Group sharing and random access in cryptographic storage file systems [O] . Fu Kevin E. (Kevin Edward) 1976- 1999

机译：加密存储文件系统中的组共享和随机访问

On Protecting Integrity and Confidentiality of Cryptographic File System for Outsourced Storage

摘要

著录项

引文网络

相似文献

相关主题

期刊订阅