This paper considers the security issue of practical distributed storagesystems (DSSs) which consist of multiple clusters of storage nodes. Noticingthat actual storage nodes constituting a DSS are distributed in multipleclusters, two novel eavesdropper models - the node-restricted model and thecluster-restricted model - are suggested which reflect the clustered nature ofDSSs. In the node-restricted model, an eavesdropper cannot access theindividual nodes, but can eavesdrop incoming/outgoing data for $L_c$compromised clusters. In the cluster-restricted model, an eavesdropper canaccess a total of $l$ individual nodes but the number of accessible clusters islimited to $L_c$. We provide an upper bound on the securely storable data foreach model, while a specific network coding scheme which achieves the upperbound is obtained for the node-restricted model, given some mild condition onthe node storage size.
展开▼
机译:本文考虑了由多个存储节点群集组成的实际分布式存储系统(DSS)的安全性问题。注意到构成DSS的实际存储节点分布在多个集群中,提出了两个新颖的窃听器模型-节点限制模型和集群限制模型-反映了DSS的集群性质。在节点受限模型中,窃听者无法访问各个节点,但是可以窃听$ L_c $受损群集的传入/传出数据。在群集受限模型中,窃听者最多可以访问$ l $个单个节点,但是可访问群集的数量限制为$ L_c $。我们为每个模型提供了可安全存储的数据的上限,同时在节点存储大小有一定限制的情况下,针对节点受限的模型获得了达到上限的特定网络编码方案。
展开▼
