Affordable Access

Access to the full text

SAFIUS - A secure and accountable filesystem over untrusted storage

Authors
  • Sriram, V
  • Narayan, Ganesh
  • Gopinath, K
Type
Published Article
Publication Date
Mar 16, 2008
Submission Date
Mar 16, 2008
Identifiers
DOI: 10.1109/SISW.2007.7
Source
arXiv
License
Yellow
External links

Abstract

We describe SAFIUS, a secure accountable file system that resides over an untrusted storage. SAFIUS provides strong security guarantees like confidentiality, integrity, prevention from rollback attacks, and accountability. SAFIUS also enables read/write sharing of data and provides the standard UNIX-like interface for applications. To achieve accountability with good performance, it uses asynchronous signatures; to reduce the space required for storing these signatures, a novel signature pruning mechanism is used. SAFIUS has been implemented on a GNU/Linux based system modifying OpenGFS. Preliminary performance studies show that SAFIUS has a tolerable overhead for providing secure storage: while it has an overhead of about 50% of OpenGFS in data intensive workloads (due to the overhead of performing encryption/decryption in software), it is comparable (or better in some cases) to OpenGFS in metadata intensive workloads.

Report this publication

Statistics

Seen <100 times