Detailed Information
Cited time in 
Cited time in 
Cited time in
Metadata Downloads
On Protecting Integrity and Confidentiality of Cryptographic File System for outsourced storage
- Author(s)
- Yun, Aaram, Kim, Yongdae, Shi, Chunhui
- Issued Date
- 2009-11-13
- Citation
- 2009 ACM Workshop on Cloud Computing Security, CCSW '09, Co-located with the 16th ACM Computer and Communications Security Conference, CCS'09, pp.67 - 76
- Abstract
- A cryptographic network file system has to guarantee confidentiality and integrity of its files, and also it has to support random access. For this purpose, existing designs mainly rely on(often ad-hoc) combination of Merkle hash tree with a block cipher mode of encryption. In this paper, we propose a new design based on a MAC tree construction which uses a universal-hash based stateful MAC. This new design enables standard model security proof and also better performance compared with Merkle hash tree. We formally define the security notions for file encryption and prove that our scheme provides both confidentiality and integrity. We implement our scheme in coreFS, a user-level network file system, and evaluate the performance in comparison with the standard design. Experimental results confirm that our construction provides integrity protection at a smaller cost.
- Publisher
- 2009 ACM Workshop on Cloud Computing Security, CCSW '09, Co-located with the 16th ACM Computer and Communications Security Conference, CCS'09
- ISSN
- 1543-7221
Items in Repository are protected by copyright, with all rights reserved, unless otherwise indicated.