Presentation is loading. Please wait.

Presentation is loading. Please wait.

DEFY:A Deniable,Encrypted File System for Log-Structured Storage

Published byวิสา สโตเกอร์ Modified over 5 years ago

Similar presentations

Presentation on theme: "DEFY:A Deniable,Encrypted File System for Log-Structured Storage"— Presentation transcript:

1 DEFY:A Deniable,Encrypted File System for Log-Structured Storage
Timothy M. Peters Mark A. Gondree Zachary N.J. Peterson Presented by Nan Liu

2 The problem

3 Existing methods Anderson’s first file system of plausible deniability: use block replication and random block placement. StegFS: use a block allocation table to track files. DenFS:provide deniability when cloud server becomes compromised.(The model is not appropriate for threats associated with seizure of mobile devices)

4 Existing methods Mobiflage:a deniable filesystem for Android devices.(The system lack support for more than one deniability level) WhisperYAFFS: a system providing full disk encryption on flash devices.(It provides only confidentially without authenticity or plausible deniability. The use of plaintext block sequence number leaks the history of block updates)

5 Background Wear leveling NAND & YAFFS

6 Contributions DEFY: The Deniable encrypted file system from YAFFS.
Log-structured design deniability levels authenticated encryption efficient secure deletion snapshot resistent

7 Security Model Adversaries: Single-view adversaries
Snapshot adversaries Security Definitions: Plausible deniability

8 Design Requirements Deniability Levels Secure Deletion
Authenticated Encryption Minimizing Data Loss Wear Leveling Easily Deployable

9 Deniability Levels imply privacy equivalence
Levels provide a total order High levels reveal lower levers Revealing a level provide no information about unrevealed levels

10 DEFY Authenticated Encryption Encryption-Based Deletion
Metadata for DEFY Minimized Data Loss

11 Encryption

12 Encryption

13 Encryption

14 Encryption

15 Encryption

16 Decryption 4 3 1 2

17 Secure Deletion A page can never be decrypted without all cipher text blocks. Tag can be overwritten to securely delete the corresponding page.

18 Metadata

19 Metadata

20 Metadata

21 Minimized Data Loss When a level is revealed, all lower levels are also revealed. A one-level-per-block policy.

22 Security

23 Security

24 Security

25 Security

26 DEFY in Real Life users must use system correctly
doesn’t protect against malware or colluding carriers few have explored deniability against coercive adversaries

27 Status & Future Work DEFY is released as free and open source software
Confirm loss of semantic security in flash Formalize notions of deniability

28 Quiz What are the two types of passive adversaries for deniable file system? Comparing to YAFFS, what extensions does DEFY include? What DEFY do to implement a secure deletion?

Download ppt "DEFY:A Deniable,Encrypted File System for Log-Structured Storage"

Similar presentations

Mobile Devices: Know the RISKS. Take the STEPS. PROTECT AND SECURE Health Information.

Mobile Devices: Know the RISKS. Take the STEPS. PROTECT AND SECURE Health Information.
2  Industry trends and challenges  Windows Server 2012: Modern workstyle, enabled  Access from virtually anywhere, any device  Full Windows experience.

2  Industry trends and challenges  Windows Server 2012: Modern workstyle, enabled  Access from virtually anywhere, any device  Full Windows experience.
Operating Systems Operating Systems - Winter 2009 Chapter 5 – File Systems Vrije Universiteit Amsterdam.

Operating Systems Operating Systems - Winter 2009 Chapter 5 – File Systems Vrije Universiteit Amsterdam.
Operating Systems Operating Systems - Winter 2011 Chapter 5 – File Systems Vrije Universiteit Amsterdam.

Operating Systems Operating Systems - Winter 2011 Chapter 5 – File Systems Vrije Universiteit Amsterdam.
Cyber Security Quiz By: Alex Alberg. Q. A good password is: A. 8 characters or more B. Contains upper and lower case letters C. Contains special characters.

Cyber Security Quiz By: Alex Alberg. Q. A good password is: A. 8 characters or more B. Contains upper and lower case letters C. Contains special characters.
Threats to privacy in the forensic analysis of database systems Patrick Stahlberg, Gerome Miklau, and Brian Neil Levine Department of Computer Science.

Threats to privacy in the forensic analysis of database systems Patrick Stahlberg, Gerome Miklau, and Brian Neil Levine Department of Computer Science.
Department of Computer Science, Johns Hopkins University Limiting Liability in a Federally Compliant File System Zachary N. J. Peterson Randal Burns Adam.

Department of Computer Science, Johns Hopkins University Limiting Liability in a Federally Compliant File System Zachary N. J. Peterson Randal Burns Adam.
Full-Datapath Secure Deletion Sarah Diesburg 1. Overview Problem  Current secure deletion methods do not work State of the art  Optimistic system-wide.

Full-Datapath Secure Deletion Sarah Diesburg 1. Overview Problem  Current secure deletion methods do not work State of the art  Optimistic system-wide.
Database Administration and Security Transparencies 1.

Database Administration and Security Transparencies 1.
A F RAMEWORK FOR THE A NALYSIS OF M IX -B ASED S TEGANOGRAPHIC F ILE S YSTEMS Claudia Diaz, Carmela Troncoso, Bart Preneel K.U.Leuven / COSIC Cambridge,

A F RAMEWORK FOR THE A NALYSIS OF M IX -B ASED S TEGANOGRAPHIC F ILE S YSTEMS Claudia Diaz, Carmela Troncoso, Bart Preneel K.U.Leuven / COSIC Cambridge,
1 Steganographic File Systems Claudia Diaz ESAT/COSIC (K.U.Leuven)

1 Steganographic File Systems Claudia Diaz ESAT/COSIC (K.U.Leuven)
Protection and Security. Policy & Mechanism Protection mechanisms are tools used to implement security policies –Authentication –Authorization –Cryptography.

Protection and Security. Policy & Mechanism Protection mechanisms are tools used to implement security policies –Authentication –Authorization –Cryptography.
1 Steve Chenoweth Friday, 10/21/11 Week 7, Day 4 Right – Good or bad policy? – Asking the user what to do next! From malware.net/how-to-remove-protection-system-

1 Steve Chenoweth Friday, 10/21/11 Week 7, Day 4 Right – Good or bad policy? – Asking the user what to do next! From malware.net/how-to-remove-protection-system-
Security Overview Hofstra University University College for Continuing Education - Advanced Java Programming Lecturer: Engin Yalt May 24, 2006.

Security Overview Hofstra University University College for Continuing Education - Advanced Java Programming Lecturer: Engin Yalt May 24, 2006.
File Management Systems

File Management Systems
Wired Equivalent Privacy (WEP)

Wired Equivalent Privacy (WEP)
Practical Techniques for Searches on Encrypted Data Author:Dawn Xiaodong Song, David Wagner, Adrian Perrig Presenter: 紀汶承.

Practical Techniques for Searches on Encrypted Data Author:Dawn Xiaodong Song, David Wagner, Adrian Perrig Presenter: 紀汶承.
Chapter 12 File Management Systems

Chapter 12 File Management Systems
Obstacles & Opportunities in Mobile Forensic Collections October 2, 2014 Evidence Collection in the Mobile Age.

Obstacles & Opportunities in Mobile Forensic Collections October 2, 2014 Evidence Collection in the Mobile Age.
Lexmark Print Management

Lexmark Print Management

Similar presentations

Ads by Google