Presentation is loading. Please wait.

Presentation is loading. Please wait.

Secure File Storage Nathanael Paul CRyptography Applications Bistro March 25, 2004.

Published byGodfrey Ross Modified over 9 years ago

Similar presentations

Presentation on theme: "Secure File Storage Nathanael Paul CRyptography Applications Bistro March 25, 2004."— Presentation transcript:

1 Secure File Storage Nathanael Paul CRyptography Applications Bistro March 25, 2004

2 Choosing an Encrypted File System (EFS) Require kernel patch? –root needed How much control is root given? –Swap space Key management Backups and recovery options Very few files need encryption or entire file system? Sharing options?

3 Multitude of solutions Linux Crypto API Windows EFS CFS –Early UNIX implementation SiRiUS Steganographic file systems –not ready for use ppdd –Encrypts root partition, and swap space?

4 CFS Early implementation by Matt Blaze –First free UNIX EFS –Client NFS server listening on localhost interface Key for each directory –Uses passphrases Implemented in user-level

5 Accessing files main() { … read(); … } VFS NFS Local FileSys Network

6 CFS (a.k.a. /crypt) VFS CFS Local FileSys … Mount points

7 CFS NFS Encrypt/ Decrypt VFS call (e.g., read()) call VFS again, but go to file on storage media

8 Accessing files main() { … read(); … } VFS CFS Encrypted Local FileSys …

9 CFS Advantages/Drawbacks Key for each directory –Usability? Implemented in user-level (slow) –Makes it simpler –RPC calls –But most EFSs are slow Not possible to have different files under different groups in same directory –IV is stored in group id field in inode

10 Stackable v-nodes: CryptFS

11 Linux CryptoAPI File system mounted on loopback device which is mounted on directory mount point Loopback device intercepts kernel commands

12 So why SiRiUS? Assumes file server untrusted –No change to file server Distinguishes read/write access –Sharing Only a few keys needed Like CFS, users run user-level daemon Good for sharing among small groups Timely revocation –Rollback attacks

13 main() { … read(); … } VFS SiRiUS Local FileSys Network

14 SiRiUS Overview Intercepts NFS requests –Process requests and send to NFS server Could mimic CFS –Process requests and send to VFS of local file system SiRiUS faster with NFS (compared to CFS), since requests go straight to NFS server and not through VFS to regular NFS client on machine

15 Files in SiRiUS Files stored in 2 parts –md-file: file metadata Access control –d-file: file itself Encrypted with unique symmetric File Encryption Key (FEK) Signed with a unique File Signature Key (FSK) –To read, user needs FEK –To write, user needs FSK

16 md-files Encrypted Key Block (Owner) Encrypted Key Block (User 1) Encrypted Key Block (User n) … FSK Metdata last modified timestamp filename Owner’s hash of metadata MSK used MEK

17 Encrypted Key Blocks Username (or keyID) FEK FSK public key Plaintext Encrypted with MEK of user read/write read Username (or keyID) FEK Plaintext Encrypted with MEK of user

18 Freshness Guarantees Prevent rollback attacks –Alice replaces new md-file with an older saved md-file mdf-file: metadata freshness file –One in each directory of user’s file system –Stamped with unique Master Signing Key (MSK) of user –Contains root of hash tree of all md-files in current directory and mdf-files in immediate subdirectories

19 Creating mdf-files 1.Apply SHA-1 hash on each md-file in current directory (verifying md-file signatures as you go) 2.Concatenate resulting hashes together with mdf- files of immediate subdirectories and apply SHA-1 hash to concatenation 3.Place final hash and directory name in mdf-file Note: Timestamp used before final hash of concatenated hashes on root mdf-file

20 Verifying a file Files are guaranteed up to timestamp on root mdf- file Verifying a file in root directory –Compute mdf-file hash and check timestamps Verifying a file not in the root directory –Apply first 2 steps of creation of mdf-file recursively up to root directory comparing each mdf-file in its subdirectories Requires checking many hashes –What happens if a file in a non-related subtree’s hash doesn’t match up?

21 File swapping attack Bob wants access to Alice’s /home/alice/secret.txt, but Bob only has read access to /home/alice/readme.txt Bob switches filenames with secret.txt and readme.txt Would work if filename not included in md-file Directory included in mdf-file to prevent directory swapping

22 Creating a file Generate random DSA signature FSK Generate random AES FEK Generate encrypted key block Owner’s hash of metadata Create md-file Encrypt file data –Use FEK –Apply SHA-1 to encrypted data and sign with private key of FSK. Append hash to data. Update root mdf-file

23 File Sharing, Reading, Writing Use IBE (or other PKI) –Will need public key of those that will have shared access to create their encrypted key blocks –Will need public key of owner to verify signature and freshness of md-file

24 User keys MSK, MEK –Can be used without SiRiUS Revocation –Read: change FEK, remove user’s key block, update other key blocks with new FEK, reencrypt and sign d-file, update md-file signature, update root mdf-file –Write: same as read except create new FSK, and sign with new key (write implies read access)

25 Performance (ms) TestFile SizeKernel NFSDumbFSSiRiUS File Creation 00.43.414.5 File Deletion 00.30.41.1 Sequential Read 8 kb0.91.418.0 Sequential Write 8 kb1.12.021.9 Sequential Read 1 Mb96.797.8223.8 Sequential Write 1 Mb100.0102.7632.9

26 Performance Caching and optimizations pay off on larger files If working on smaller files, it’s much slower Read/Write –Encrypt data (decrypt for read), verify 3 signatures (2 for file integrity, one for freshness), generate a signature (not for a read)

27 Conclusions Encrypted file systems throw normal performance out the window Read/write capabilities of SiRiUS are nice Single user with just a few critical files –Program to manually perform encryption is probably sufficient

28 How to really protect your data… Burn it at 3,000 degrees...

Download ppt "Secure File Storage Nathanael Paul CRyptography Applications Bistro March 25, 2004."

Similar presentations

The Diffie-Hellman Algorithm

The Diffie-Hellman Algorithm
SUNDR: Secure Untrusted Data Repository

SUNDR: Secure Untrusted Data Repository
Chapter 4 : File Systems What is a file system?

Chapter 4 : File Systems What is a file system?
Russell Martin August 9th, 2013. Contents Introduction to CPABE Bilinear Pairings Group Selection Key Management Key Insulated CPABE Conclusion & Future.

Russell Martin August 9th, Contents Introduction to CPABE Bilinear Pairings Group Selection Key Management Key Insulated CPABE Conclusion & Future.
E NHANCING F ILE D ATA S ECURITY IN L INUX O PERATING S YSTEM BY I NTEGRATING S ECURE F ILE S YSTEM PTD By, Ravikumar Madam Rajesh Kumar Pal, Indranil.

E NHANCING F ILE D ATA S ECURITY IN L INUX O PERATING S YSTEM BY I NTEGRATING S ECURE F ILE S YSTEM PTD By, Ravikumar Madam Rajesh Kumar Pal, Indranil.
Distributed Storage March 12, 2001. 2 Distributed Storage What is Distributed Storage?  Simple answer: Storage that can be shared throughout a network.

Distributed Storage March 12, Distributed Storage What is Distributed Storage?  Simple answer: Storage that can be shared throughout a network.
File Management Chapter 12. File Management File management system is considered part of the operating system Input to applications is by means of a file.

File Management Chapter 12. File Management File management system is considered part of the operating system Input to applications is by means of a file.
CS-550: Distributed File Systems [SiS]1 Resource Management in Distributed Systems: Distributed File Systems.

CS-550: Distributed File Systems [SiS]1 Resource Management in Distributed Systems: Distributed File Systems.
MSN 2004 Network Memory Servers: An idea whose time has come Glenford Mapp David Silcott Dhawal Thakker.

MSN 2004 Network Memory Servers: An idea whose time has come Glenford Mapp David Silcott Dhawal Thakker.
DESIGNING A PUBLIC KEY INFRASTRUCTURE

DESIGNING A PUBLIC KEY INFRASTRUCTURE
File Management Systems

File Management Systems
Windows XP File System Management Group D. 3 Layers of Drivers Filter Drivers Filter Drivers –Virus protection, compression, encryption File System Drivers.

Windows XP File System Management Group D. 3 Layers of Drivers Filter Drivers Filter Drivers –Virus protection, compression, encryption File System Drivers.
Encrypted File System (EFS) Sankara Narayanan. CSE 785 Computer Security, Syracuse University, NY Spring 2003 – 2004.

Encrypted File System (EFS) Sankara Narayanan. CSE 785 Computer Security, Syracuse University, NY Spring 2003 – 2004.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 7: Advanced File System Management.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 7: Advanced File System Management.
ITIS 6200/8200. time-stamping services Difficult to verify the creation date and accurate contents of a digital file Required properties of time-stamping.

ITIS 6200/8200. time-stamping services Difficult to verify the creation date and accurate contents of a digital file Required properties of time-stamping.
Group Management, Permissions, and Revocation in OceanStore Barbara Engelhardt George Porter Naveen Sastry UC Berkeley January 2002.

Group Management, Permissions, and Revocation in OceanStore Barbara Engelhardt George Porter Naveen Sastry UC Berkeley January 2002.
Hands-On Microsoft Windows Server 2003 Administration Chapter 5 Administering File Resources.

Hands-On Microsoft Windows Server 2003 Administration Chapter 5 Administering File Resources.
Wide-area cooperative storage with CFS

Wide-area cooperative storage with CFS
Introduction to Public Key Infrastructure (PKI) Office of Information Security The University of Texas at Brownsville & Texas Southmost College.

Introduction to Public Key Infrastructure (PKI) Office of Information Security The University of Texas at Brownsville & Texas Southmost College.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 7: Advanced File System Management.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 7: Advanced File System Management.

Similar presentations

Ads by Google