Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Convergent Dispersal: Toward Storage-Efficient Security in a Cloud-of-Clouds Mingqiang Li 1, Chuan Qin 1, Patrick P. C. Lee 1, Jin Li 2 1 The Chinese.

Published byAshley Booker Modified over 9 years ago

Similar presentations

Presentation on theme: "1 Convergent Dispersal: Toward Storage-Efficient Security in a Cloud-of-Clouds Mingqiang Li 1, Chuan Qin 1, Patrick P. C. Lee 1, Jin Li 2 1 The Chinese."— Presentation transcript:

1 1 Convergent Dispersal: Toward Storage-Efficient Security in a Cloud-of-Clouds Mingqiang Li 1, Chuan Qin 1, Patrick P. C. Lee 1, Jin Li 2 1 The Chinese University of Hong Kong, 2 Guangzhou University HotStorage ’14

2 Single Cloud Problems 2  Single point of failure:  Vendor lock-in: Costly Migration

3 Cloud-of-Clouds  Exploits diversity of multiple cloud storage vendors: Provides fault tolerance Avoids vendor lock-in Improves security 3

4 Diversity  Security  Threat model: provides data confidentiality  Traditional encryption: Encrypts data with a key and protects the key Key management is challenging  Leveraging diversity: Disperses data across multiple clouds Data remains confidential even if a subset of clouds is compromised Assumption: infeasible for attackers to compromise all clouds Security is achieved without keys  keyless security 4

5 Keyless Security  Major building block: dispersal algorithm Given a secret, outputs multiple shares Secret remains inaccessible without enough shares 5

6 Dispersal Algorithm  (n, k, r) dispersal algorithm: Secret is dispersed into n shares Secret can be reconstructed from any k shares (k < n) Secret cannot be inferred (even partially) from any r shares (r < k) Example: (4, 3, 2) 6 Nothing!

7 State of the Art  Ramp secret sharing scheme (RSSS) [Blakley and Meadows, CRYPTO’84] Combines Rabin’s information dispersal ( r = 0 ) and Shamir’s secret sharing scheme ( r = k-1 ) Makes tradeoff between storage space and security  AONT-RS [Resch et al., FAST’11] Combines all-or-nothing-transform and Reed- Solomon encoding  Main idea: embeds random information into dispersed data 7

8 Deduplication  Cloud storage uses deduplication to save cost  Deduplication avoids storing multiple data copies with identical content Saves storage space Saves write bandwidth  However, state-of-the-art dispersal algorithms break deduplication Root cause: security builds on embedded randomness 8

9 Deduplication 9 Identical content Different shares! Random information Q: Can we preserve both deduplication and keyless security in dispersal algorithms?

10 Our Contributions  Convergent Dispersal: a data dispersal design that preserves both dedup and keyless security Can be generalized for any distributed storage systems  Two implementations: CRSSS: builds on RSSS [Blakley and Meadows, CRYPTO’84] CAONT-RS: builds on AONT-RS [Resch et al., FAST’11]  Evaluation on computational performance CRSSS and CAONT-RS are complementary in performance for different parameters Best of CRSSS and CAONT-RS achieves ≥ 200MB/s 10

11 Key Idea  Inspired by convergent encryption [Douceur et al., ICDCS’02] Key is derived from cryptographic hash of the content Key is deterministic: same content  same ciphertext  Convergent dispersal: 11 Replace random information with secret’s hashes Same secret  same shares

12 Deployment Scenario 12 Avoids cross-user dedup due to side-channel attacks [Harnik et al., IEEE S&P’10] Owned by organization Single-user dedup before uploads Organization Cross-user dedup by VMs

13 CRSSS  Example: n = 6, k = 5, r = 2 13 Replace r random words with r hashes

14 CRSSS  Generate r hashes from k-r secret words: D = data block of the k-r secret words i = index H = cryptographic hash function (e.g., SHA-256) 14

15 CAONT-RS  Example: n =4, k=3, r = k -1 = 2 : 15 Replace the random key with a hash

16 CAONT-RS  Transform s secret words d 0, d 1, …, d s-1 into s+1 CAONT words c 0, c 1, …, c s : ⊕ = XOR operator h key = hash key generated from the secret via a cryptographic hash function (e.g., SHA-256) i = index E = encryption function (e.g., AES-256) 16

17 Evaluation Setup  Evaluate the computational throughput of CRSSS and CAONT-RS  Setup: OpenSSL for encryption (AES-256) and hash (SHA-256) Jerasure [Plank, 2014] & GF-Complete [Plank, 2013] for encoding Implementation in C  Compare: RSSS vs. CRSSS AONT-RS vs. CAONT-RS CRSSS vs. CAONT-RS 17

18 Evaluation 18 m = n - k

19 Evaluation 19  CRSSS has much higher overhead (~30%) than RSSS due to more hash computations; yet, CAONT-RS has limited overhead (~8%) over AONT-RS m = n - k

20 Evaluation 20  CRSSS and CAONT-RS are complementary in performance: CRSSS decreases in throughput due to more hashes, while CAONT-RS increases in throughput due to RS encoding m = n - k

21 Evaluation 21  For smaller r, CRSSS achieves much higher throughput (>400MB/s), but with higher storage overhead  tradeoff between throughput and storage m = n - k

22 Conclusions  Defines a framework of convergent dispersal that enables keyless security and deduplication  Two implementations based on state-of-the-art: CRSSS and CAONT-RS Both are complementary in performance  Future work: Complete cloud storage prototype Cost-performance analysis Security analysis Evaluation in real-world deployment 22

Download ppt "1 Convergent Dispersal: Toward Storage-Efficient Security in a Cloud-of-Clouds Mingqiang Li 1, Chuan Qin 1, Patrick P. C. Lee 1, Jin Li 2 1 The Chinese."

Similar presentations

Boneh-Franklin Identity-based Encryption. 2 Symmetric bilinear groups G = ágñ, g p = 1 e: G G G t Bilinear i.e. e(u a, v b ) = e(u, v) ab Non-degenerate:

Boneh-Franklin Identity-based Encryption. 2 Symmetric bilinear groups G = ágñ, g p = 1 e: G G G t Bilinear i.e. e(u a, v b ) = e(u, v) ab Non-degenerate:
Secure Virtual Machine Execution Under an Untrusted Management OS Chunxiao Li Anand Raghunathan Niraj K. Jha.

Secure Virtual Machine Execution Under an Untrusted Management OS Chunxiao Li Anand Raghunathan Niraj K. Jha.
Trusted Data Sharing over Untrusted Cloud Storage Provider Gansen Zhao, Chunming Rong, Jin Li, Feng Zhang, and Yong Tang Cloud Computing Technology and.

Trusted Data Sharing over Untrusted Cloud Storage Provider Gansen Zhao, Chunming Rong, Jin Li, Feng Zhang, and Yong Tang Cloud Computing Technology and.
Cloud Computing Security Monir Azraoui, Kaoutar Elkhiyaoui, Refik Molva, Melek Ӧ nen, Pasquale Puzio December 18, 2013 – Sophia-Antipolis, France.

Cloud Computing Security Monir Azraoui, Kaoutar Elkhiyaoui, Refik Molva, Melek Ӧ nen, Pasquale Puzio December 18, 2013 – Sophia-Antipolis, France.
A Survey of Key Management for Secure Group Communications Celia Li.

A Survey of Key Management for Secure Group Communications Celia Li.
Analysis and Construction of Functional Regenerating Codes with Uncoded Repair for Distributed Storage Systems Yuchong Hu, Patrick P. C. Lee, Kenneth.

Analysis and Construction of Functional Regenerating Codes with Uncoded Repair for Distributed Storage Systems Yuchong Hu, Patrick P. C. Lee, Kenneth.
Henry C. H. Chen and Patrick P. C. Lee

Henry C. H. Chen and Patrick P. C. Lee
1 NCFS: On the Practicality and Extensibility of a Network-Coding-Based Distributed File System Yuchong Hu 1, Chiu-Man Yu 2, Yan-Kit Li 2 Patrick P. C.

1 NCFS: On the Practicality and Extensibility of a Network-Coding-Based Distributed File System Yuchong Hu 1, Chiu-Man Yu 2, Yan-Kit Li 2 Patrick P. C.
Yuchong Hu1, Henry C. H. Chen1, Patrick P. C. Lee1, Yang Tang2

Yuchong Hu1, Henry C. H. Chen1, Patrick P. C. Lee1, Yang Tang2
White-Box Cryptography

White-Box Cryptography
1 STAIR Codes: A General Family of Erasure Codes for Tolerating Device and Sector Failures in Practical Storage Systems Mingqiang Li and Patrick P. C.

1 STAIR Codes: A General Family of Erasure Codes for Tolerating Device and Sector Failures in Practical Storage Systems Mingqiang Li and Patrick P. C.
Cryptography and Data Security: Long-Term Challenges Burt Kaliski, RSA Security Northeastern University CCIS Mini Symposium on Information Security November.

Cryptography and Data Security: Long-Term Challenges Burt Kaliski, RSA Security Northeastern University CCIS Mini Symposium on Information Security November.
1 Toward I/O-Efficient Protection Against Silent Data Corruptions in RAID Arrays Mingqiang Li and Patrick P. C. Lee The Chinese University of Hong Kong.

1 Toward I/O-Efficient Protection Against Silent Data Corruptions in RAID Arrays Mingqiang Li and Patrick P. C. Lee The Chinese University of Hong Kong.
Trustworthy Services from Untrustworthy Components: Overview Fred B. Schneider Department of Computer Science Cornell University Ithaca, New York 14853.

Trustworthy Services from Untrustworthy Components: Overview Fred B. Schneider Department of Computer Science Cornell University Ithaca, New York
Beyond the MDS Bound in Distributed Cloud Storage

Beyond the MDS Bound in Distributed Cloud Storage
1 Live Deduplication Storage of Virtual Machine Images in an Open-Source Cloud Chun-Ho Ng, Mingcao Ma, Tsz-Yeung Wong, Patrick P. C. Lee, John C. S. Lui.

1 Live Deduplication Storage of Virtual Machine Images in an Open-Source Cloud Chun-Ho Ng, Mingcao Ma, Tsz-Yeung Wong, Patrick P. C. Lee, John C. S. Lui.
1 Intrusion Tolerance for NEST Bruno Dutertre, Steven Cheung SRI International NEST 2 Kickoff Meeting November 4, 2002.

1 Intrusion Tolerance for NEST Bruno Dutertre, Steven Cheung SRI International NEST 2 Kickoff Meeting November 4, 2002.
CSCE 715 Ankur Jain 11/16/2010. Introduction Design Goals Framework SDT Protocol Achievements of Goals Overhead of SDT Conclusion.

CSCE 715 Ankur Jain 11/16/2010. Introduction Design Goals Framework SDT Protocol Achievements of Goals Overhead of SDT Conclusion.
1 Dynamic Key-Updating: Privacy- Preserving Authentication for RFID Systems Li Lu, Lei Hu State Key Laboratory of Information Security, Graduate School.

1 Dynamic Key-Updating: Privacy- Preserving Authentication for RFID Systems Li Lu, Lei Hu State Key Laboratory of Information Security, Graduate School.
BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.

BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.

Similar presentations

Ads by Google