defy a deniable encrypted file system for log structured
play

DEFY: A Deniable, Encrypted File System for Log Structured Storage - PowerPoint PPT Presentation

Jan 15, 2024 •147 likes •550 views

DEFY: A Deniable, Encrypted File System for Log Structured Storage WRITTEN BY: PRESENTED BY: TIMOTHY PETERS NICHOLAS BURTON MARK GONDREE ZACHARY PETERSON What is encryption? Why hide encryption? Previous Work on the Matter u Anderson and

  1. DEFY: A Deniable, Encrypted File System for Log Structured Storage WRITTEN BY: PRESENTED BY: TIMOTHY PETERS NICHOLAS BURTON MARK GONDREE ZACHARY PETERSON

  2. What is encryption?

  3. Why hide encryption?

  4. Previous Work on the Matter u Anderson and others …

  5. Previous Work on the Matter u Anderson and others … u StegFS, McDonald and Kuhn

  6. Previous Work on the Matter u Anderson and others … u StegFS, McDonald and Kuhn u StegFS, Pang, Tan, and Zhou

  7. Previous Work on the Matter u Anderson and others … u StegFS, McDonald and Kuhn u StegFS, Pang, Tan, and Zhou u DenFS, Gasti and others

  8. Previous Work on the Matter u Anderson and others … u StegFS, McDonald and Kuhn u StegFS, Pang, Tan, and Zhou u DenFS, Gasti and others u Mobiflage, Skillen and Mannan

  9. Previous Work on the Matter u Anderson and others … u StegFS, McDonald and Kuhn u StegFS, Pang, Tan, and Zhou u DenFS, Gasti and others u Mobiflage, Skillen and Mannan u WhisperYAFFS

  10. Why is DEFY different?

  11. Main component of DEFY?

  12. Main component of DEFY? YAFFS

  13. YAFFS (Yet Another Flash File System)

  14. YAFFS (Yet Another Flash File System) u Read and Write at Page level, delete at Block level (NAND Flash Architecture)

  15. YAFFS (Yet Another Flash File System) u Read and Write at Page level, delete at Block level (NAND Flash Architecture) u Per-page Out Of Bounds (OOB) Area for MetaData (NAND Flash Architecture)

  16. YAFFS (Yet Another Flash File System) u Read and Write at Page level, delete at Block level (NAND Flash Architecture) u Per-page Out Of Bounds (OOB) Area for MetaData (NAND Flash Architecture) u Dynamic Wear Leveling (NAND Flash Architecture)

  17. YAFFS (Yet Another Flash File System) u Read and Write at Page level, delete at Block level (NAND Flash Architecture) u Per-page Out Of Bounds (OOB) Area for MetaData (NAND Flash Architecture) u Dynamic Wear Leveling (NAND Flash Architecture) u Log Structured File System

  18. Design Requirements

  19. Design Requirements u Deniability Levels

  20. Design Requirements u Deniability Levels u Secure Deletion

  21. Design Requirements u Deniability Levels u Secure Deletion u Authentication Encryption

  22. Design Requirements u Deniability Levels u Secure Deletion u Authentication Encryption u Minimizing Data Loss

  23. Design Requirements u Deniability Levels u Secure Deletion u Authentication Encryption u Minimizing Data Loss u Wear Leveling

  24. Design Requirements u Deniability Levels u Secure Deletion u Authentication Encryption u Minimizing Data Loss u Wear Leveling u Easy Deployment

  25. Design Overview

  26. Design Overview – Deniability Levels u Each level is associated with a Level Directory, which exists under the root directory. u All files in each level are within its given directory. u Each level has its own name and key, derived from user password

  27. Design Overview – Authentication Encryption

  28. Design Overview – Secure Deletion u All or Nothing transform u Single parts of ciphertext cannot be decrypted u Only the entire cyphertext can be decrypted u To achieve secure deletion, part of the ciphertext is deleted, making it impossible to get back the original data.

  29. Design Overview – Secure Deletion & Authentication Encryption

  30. OOD Area and MetaData

  31. OOD Area and MetaData

  32. Design Overview – Minimized Data Loss u Any encrypted page will be viewed as free by the page allocator u DENY uses 3 methods to mitigate this problem 1. When higher levels are revealed, all lower levels are as well 2. One level per block policy 3. DEFY writes checkpoints in a way the prevents overwriting of higher levels

  33. Design Overview – Minimized Data Loss

  34. Security Analysis

  35. Security Analysis

  36. Security Analysis

  37. Security Analysis

  38. Overhead

  39. Questions ?

Recommend

DEFY: A Deniable, Encrypted File System for Log-Structured Storage. Timothy M. Peters, Mark A.

DEFY: A Deniable, Encrypted File System for Log-Structured Storage. Timothy M. Peters, Mark A.

DEFY: A Deniable, Encrypted File System for Log-Structured Storage. Timothy M. Peters, Mark A. Gondree, and Zachary N. J. Peterson. In NDSS'15 Presented by Fengwei Zhang Wayne State University CSC 6991 Advanced Computer Security 1

576 views • 21 slides
DEFY: A Deniable, Encrypted File System for Log-Structured Storage. Timothy M. Peters, Mark A.

DEFY: A Deniable, Encrypted File System for Log-Structured Storage. Timothy M. Peters, Mark A.

DEFY: A Deniable, Encrypted File System for Log-Structured Storage. Timothy M. Peters, Mark A. Gondree, and Zachary N. J. Peterson. In NDSS'15 Presented by Fengwei Zhang Wayne State University CSC 6991 Topics in Computer Security 1

695 views • 20 slides
Chapter 12: File System Implementation File System Structure File System Implementation

Chapter 12: File System Implementation File System Structure File System Implementation

Chapter 12: File System Implementation File System Structure File System Implementation Directory Implementation Allocation Methods Free-Space Management Efficiency and Performance Recovery Log-Structured File Systems

492 views • 47 slides
File System Implementation Summer 2016 Cornell University Today File allocation Unix

File System Implementation Summer 2016 Cornell University Today File allocation Unix

CS 4410 Operating Systems File System Implementation Summer 2016 Cornell University Today File allocation Unix file system Log-structured file system 2 File system: two design problems User interface: File, directory,

362 views • 21 slides
Cepheus: A New Encrypted File System with Group Sharing and Integrity Protection Kevin Fu

Cepheus: A New Encrypted File System with Group Sharing and Integrity Protection Kevin Fu

Cepheus: A New Encrypted File System with Group Sharing and Integrity Protection Kevin Fu Course VI-3A April 26, 1999 On-Campus Thesis Advisor: Ron Rivest Bellcore Company Supervisor: S. Rajagopalan 4/26/99 Cepheus: The Cryptographic

596 views • 12 slides
10-P4: Layered Block-Structured File System Slides originally by Prof. van Renesse Current

10-P4: Layered Block-Structured File System Slides originally by Prof. van Renesse Current

10-P4: Layered Block-Structured File System Slides originally by Prof. van Renesse Current version by Anne Bracy 1 Intro Underneath any file system, database system, etc. is more block stores Block store abstraction doesnt deal with

1.16k views • 40 slides
Log-Structured File System CS 416: Operating Systems Design, Spring 2011 Department of Computer

Log-Structured File System CS 416: Operating Systems Design, Spring 2011 Department of Computer

CS416 File System Log-Structured File System CS 416: Operating Systems Design, Spring 2011 Department of Computer Science Rutgers University Rutgers Sakai: 01:198:416 Sp11 (https://sakai.rutgers.edu) Log Structured Filesystem LFS Basic

675 views • 15 slides
Encrypted File Systems Don Porter CSE 506 Goals Protect confidentiality of data at rest

Encrypted File Systems Don Porter CSE 506 Goals Protect confidentiality of data at rest

Encrypted File Systems Don Porter CSE 506 Goals Protect confidentiality of data at rest (i.e., on disk) Even if the media is lost or stolen Protecting confidentiality of in-memory data much harder Continue using file system features

227 views • 19 slides
CS 423 Operating System Design: Log-Structured File Systems Professor Tianyin Xu CS 423:

CS 423 Operating System Design: Log-Structured File Systems Professor Tianyin Xu CS 423:

CS 423 Operating System Design: Log-Structured File Systems Professor Tianyin Xu CS 423: Operating Systems Design MP1/MP2/Midterm Stats CS 423: Operating Systems Design 2 Recap File Disk block Inode To read/write a file, we

353 views • 10 slides
Transaction Support in a Log- Structured File System V E R I T A S Margo I. Seltzer Harvard

Transaction Support in a Log- Structured File System V E R I T A S Margo I. Seltzer Harvard

Transaction Support in a Log- Structured File System V E R I T A S Margo I. Seltzer Harvard University Division of Applied Sciences Data Engineering 1993 Outline Introduction Implementation Performance Conclusions

600 views • 15 slides
A4: Layered Block-Structured File System CS 4410 Operating Systems Slides originally by Robbert

A4: Layered Block-Structured File System CS 4410 Operating Systems Slides originally by Robbert

A4: Layered Block-Structured File System CS 4410 Operating Systems Slides originally by Robbert van Renesse. Introduction abstraction that provides File System persistent, named data abstraction providing access to a Block Store sequence of

769 views • 39 slides
Write Optimization of Log-structured Flash File System for Parallel I/O on Manycore Servers

Write Optimization of Log-structured Flash File System for Parallel I/O on Manycore Servers

Write Optimization of Log-structured Flash File System for Parallel I/O on Manycore Servers Chang-Gyu Lee , Hyunki Byun, Sunghyun Noh, Hyeongu Kang, Youngjae Kim Department of Computer Science and Engineering Sogang University, Seoul, Republic of

543 views • 25 slides
[537] Distributed Systems Chapters 42 Tyler Harter 11/19/14 File-System Case Studies Local -

[537] Distributed Systems Chapters 42 Tyler Harter 11/19/14 File-System Case Studies Local -

[537] Distributed Systems Chapters 42 Tyler Harter 11/19/14 File-System Case Studies Local - FFS : Fast File System - LFS : Log-Structured File System Network - NFS : Network File System - AFS : Andrew File System File-System Case

1.57k views • 115 slides
Advanced File Systems Thierry Sans Advanced File Systems How to improve the performances?

Advanced File Systems Thierry Sans Advanced File Systems How to improve the performances?

Advanced File Systems Thierry Sans Advanced File Systems How to improve the performances? BSD Fast File System (FFS) How to improve the reliability in case of a crash? Log-Structured File system (LFS) Journaling File System (ext3)

600 views • 30 slides
The Design and Implementation of a Log-Structured File System Mendel Rosenblum and John K.

The Design and Implementation of a Log-Structured File System Mendel Rosenblum and John K.

The Design and Implementation of a Log-Structured File System Mendel Rosenblum and John K. Ousterhoust Presented by Ian Elliot Processor speed is getting faster... ... A lot faster, and quickly! Hard disk speed? Transfer speed vs.

911 views • 48 slides
~FILE SYSTEM~ SUNU WIBIRAMA OUTLINE FILE SYSTEM ACCESS METHODS DIRECTORY STRUCTURE FILE

~FILE SYSTEM~ SUNU WIBIRAMA OUTLINE FILE SYSTEM ACCESS METHODS DIRECTORY STRUCTURE FILE

~FILE SYSTEM~ SUNU WIBIRAMA OUTLINE FILE SYSTEM ACCESS METHODS DIRECTORY STRUCTURE FILE SYSTEM MOUNTING PROTECTION EXTERNAL VIEW OF THE FILE MANAGER FILE MANAGEMENT FILE, IS A NAMED AND ORDERED COLLECTION OF INFORMATION COMPUTER SHOULD

341 views • 33 slides
File Systems Chapter 11, 13 OSPP What is a File? What is a Directory? Goals of File System

File Systems Chapter 11, 13 OSPP What is a File? What is a Directory? Goals of File System

File Systems Chapter 11, 13 OSPP What is a File? What is a Directory? Goals of File System Performance Controlled Sharing Convenience: naming Reliability File System Workload File sizes Are most files small or large?

996 views • 62 slides
Metal A Metadata-Hiding File-Sharing System Weikeng Chen Raluca Ada Popa UC Berkeley

Metal A Metadata-Hiding File-Sharing System Weikeng Chen Raluca Ada Popa UC Berkeley

Metal A Metadata-Hiding File-Sharing System Weikeng Chen Raluca Ada Popa UC Berkeley End-to-end encrypted file sharing Academia: DepSky, M-Aegis, Mylar, Plutus, ShadowCrypt, Sieve, SiRiUS Industry: Encryption is not enough: Metadata still

1.17k views • 45 slides
CSE 120 File System Interface What the user/programmer sees File System Implementation

CSE 120 File System Interface What the user/programmer sees File System Implementation

Overview CSE 120 File System Interface What the user/programmer sees File System Implementation How it works Summer, 2006 Day 9 File Systems Instructor: Neil Rhodes 2 What is a File? Typical Filesystem Named collection of related

175 views • 5 slides
Distributed File Systems Distributed File Systems A distributed file system (DFS) is a

Distributed File Systems Distributed File Systems A distributed file system (DFS) is a

Distributed File Systems Distributed File Systems A distributed file system (DFS) is a distributed Definitions implementation of a classical time-sharing model of a file Distributed system - A number of loosely coupled system. machines

997 views • 8 slides
Windows File System Efficiency and Stability of a file system are contradicting requirements. How

Windows File System Efficiency and Stability of a file system are contradicting requirements. How

Unit OS8: File System 8.6. Quiz Windows Operating System Internals - by David A. Solomon and Mark E. Russinovich with Andreas Polze Windows File System Efficiency and Stability of a file system are contradicting requirements. How can the

279 views • 11 slides
Distributed Systems - III Open a file, check status on a file, close a file; Read data

Distributed Systems - III Open a file, check status on a file, close a file; Read data

CSE 421/521 - Operating Systems What does Distributed File System Provide? Fall 2011 Provide access to and manipulation of data stored at remote servers using file system interfaces Lecture - XXV What are the file system interfaces?

236 views • 5 slides
File System Thierry Sans (recap) File System Abstraction File system specifics of which disk

File System Thierry Sans (recap) File System Abstraction File system specifics of which disk

File System Thierry Sans (recap) File System Abstraction File system specifics of which disk class it is using It issues block read/write requests to the generic block layer Provide an abstraction Goals Implement an abstraction (files) for

389 views • 37 slides
FILE SYSTEM IMPLEMENTATION Sunu Wibirama Outline File-System Structure File-System

FILE SYSTEM IMPLEMENTATION Sunu Wibirama Outline File-System Structure File-System

FILE SYSTEM IMPLEMENTATION Sunu Wibirama Outline File-System Structure File-System Implementation Directory Implementation Allocation Methods Free-Space Management Discussion 11. Outline File-System Structure

516 views • 51 slides

More recommend