Design for a decentralized security system for network-attached storage

Appeared in Proceedings of the 17th IEEE Symposium on Mass Storage Systems and Technologies.

Abstract

This paper describes an architecture for a secure file system based on network-attached storage that guarantees end-to-end encryption for all user data. We describe the design of this system, focusing on the features that allow it to ensure that data is written and read only by authorized users, even in the face of attacks such as network snooping and physically capturing the storage media.

Our work shows that such a system is feasible given the speeds of today’s microprocessors, and we discuss benchmark results using several popular encryption and authentication algorithms that could be used on storage devices in such a system. Based on these calculations, we present the overall performance of the system, showing that it is nearly as fast as the non-encrypted file systems in wide use today.

Publication date:
March 2000

Authors:
William E. Freeman
Ethan L. Miller

Projects:
Secure File and Storage Systems

Available media

Full paper text: PDF

Bibtex entry

@inproceedings{freeman-msst00,
  author       = {William E. Freeman and Ethan L. Miller},
  title        = {Design for a decentralized security system for network-attached storage},
  booktitle    = {Proceedings of the 17th IEEE Symposium on Mass Storage Systems and Technologies},
  pages        = {361–373},
  month        = mar,
  year         = {2000},
}
Last modified 5 Aug 2020