Building secure file systems out of Byzantine storage

David Mazières, Dennis Shasha

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

This paper shows how to implement a trusted network file system on an untrusted server. While cryptographic storage techniques exist that allow users to keep data secret from untrusted servers, this work concentrates on the detection of tampering attacks and stale data. Ideally, users of an untrusted storage server would immediately and unconditionally notice any misbehavior on the part of the server. This ideal is unfortunately not achievable. However, we define a notion of data integrity called fork consistency in which, if the server delays just one user from seeing even a single change by another, the two users will never again see one another's changes-a failure easily detectable with on-line communication. We give a practical protocol for a multi-user network file system called SUNDR, and prove that SUNDR offers fork consistency whether or not the server obeys the protocol.

Original languageEnglish (US)
Title of host publicationProceedings of the Annual ACM Symposium on Principles of Distributed Computing
Pages108-117
Number of pages10
StatePublished - 2002
EventProceedings of the Twenty - First Annual ACM Symposium on Principles of Distributed Computing PODC 2002 - Monterey, CA, United States
Duration: Jul 21 2002Jul 24 2002

Other

OtherProceedings of the Twenty - First Annual ACM Symposium on Principles of Distributed Computing PODC 2002
CountryUnited States
CityMonterey, CA
Period7/21/027/24/02

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Hardware and Architecture

Fingerprint Dive into the research topics of 'Building secure file systems out of Byzantine storage'. Together they form a unique fingerprint.

Cite this