On consistency of encrypted files

Authors:
Alina Oprea;Michael K. Reiter
Affiliations:
Computer Science Department, Carnegie Mellon University, Pittsburgh, PA;Electrical & Computer Engineering Department, Computer Science Department, and CyLab, Carnegie Mellon University, Pittsburgh, PA
Venue:
DISC'06 Proceedings of the 20th international conference on Distributed Computing
Year:
2006

Citing 20
Cited 11

Concurrency control and recovery in database systems

Concurrency control and recovery in database systems
Synchronization, Coherence, and Event Ordering in Multiprocessors

Computer
Linearizability: a correctness condition for concurrent objects

ACM Transactions on Programming Languages and Systems (TOPLAS)
The Stanford Dash Multiprocessor

Computer
Practical Byzantine fault tolerance

OSDI '99 Proceedings of the third symposium on Operating systems design and implementation
Timed consistency for shared distributed objects

Proceedings of the eighteenth annual ACM symposium on Principles of distributed computing
Separating key management from file system security

Proceedings of the seventeenth ACM symposium on Operating systems principles
Memory consistency and event ordering in scalable shared-memory multiprocessors

ISCA '90 Proceedings of the 17th annual international symposium on Computer Architecture
Design and evaluation of a conit-based continuous consistency model for replicated services

ACM Transactions on Computer Systems (TOCS)
Building secure file systems out of byzantine storage

Proceedings of the twenty-first annual symposium on Principles of distributed computing
A Framework for Evaluating Storage System Security

FAST '02 Proceedings of the Conference on File and Storage Technologies
A Secure and Highly Available Distributed Store for Meeting Diverse Data Storage Needs

DSN '01 Proceedings of the 2001 International Conference on Dependable Systems and Networks (formerly: FTCS)
Secure Intrusion-tolerant Replication on the Internet

DSN '02 Proceedings of the 2002 International Conference on Dependable Systems and Networks
On the composability of consistency conditions

Information Processing Letters
Farsite: federated, available, and reliable storage for an incompletely trusted environment

OSDI '02 Proceedings of the 5th symposium on Operating systems design and implementationCopyright restrictions prevent ACM from being able to make the PDFs for this conference available for downloading
Fault-scalable Byzantine fault-tolerant services

Proceedings of the twentieth ACM symposium on Operating systems principles
Secure untrusted data repository (SUNDR)

OSDI'04 Proceedings of the 6th conference on Symposium on Opearting Systems Design & Implementation - Volume 6
How to Make a Multiprocessor Computer That Correctly Executes Multiprocess Programs

IEEE Transactions on Computers
Plutus: scalable secure file sharing on untrusted storage

FAST'03 Proceedings of the 2nd USENIX conference on File and storage technologies
Secure key-updating for lazy revocation

ESORICS'06 Proceedings of the 11th European conference on Research in Computer Security

Efficient fork-linearizable access to untrusted shared memory

Proceedings of the twenty-sixth annual ACM symposium on Principles of distributed computing
Athos: Efficient Authentication of Outsourced File Systems

ISC '08 Proceedings of the 11th international conference on Information Security
Fork sequential consistency is blocking

Information Processing Letters
Trusting the cloud

ACM SIGACT News
Abortable Fork-Linearizable Storage

OPODIS '09 Proceedings of the 13th International Conference on Principles of Distributed Systems
Depot: cloud storage with minimal trust

OSDI'10 Proceedings of the 9th USENIX conference on Operating systems design and implementation
SPORC: group collaboration using untrusted cloud resources

OSDI'10 Proceedings of the 9th USENIX conference on Operating systems design and implementation
Depot: Cloud Storage with Minimal Trust

ACM Transactions on Computer Systems (TOCS)
Fail-Aware Untrusted Storage

SIAM Journal on Computing
Mobius: unified messaging and data serving for mobile apps

Proceedings of the 10th international conference on Mobile systems, applications, and services
Verifying cloud services: present and future

ACM SIGOPS Operating Systems Review

Quantified Score

Hi-index	0.00

Visualization

Abstract

In this paper we address the problem of consistency for cryptographic file systems. A cryptographic file system protects the users' data from the file server, which is possibly untrusted and might exhibit Byzantine behavior, by encrypting the data before sending it to the server. The consistency of the encrypted file objects that implement a cryptographic file system relies on the consistency of the two components used to implement them: the file storage protocol and the key distribution protocol. We first define two generic classes of consistency conditions that extend and generalize existing consistency conditions. We then formally define consistency for encrypted file objects in a generic way: for any consistency conditions for the key and file objects belonging to one of the two classes of consistency conditions considered, we define a corresponding consistency condition for encrypted file objects. We finally provide, in our main result, necessary and sufficient conditions for the consistency of the key distribution and file storage protocols under which the encrypted storage is consistent. Our framework allows the composition of existing key distribution and file storage protocols to build consistent encrypted file objects and simplifies complex proofs for showing the consistency of encrypted storage.