Protecting mass data basing on small trusted agent

Authors:
Fangyong Hou;Zhiying Wang;Kui Dai;Yun Liu
Affiliations:
School of Computer, National University of Defense Technology, Changsha, P.R.China;School of Computer, National University of Defense Technology, Changsha, P.R.China;School of Computer, National University of Defense Technology, Changsha, P.R.China;School of Computer, National University of Defense Technology, Changsha, P.R.China
Venue:
ISPEC'05 Proceedings of the First international conference on Information Security Practice and Experience
Year:
2005

Citing 9
Cited 0

Checking the correctness of memories

SFCS '91 Proceedings of the 32nd annual symposium on Foundations of computer science
A cryptographic file system for UNIX

CCS '93 Proceedings of the 1st ACM conference on Computer and communications security
Security Engineering: A Guide to Building Dependable Distributed Systems

Security Engineering: A Guide to Building Dependable Distributed Systems
Unifying File System Protection

Proceedings of the General Track: 2002 USENIX Annual Technical Conference
Protecting the Integrity of an Entire File System

IEEE-IWIA '03 Proceedings of the First IEEE International Workshop on Information Assurance (IWIA'03)
Don't Trust Your File Server

HOTOS '01 Proceedings of the Eighth Workshop on Hot Topics in Operating Systems
Protecting integrity and confidentiality for data communication

ISCC '04 Proceedings of the Ninth International Symposium on Computers and Communications 2004 Volume 2 (ISCC"04) - Volume 02
How to build a trusted database system on untrusted storage

OSDI'00 Proceedings of the 4th conference on Symposium on Operating System Design & Implementation - Volume 4
Fast and secure distributed read-only file system

OSDI'00 Proceedings of the 4th conference on Symposium on Operating System Design & Implementation - Volume 4

Quantified Score

Hi-index	0.00

Visualization

Abstract

Providing data confidentiality and integrity is essential to ensure secure or trusted computing. Designs for such purpose always face substaintial difficulties, as providing solid security will be contrary to achieving satisfied performance. Basing on a less rigor precondition that will be tenable in many cases, such designs can be implemented with smaller endeavors. The core idea is to let a trusted agent to trustworthily hold one unique timestamp for each untrusted data block; and encrypts each block, as well as the related integrity code, through the corresponding timestamp. In such way, any malicious disclosure and tamper can be prevented. At the same time, each block can be directly verified by the associated timestamp without requiring additional data to minimize the cost of integrity checking, and OTP encryption scheme can pre-computes keystream to remove most encryption latencies.