defy a deniable encrypted file system for log structured
play

DEFY: A Deniable, Encrypted File System for Log Structured Storage - PowerPoint PPT Presentation

Jan 15, 2024 •147 likes •550 views

DEFY: A Deniable, Encrypted File System for Log Structured Storage WRITTEN BY: PRESENTED BY: TIMOTHY PETERS NICHOLAS BURTON MARK GONDREE ZACHARY PETERSON What is encryption? Why hide encryption? Previous Work on the Matter u Anderson and

  1. DEFY: A Deniable, Encrypted File System for Log Structured Storage WRITTEN BY: PRESENTED BY: TIMOTHY PETERS NICHOLAS BURTON MARK GONDREE ZACHARY PETERSON

  2. What is encryption?

  3. Why hide encryption?

  4. Previous Work on the Matter u Anderson and others …

  5. Previous Work on the Matter u Anderson and others … u StegFS, McDonald and Kuhn

  6. Previous Work on the Matter u Anderson and others … u StegFS, McDonald and Kuhn u StegFS, Pang, Tan, and Zhou

  7. Previous Work on the Matter u Anderson and others … u StegFS, McDonald and Kuhn u StegFS, Pang, Tan, and Zhou u DenFS, Gasti and others

  8. Previous Work on the Matter u Anderson and others … u StegFS, McDonald and Kuhn u StegFS, Pang, Tan, and Zhou u DenFS, Gasti and others u Mobiflage, Skillen and Mannan

  9. Previous Work on the Matter u Anderson and others … u StegFS, McDonald and Kuhn u StegFS, Pang, Tan, and Zhou u DenFS, Gasti and others u Mobiflage, Skillen and Mannan u WhisperYAFFS

  10. Why is DEFY different?

  11. Main component of DEFY?

  12. Main component of DEFY? YAFFS

  13. YAFFS (Yet Another Flash File System)

  14. YAFFS (Yet Another Flash File System) u Read and Write at Page level, delete at Block level (NAND Flash Architecture)

  15. YAFFS (Yet Another Flash File System) u Read and Write at Page level, delete at Block level (NAND Flash Architecture) u Per-page Out Of Bounds (OOB) Area for MetaData (NAND Flash Architecture)

  16. YAFFS (Yet Another Flash File System) u Read and Write at Page level, delete at Block level (NAND Flash Architecture) u Per-page Out Of Bounds (OOB) Area for MetaData (NAND Flash Architecture) u Dynamic Wear Leveling (NAND Flash Architecture)

  17. YAFFS (Yet Another Flash File System) u Read and Write at Page level, delete at Block level (NAND Flash Architecture) u Per-page Out Of Bounds (OOB) Area for MetaData (NAND Flash Architecture) u Dynamic Wear Leveling (NAND Flash Architecture) u Log Structured File System

  18. Design Requirements

  19. Design Requirements u Deniability Levels

  20. Design Requirements u Deniability Levels u Secure Deletion

  21. Design Requirements u Deniability Levels u Secure Deletion u Authentication Encryption

  22. Design Requirements u Deniability Levels u Secure Deletion u Authentication Encryption u Minimizing Data Loss

  23. Design Requirements u Deniability Levels u Secure Deletion u Authentication Encryption u Minimizing Data Loss u Wear Leveling

  24. Design Requirements u Deniability Levels u Secure Deletion u Authentication Encryption u Minimizing Data Loss u Wear Leveling u Easy Deployment

  25. Design Overview

  26. Design Overview – Deniability Levels u Each level is associated with a Level Directory, which exists under the root directory. u All files in each level are within its given directory. u Each level has its own name and key, derived from user password

  27. Design Overview – Authentication Encryption

  28. Design Overview – Secure Deletion u All or Nothing transform u Single parts of ciphertext cannot be decrypted u Only the entire cyphertext can be decrypted u To achieve secure deletion, part of the ciphertext is deleted, making it impossible to get back the original data.

  29. Design Overview – Secure Deletion & Authentication Encryption

  30. OOD Area and MetaData

  31. OOD Area and MetaData

  32. Design Overview – Minimized Data Loss u Any encrypted page will be viewed as free by the page allocator u DENY uses 3 methods to mitigate this problem 1. When higher levels are revealed, all lower levels are as well 2. One level per block policy 3. DEFY writes checkpoints in a way the prevents overwriting of higher levels

  33. Design Overview – Minimized Data Loss

  34. Security Analysis

  35. Security Analysis

  36. Security Analysis

  37. Security Analysis

  38. Overhead

  39. Questions ?

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

DEFY: A Deniable, Encrypted File System for Log-Structured Storage. Timothy M. Peters, Mark A.

DEFY: A Deniable, Encrypted File System for Log-Structured Storage. Timothy M. Peters, Mark A.

DEFY: A Deniable, Encrypted File System for Log-Structured Storage. Timothy M. Peters, Mark A. Gondree, and Zachary N. J. Peterson. In NDSS'15 Presented by Fengwei Zhang Wayne State University CSC 6991 Advanced Computer Security 1

576 views • 21 slides
DEFY: A Deniable, Encrypted File System for Log-Structured Storage. Timothy M. Peters, Mark A.

DEFY: A Deniable, Encrypted File System for Log-Structured Storage. Timothy M. Peters, Mark A.

DEFY: A Deniable, Encrypted File System for Log-Structured Storage. Timothy M. Peters, Mark A. Gondree, and Zachary N. J. Peterson. In NDSS'15 Presented by Fengwei Zhang Wayne State University CSC 6991 Topics in Computer Security 1

695 views • 20 slides
Chapter 12: File System Implementation File System Structure File System Implementation

Chapter 12: File System Implementation File System Structure File System Implementation

Chapter 12: File System Implementation File System Structure File System Implementation Directory Implementation Allocation Methods Free-Space Management Efficiency and Performance Recovery Log-Structured File Systems

492 views • 47 slides
File System Implementation Summer 2016 Cornell University Today File allocation Unix

File System Implementation Summer 2016 Cornell University Today File allocation Unix

CS 4410 Operating Systems File System Implementation Summer 2016 Cornell University Today File allocation Unix file system Log-structured file system 2 File system: two design problems User interface: File, directory,

362 views • 21 slides
Cepheus: A New Encrypted File System with Group Sharing and Integrity Protection Kevin Fu

Cepheus: A New Encrypted File System with Group Sharing and Integrity Protection Kevin Fu

Cepheus: A New Encrypted File System with Group Sharing and Integrity Protection Kevin Fu Course VI-3A April 26, 1999 On-Campus Thesis Advisor: Ron Rivest Bellcore Company Supervisor: S. Rajagopalan 4/26/99 Cepheus: The Cryptographic

596 views • 12 slides
10-P4: Layered Block-Structured File System Slides originally by Prof. van Renesse Current

10-P4: Layered Block-Structured File System Slides originally by Prof. van Renesse Current

10-P4: Layered Block-Structured File System Slides originally by Prof. van Renesse Current version by Anne Bracy 1 Intro Underneath any file system, database system, etc. is more block stores Block store abstraction doesnt deal with

1.16k views • 40 slides
Log-Structured File System CS 416: Operating Systems Design, Spring 2011 Department of Computer

Log-Structured File System CS 416: Operating Systems Design, Spring 2011 Department of Computer

CS416 File System Log-Structured File System CS 416: Operating Systems Design, Spring 2011 Department of Computer Science Rutgers University Rutgers Sakai: 01:198:416 Sp11 (https://sakai.rutgers.edu) Log Structured Filesystem LFS Basic

675 views • 15 slides
Encrypted File Systems Don Porter CSE 506 Goals Protect confidentiality of data at rest

Encrypted File Systems Don Porter CSE 506 Goals Protect confidentiality of data at rest

Encrypted File Systems Don Porter CSE 506 Goals Protect confidentiality of data at rest (i.e., on disk) Even if the media is lost or stolen Protecting confidentiality of in-memory data much harder Continue using file system features

227 views • 19 slides
CS 423 Operating System Design: Log-Structured File Systems Professor Tianyin Xu CS 423:

CS 423 Operating System Design: Log-Structured File Systems Professor Tianyin Xu CS 423:

CS 423 Operating System Design: Log-Structured File Systems Professor Tianyin Xu CS 423: Operating Systems Design MP1/MP2/Midterm Stats CS 423: Operating Systems Design 2 Recap File Disk block Inode To read/write a file, we

353 views • 10 slides
Transaction Support in a Log- Structured File System V E R I T A S Margo I. Seltzer Harvard

Transaction Support in a Log- Structured File System V E R I T A S Margo I. Seltzer Harvard

Transaction Support in a Log- Structured File System V E R I T A S Margo I. Seltzer Harvard University Division of Applied Sciences Data Engineering 1993 Outline Introduction Implementation Performance Conclusions

600 views • 15 slides
A4: Layered Block-Structured File System CS 4410 Operating Systems Slides originally by Robbert

A4: Layered Block-Structured File System CS 4410 Operating Systems Slides originally by Robbert

A4: Layered Block-Structured File System CS 4410 Operating Systems Slides originally by Robbert van Renesse. Introduction abstraction that provides File System persistent, named data abstraction providing access to a Block Store sequence of

769 views • 39 slides
Write Optimization of Log-structured Flash File System for Parallel I/O on Manycore Servers

Write Optimization of Log-structured Flash File System for Parallel I/O on Manycore Servers

Write Optimization of Log-structured Flash File System for Parallel I/O on Manycore Servers Chang-Gyu Lee , Hyunki Byun, Sunghyun Noh, Hyeongu Kang, Youngjae Kim Department of Computer Science and Engineering Sogang University, Seoul, Republic of

539 views • 25 slides
[537] Distributed Systems Chapters 42 Tyler Harter 11/19/14 File-System Case Studies Local -

[537] Distributed Systems Chapters 42 Tyler Harter 11/19/14 File-System Case Studies Local -

[537] Distributed Systems Chapters 42 Tyler Harter 11/19/14 File-System Case Studies Local - FFS : Fast File System - LFS : Log-Structured File System Network - NFS : Network File System - AFS : Andrew File System File-System Case

1.57k views • 115 slides
Advanced File Systems Thierry Sans Advanced File Systems How to improve the performances?

Advanced File Systems Thierry Sans Advanced File Systems How to improve the performances?

Advanced File Systems Thierry Sans Advanced File Systems How to improve the performances? BSD Fast File System (FFS) How to improve the reliability in case of a crash? Log-Structured File system (LFS) Journaling File System (ext3)

600 views • 30 slides
The Design and Implementation of a Log-Structured File System Mendel Rosenblum and John K.

The Design and Implementation of a Log-Structured File System Mendel Rosenblum and John K.

The Design and Implementation of a Log-Structured File System Mendel Rosenblum and John K. Ousterhoust Presented by Ian Elliot Processor speed is getting faster... ... A lot faster, and quickly! Hard disk speed? Transfer speed vs.

911 views • 48 slides
~FILE SYSTEM~ SUNU WIBIRAMA OUTLINE FILE SYSTEM ACCESS METHODS DIRECTORY STRUCTURE FILE

~FILE SYSTEM~ SUNU WIBIRAMA OUTLINE FILE SYSTEM ACCESS METHODS DIRECTORY STRUCTURE FILE

~FILE SYSTEM~ SUNU WIBIRAMA OUTLINE FILE SYSTEM ACCESS METHODS DIRECTORY STRUCTURE FILE SYSTEM MOUNTING PROTECTION EXTERNAL VIEW OF THE FILE MANAGER FILE MANAGEMENT FILE, IS A NAMED AND ORDERED COLLECTION OF INFORMATION COMPUTER SHOULD

341 views • 33 slides
HotSec08 Presentation July 29, 2008 Digital Objects as Passwords Mohammad Mannan and P.C. van

HotSec08 Presentation July 29, 2008 Digital Objects as Passwords Mohammad Mannan and P.C. van

ObPwd: Digital Objects as Passwords HotSec08 Presentation July 29, 2008 Digital Objects as Passwords Mohammad Mannan and P.C. van Oorschot mmannan@scs.carleton.ca Carleton University, Canada Mohammad Mannan July 29, 2008 1/15 ObPwd:

285 views • 15 slides
The Black Art of Wireless Post-Exploitation: Bypassing Port-Based Access Controls Using Indirect

The Black Art of Wireless Post-Exploitation: Bypassing Port-Based Access Controls Using Indirect

The Black Art of Wireless Post-Exploitation: Bypassing Port-Based Access Controls Using Indirect Wireless Pivots GreHacks Gabriel Ryan (solstice) net user author /domain Gabriel Ryan Researcher @ Gotham Digital Science Worlds best Red

1.89k views • 125 slides
Amos 8:1-3 Gods Passion for Justice A vision Amos sees of Gods judgement upon Israel A

Amos 8:1-3 Gods Passion for Justice A vision Amos sees of Gods judgement upon Israel A

2019-11-19 The Roar of the Lion Amos 8:1-3 Gods Passion for Justice A vision Amos sees of Gods judgement upon Israel A Famine The 4 th of 4 visions starting in For Hearing Amos 7 Gods Word A play on words ending with

257 views • 4 slides
Prelude What's Going On by Al Cleveland, Renaldo Benson, and Marvin Gaye Call to Worship from

Prelude What's Going On by Al Cleveland, Renaldo Benson, and Marvin Gaye Call to Worship from

Welcome! We Prelude What's Going On by Al Cleveland, Renaldo Benson, and Marvin Gaye Call to Worship from Write Some New Agenda by Joseph H. Gilmore Leader: The wind blows across every border. The sun warms every upturned face, The

1.29k views • 61 slides
Unicorn: Two-Factor Attestation for Data Security M. Mannan

Unicorn: Two-Factor Attestation for Data Security M. Mannan

ACM CCS - Oct. 18, 2011 Unicorn: Two-Factor Attestation for Data Security M. Mannan Concordia University, Canada B. Kim, A. Ganjali & D. Lie University of Toronto, Canada 1 Unicorn target systems q

809 views • 21 slides
A Survey on Private Set Intersection Presented by Hongrui Cui RickFreeman@sjtu.edu.cn October

A Survey on Private Set Intersection Presented by Hongrui Cui RickFreeman@sjtu.edu.cn October

A Survey on Private Set Intersection Presented by Hongrui Cui RickFreeman@sjtu.edu.cn October 17, 2019 Cui Hongrui (SJTU) PSI October 17, 2019 1 / 27 Overview Introduction 1 PSI Literature Notations The Core of PSI Semi-Honest PSI 2

668 views • 36 slides
Electroweak Symmetry Breaking with Holomorphic Supersymmetric NambuJona-Lasinio Model

Electroweak Symmetry Breaking with Holomorphic Supersymmetric NambuJona-Lasinio Model

Electroweak Symmetry Breaking with Holomorphic Supersymmetric NambuJona-Lasinio Model Talk at PHENO 2010 OTTO C. W. KONG Natl Central U, Taiwan 1 NambuJona-Lasinio Model :- Otto Kong (NCU) 09ntnu-1 dynamical symmetry

530 views • 21 slides
How to Design a Blacklist (for a Password Meter) L. Jacquin A. Kumar C. Lauradoux

How to Design a Blacklist (for a Password Meter) L. Jacquin A. Kumar C. Lauradoux

How to Design a Blacklist (for a Password Meter) L. Jacquin A. Kumar C. Lauradoux December 4, 2014 Blacklist in practice The backbone of security ! Traffic analysis : Firewall : iptables , netfilter IDS : l7-filter

319 views • 15 slides

More recommend