Design and implementation of verifiable audit trails for a versioning file system

FAST 2007 - 5th USENIX Conference on File and Storage Technologies

Volumn , Issue , 2007, Pages 93-106

  Peterson, Zachary N J ^a   Burns, Randal ^a   Ateniese, Giuseppe ^a   Bono, Stephen ^a  

^a JOHNS HOPKINS UNIVERSITY   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

COMPUTATIONAL EFFICIENCY; DIGITAL STORAGE;

AUDIT PROCESS; AUDIT TRAILS; DESIGN AND IMPLEMENTATIONS; ELECTRONIC RECORDS; FILE SYSTEMS; THIRD PARTIES; VERSIONING;

FILE ORGANIZATION;

EID: 85077267765     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (42)

1. ADAMS, C., CAIN, P., PINKAS, D., AND ZUCCHERATO, R. IETF RFC 3161 Time-Stamp Protocol (TSP). IETF Network Working Group, 2001.
2. AMERICAN BANKERS ASSOCIATION. American national standard for financial institution message authentication (wholesale). ANSI X9.9, 1986.
3. BELLARE, M., CANETTI, R., AND KRAWCZYK, H. Keying hash functions for message authentication. In Advances in Cryptology - Crypto’96 Proceedings (1996), vol. 1109, Springer-Verlag, pp. 1–19. Lecture Notes in Computer Science.
4. BELLARE, M., GOLDREICH, O., AND GOLDWASSER, S. Incremental cryptography and application to virus protection. In Proceedings of the ACM Symposium on the Theory of Computing (May-June 1995), pp. 45–56.
5. BELLARE, M., GUÉRIN, R., AND ROGAWAY, P. XOR MACs: New methods for message authentication using finite pseudorandom functions. In Advances in Cryptology - Crypto’95 Proceedings (1995), vol. 963, Springer-Verlag, pp. 15–28. Lecture Notes in Computer Science.
6. BLACK, J., AND ROGAWAY, P. A block-cipher mode of operation for parallelizable message authentication. In Advances in Cryptology - Eurocrypt’02 Proceedings (2002), vol. 2332, Springer-Verlag, pp. 384 – 397. Lecture Notes in Computer Science.
7. BURNS, R., PETERSON, Z., ATENIESE, G., AND BONO, S. Verifiable audit trails for a versioning file system. In Proceedings of the ACM CCS Workshop on Storage Security and Survivability (November 2005), pp. 44–50.
8. CRESCENZO, G. D., GRAVEMAN, R., GE, R., AND ARCE, G. Approximate message authentication and biometric entity authentication. In Proceedings of Financial Cryptography and Data Security (February-March 2005).
9. DABEK, F., KAASHOEK, M. F., KARGER, D., MORRIS, R., AND STOICA, I. Wide-area cooperative storage with CFS. In Proceedings of the ACM Symposium on Operating Systems Principles (SOSP) (October 2001), pp. 202–215.
10. DAEMEN, J., AND RIJMEN, V. The Design of Rijndael: AES – the Advanced Encryption Standard. Springer, 2002.
11. ELLARD, D., LEDLIE, J., MALKANI, P., AND SELTZER, M. Passive NFS tracing of email and research workloads. In Proceedings of the USENIX File and Storage Technologies Conference (FAST) (March 2003), pp. 203–216.
12. FARMER, D., AND VENEMA, W. Forensic Disocvery. Addison-Wesley, 2004.
13. FU, K., KASSHOEK, M. F., AND MAZIÈRES, D. Fast and secure distributed read-only file system. ACM Transactions on Computer Systems 20, 1 (2002), 1–24.
14. GIFFORD, D. K., NEEDHAM, R. M., AND SCHROEDER, M. D. The Cedar file system. Communications of the ACM 31, 3 (March 1988), 288–298.
15. HAUBERT, E., TUCEK, J., BRUMBAUGH, L., AND YURCIK, W. Tamper-resistant storage techniques for multimedia systems. In IS&T/SPIE Symposium Electronic Imaging Storage and Retrieval Methods and Applications for Multimedia (EI121) (January 2005), pp. 30–40.
16. INTERNATIONAL ORGANIZATION FOR STANDARDIZATION. Information technology - security techniques - data integrity mechanism using a cryptographic check function employing a block cipher algorithm. ISO/IEC 9797, April 1994.
17. KALLAHALLA, M., RIEDEL, E., SWAMINATHAN, R., WANG, Q., AND FU, K. Plutus: Scalable secure file sharing on untrusted storage. In Proceedings of the USENIX Conference on File and Storage Technologies (FAST) (March 2003), pp. 29–42.
18. KUBIATOWICZ, J., BINDEL, D., CHEN, Y., CZERWINSKI, S., EATON, P., GEELS, D., GUMMANDI, R., RHEA, S., WEATHERSPOON, H., WEIMER, W., WELLS, C., AND ZHAO, B. OceanStore: An architecture for global-scale persistent storage. In Proceedings of the ACM Conference on Architecture Support for Programming Languages and Operating Systems (ASPLOS) (November 2000), pp. 190–201.
19. KUENNING, G. H., POPEK, G. J., AND REIHE, P. An analysis of trace data for predictive file caching in mobile computing. In Proceedings of the Summer USENIX Technical Conference (June 1994).
20. LAMPORT, L. Password authentication with insecure comunication. Communications of the ACM 24, 11 (1981), 770–772.
21. MANIATIS, P., AND BAKER, M. Enabling the archival storage of signed documents. In Proceedings of the USENIX Conference on File and Storage Technologies (FAST) (January 2002), pp. 31–46.
22. MCCOY, K. VMS File System Internals. Digital Press, 1990.
23. MICALI, S. Efficient certificate revocation. Tech. Rep. MIT/LCS/TM-542b, Massachusetts Institute of Technology, 1996.
24. MONROE, J. Emerging solutions for content storage. Presentation at PlanetStorage, 2004.
25. MORRIS, J. The Linux kernel cryptographic API. Linux Journal, 108 (April 2003).
26. MUNISWAMY-REDDY, K.-K., HOLAND, D. A., BRAUN, U., AND SELTZER, M. Provenance-aware storage systems. In Proceedings of the USENIX Annual Technical Conference (June 2006).
27. MUNISWAMY-REDDY, K.-K., WRIGHT, C. P., HIMMER, A., AND ZADOK, E. A versatile and user-oriented versioning file system. In Proceedings of the USENIX Conference on File and Storage Technologies (FAST) (March 2004), pp. 115–128.
28. NATIONAL INSTITUTE OF STANDARDS AND TECHNOLOGY. Digital signature standard (DSS). Federal Information Processing Standards (FIPS) Publication 186, May 1994.
29. NATIONAL INSTITUTE OF STANDARDS AND TECHNOLOGY. Secure hash standard. Federal Information Processing Standards (FIPS) Publication 180-1, April 1995.
30. 3FS: An in-kernel integrity checker and intrusion detection file system. In Proceedings of the Large Installation System Administration Conference (LISA) (November 2004), pp. 67–78.
31. PETERSON, Z., AND BURNS, R. Ext3cow: A time-shifting file system for regulatory compliance. ACM Transcations on Storage 1, 2 (2005), 190–212.
32. PETERSON, Z. N. J., BURNS, R., HERRING, J., STUBBLE-FIELD, A., AND RUBIN, A. Secure deletion for a versioning file system. In Proceedings of the USENIX Conference on File And Storage Technologies (FAST) (December 2005), pp. 143–154.
33. QUINLAN, S., AND DORWARD, S. Venti: A new approach to archival storage. In Proceedings of the USENIX Conference on File And Storage Technologies (FAST) (January 2002), pp. 89–101.
34. RIVEST, R. L. All-or-nothing encryption and the package transform. In Proceedings of the Fast Software Encryption Conference (1997), vol. 1267, pp. 210–218. Lecture Notes in Computer Science.
35. ROSELLI, D., AND ANDERSON, T. E. Characteristics of file system workloads. Research report, University of California, Berkeley, June 1996.
36. ROSELLI, D., LORCH, J., AND ANDERSON, T. A comparison of file system workloads. In Proceedings of the USENIX Technical Conference (2000), pp. 41–54.
37. SCHNEIER, B., AND KELSEY, J. Secure audit logs to support computer forensics. ACM Transactions on Information Systems Security 2, 2 (1999), 159–176.
38. SOULES, C. A. N., GOODSON, G. R., STRUNK, J. D., AND GANGER, G. R. Metadata efficiency in versioning file systems. In Proceedings of the USENIX Conference on File and Storage Technologies (FAST) (March 2003), pp. 43–58.
39. UNITED STATES CONGRESS. The Health Insurance Portability and Accountability Act (HIPAA), 1996.
40. UNITED STATES CONGRESS. The Sarbanes-Oxley Act (SOX). 17 C.F.R. Parts 228, 229 and 249, 2002.
41. WALDMAN, M., RUBIN, A. D., AND CRANOR, L. F. Publius: A robust, tamper-evident, censorship-resistant, Web publishing system. In Proceedings of the USENIX Security Symposium (August 2000), pp. 59–72.
42. WEATHERSPOON, H., WELLS, C., AND KUBIATOWICZ, J. Naming and integrity: Self-verifying data in peer-to-peer systems. In Proceedings of the Workshop on Future Directions in Distributed Computing (June 2002), pp. 142–147.