Full Disk Encryption: Bridging Theory and Practice

Louiza Khati 1, 2 Nicky Mouha 3, 4, 5 Damien Vergnaud 6, 2
5 ESAT-COSIC - Computer Security and Industrial Cryptography [KU Leuven]
KU-ESAT - Department of Electrical Engineering [KU Leuven]
6 CASCADE - Construction and Analysis of Systems for Confidentiality and Authenticity of Data and Entities
DI-ENS - Département d'informatique de l'École normale supérieure, CNRS - Centre National de la Recherche Scientifique : UMR 8548, Inria de Paris
Abstract : We revisit the problem of Full Disk Encryption (FDE), which refers to the encryption of each sector of a disk volume. In the context of FDE, it is assumed that there is no space to store additional data, such as an IV (Initialization Vector) or a MAC (Message Authentica-tion Code) value. We formally define the security notions in this model against chosen-plaintext and chosen-ciphertext attacks. Then, we classify various FDE modes of operation according to their security in this setting, in the presence of various restrictions on the queries of the adversary. We will find that our approach leads to new insights for both theory and practice. Moreover, we introduce the notion of a diversifier, which does not require additional storage, but allows the plaintext of a particular sector to be encrypted to different ciphertexts. We show how a 2-bit diversifier can be implemented in the EagleTree simulator for solid state drives (SSDs), while decreasing the total number of Input/Output Operations Per Second (IOPS) by only 4%.
Type de document :
Communication dans un congrès
Helena Handschuh. CT-RSA 2017 - RSA Conference Cryptographers' Track, Feb 2017, San Francisco, United States. Springer, 10159, pp.241--257, Lecture Notes in Computer Science. 〈https://www.rambus.com/ct-rsa-2017/〉. 〈10.1007/978-3-319-52153-4_14〉
Liste complète des métadonnées

Littérature citée [26 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01403418
Contributeur : Nicky Mouha <>
Soumis le : vendredi 25 novembre 2016 - 21:42:16
Dernière modification le : jeudi 26 avril 2018 - 10:29:08
Document(s) archivé(s) le : lundi 20 mars 2017 - 19:09:23

Fichier

fde.pdf
Fichiers produits par l'(les) auteur(s)

Licence


Domaine public

Identifiants

Collections

Citation

Louiza Khati, Nicky Mouha, Damien Vergnaud. Full Disk Encryption: Bridging Theory and Practice. Helena Handschuh. CT-RSA 2017 - RSA Conference Cryptographers' Track, Feb 2017, San Francisco, United States. Springer, 10159, pp.241--257, Lecture Notes in Computer Science. 〈https://www.rambus.com/ct-rsa-2017/〉. 〈10.1007/978-3-319-52153-4_14〉. 〈hal-01403418〉

Partager

Métriques

Consultations de la notice

505

Téléchargements de fichiers

176