Skip to Main content Skip to Navigation
Conference papers

A Novel Cryptographic Framework for Cloud File Systems and CryFS, a Provably-Secure Construction

Abstract : Using the cloud to store data offers many advantages for businesses and individuals alike. The cloud storage provider, however, has to be trusted not to inspect or even modify the data they are entrusted with. Encrypting the data offers a remedy, but current solutions have various drawbacks. Providers which offer encrypted storage themselves cannot necessarily be trusted, since they have no open implementation. Existing encrypted file systems are not designed for usage in the cloud and do not hide metadata like file sizes or directory structure, do not provide integrity, or are prohibitively inefficient. Most have no formal proof of security. Our contribution is twofold. We first introduce a comprehensive formal model for the security and integrity of cloud file systems. Second, we present $$\mathsf {CryFS}$$, a novel encrypted file system specifically designed for usage in the cloud. Our file system protects confidentiality and integrity (including metadata), even in presence of an actively malicious cloud provider. We give a proof of security for these properties. Our implementation is easy and transparent to use and offers performance comparable to other state-of-the-art file systems.
Document type :
Conference papers
Complete list of metadata

Cited literature [15 references]  Display  Hide  Download

https://hal.inria.fr/hal-01684369
Contributor : Hal Ifip <>
Submitted on : Monday, January 15, 2018 - 2:08:01 PM
Last modification on : Monday, January 15, 2018 - 2:11:07 PM
Long-term archiving on: : Tuesday, May 8, 2018 - 12:24:17 AM

File

453481_1_En_23_Chapter.pdf
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Sebastian Messmer, Jochen Rill, Dirk Achenbach, Jörn Müller-Quade. A Novel Cryptographic Framework for Cloud File Systems and CryFS, a Provably-Secure Construction. 31th IFIP Annual Conference on Data and Applications Security and Privacy (DBSEC), Jul 2017, Philadelphia, PA, United States. pp.409-429, ⟨10.1007/978-3-319-61176-1_23⟩. ⟨hal-01684369⟩

Share

Metrics

Record views

1088

Files downloads

117