Loading [MathJax]/extensions/MathMenu.js
Lazy revocation in cryptographic file systems | IEEE Conference Publication | IEEE Xplore
Subscribe
ADVANCED SEARCH
Conferences >Third IEEE International Secu...

Lazy revocation in cryptographic file systems

PDF
M. Backes; C. Cachin; A. Oprea
All Authors

Abstract:

A crucial element of distributed cryptographic file systems are key management solutions that allow for flexible but secure data sharing. We consider efficient key manage...Show More

Metadata

Abstract:

A crucial element of distributed cryptographic file systems are key management solutions that allow for flexible but secure data sharing. We consider efficient key management schemes for cryptographic file systems using lazy revocation. We give rigorous security definitions for three cryptographic schemes used in such systems, namely symmetric encryption, message-authentication codes and signature schemes. Additionally, we provide generic constructions for symmetric encryption and message-authentication codes with lazy revocation using key-updating schemes for lazy revocation, which have been introduced recently. We also give a construction of signature schemes with lazy revocation from identity-based signatures. Finally, we describe how our constructions improve the key rotation mechanism in the Plutus file system.
Published in: Third IEEE International Security in Storage Workshop (SISW'05)
Date of Conference: 13-13 December 2005
Date Added to IEEE Xplore: 08 May 2006
Print ISBN:0-7695-2537-7
DOI: 10.1109/SISW.2005.7
Conference Location: San Francisco, CA, USA
Contents

1. Introduction

Networked storage solutions, such as Network-Attached Storage (NAS) and Storage Area Networks (SAN), have emerged recently as an alternative to direct-attached storage. It is desirable that clients have similar security guarantees in these environments to those offered by traditional storage. However, the storage servers in a networked storage system are more exposed than direct-attached disks. Clients need to protect the confidentiality and integrity of the stored data themselves and can not rely on the storage servers for security guarantees. Cryptographic file systems have been designed for this task.

Contact IEEE to Subscribe
More Like This
Enhanced Data Security Framework for Storage Area Networks

2009 Second International Conference on Environmental and Computer Science

Published: 2009

Exploiting Hierarchical Identity-Based Encryption for Access Control to Pervasive Computing Information

First International Conference on Security and Privacy for Emerging Areas in Communications Networks (SECURECOMM'05)

Published: 2005

Show More

References

References is not available for this document.

IEEE Account

Purchase Details

Profile Information

Need Help?

A not-for-profit organization, IEEE is the world's largest technical professional organization dedicated to advancing technology for the benefit of humanity.
© Copyright 2025 IEEE - All rights reserved. Use of this web site signifies your agreement to the terms and conditions.