Outsourcing data to the decentralized cloud has faced significant security concerns. The storage peers might be infected by malware, or motivated by other means to arbitrarily manipulate data. Most current decentralized cloud storage system designs rely on a blockchain to implement auditing via smart contracts and rely purely on storing redundant data across peers to repair corruptions. This results in significant overhead for executing the smart contracts, as well as substantial bandwidth consumption for performing repairs over time. This work has introduced HiDCS, a Hardware-assisted integrity-assured Decentralized Cloud Storage system. HiDCS relies on two trusted components: 1) trusted execution environment which is a secure area of the processor, and 2) flash translation layer which is the firmware encapsulated in the flash storage hardware. Using these two components, HiDCS enables self-audit, while also explicitly preventing both outsourcing and generation attacks. Additionally, HiDCS enables self-repair, which attempts to fix corrupted data using only local resources, thereby eliminating the significant communication overhead typically associated with repairs over time. Security analysis and experimental evaluation justify the fact that HiDCS can ensure the reliability of outsourced data in the decentralized cloud with minimal performance impact.

错误:搜索内容不能为空,请输入英文关键词
错误:关键词超出字数限制,请精简
高级检索

Hardware-Assisted Secure Decentralized Cloud Storage via Self-audit and Self-repair

  • Josh Dafoe,
  • Niusen Chen,
  • Bo Chen

摘要

Outsourcing data to the decentralized cloud has faced significant security concerns. The storage peers might be infected by malware, or motivated by other means to arbitrarily manipulate data. Most current decentralized cloud storage system designs rely on a blockchain to implement auditing via smart contracts and rely purely on storing redundant data across peers to repair corruptions. This results in significant overhead for executing the smart contracts, as well as substantial bandwidth consumption for performing repairs over time. This work has introduced HiDCS, a Hardware-assisted integrity-assured Decentralized Cloud Storage system. HiDCS relies on two trusted components: 1) trusted execution environment which is a secure area of the processor, and 2) flash translation layer which is the firmware encapsulated in the flash storage hardware. Using these two components, HiDCS enables self-audit, while also explicitly preventing both outsourcing and generation attacks. Additionally, HiDCS enables self-repair, which attempts to fix corrupted data using only local resources, thereby eliminating the significant communication overhead typically associated with repairs over time. Security analysis and experimental evaluation justify the fact that HiDCS can ensure the reliability of outsourced data in the decentralized cloud with minimal performance impact.