Design and Implementation of Object-Oriented Encryption Storage System Based on Trusted Computing Platform

Author

Chen, Junjian ; Liu, Jingning ; Feng, Dan

Author_Institution

Wuhan Nat. Lab. for Optoelectron., Huazhong Univ. of Sci. & Technol., Wuhan, China

fYear

2010

fDate

11-14 Dec. 2010

Firstpage

546

Lastpage

550

Abstract

Object-oriented storage system is a distributed storage systems with a storage device directly connected to the network. In existing encryption schemes the protection of the sensitive data is achieved mainly through an encrypted data storage system, but the encryption key is protected only by a weak password. This is a security risk to storage system, so the key protection is an important issue that needs to be resolved. This paper presents an Object-oriented Encryption Storage System based on Trusted Computing Platform (OESSTCP). A trusted computing platform is adapted in OESSTCP to the file system to protect the encryption keys, thereby enhancing the security of the entire storage system. We have designed and implemented OESSTCP scheme on an object-oriented storage system. Experimental results show that the OESSTCP key cryptographic security protection occupies only 0.3% of the entire encryption overhead and it does not bring great impact on performance of the storage system.

Keywords

cryptography; distributed processing; object-oriented methods; storage management; cryptographic security protection; distributed storage system; encryption key protection; file system; object-oriented encryption storage system; security risk; sensitive data protection; trusted computing platform; weak password protection; object-oriented storage system; trusted computing platform;

fLanguage

English

Publisher

ieee

Conference_Titel

Computational Intelligence and Security (CIS), 2010 International Conference on

Conference_Location

Nanning

Print_ISBN

978-1-4244-9114-8

Electronic_ISBN

978-0-7695-4297-3

Type

conf

DOI

10.1109/CIS.2010.125

Filename

5696341