ESSA： An Efficient and Secure Splitting Algorithm for Distributed Storage Systems

ESSA： An Efficient and Secure Splitting Algorithm for Distributed Storage Systems

在线阅读下载PDF

导出

摘要 The security of critical data is an important issue for distributed storage system design,especially for long-term storage.ESSA (An Efficient and Secure Splitting Algorithm for Distributed Storage Systems) is presented,which takes advantage of a two level information dispersal scheme to strengthen the security of data.In ESSA,the approach of knight’s tour problem,which is NP-Complete,is introduced to scramble data at the first level,and a split cube is used to split scrambled data at the second level.Thus,it is very difficult for the malicious user to get information because the task of reconstructing the original data needs more computation than they can tolerate.We prove that the security of ESSA is better than encryption algorithm and not inferior to erasure codes and secret sharing.Experimental results show that distributed storage systems exploiting ESSA has greater efficiency than that exploiting keyed encryption,erasure codes and secret sharing. The security of critical data is an important issue for distributed storage system design, especially for long-term storage. ESSA （An Efficient and Secure Splitting Algorithm for Distributed Storage Systems） is presented, which takes advantage of a two level information dispersal scheme to strengthen the security of data. In ESSA, the approach of knight＇s tour problem, which is NP-Complete, is introduced to scramble data at the first level, and a split cube is used to split scrambled data at the second level. Thus, it is very difficult for the malicious user to get information because the task of reconstructing the original data needs more computation than they can tolerate. We prove that the security of ESSA is better than encryption algorithm and not inferior to erasure codes and secret sharing. Experimental results show that distributed storage systems exploiting ESSA has greater efficiency than that exploiting keyed encryption, erasure codes and secret sharing.

作者 CHEN Zhao YAO Wenbin XIAO Da WU Chunhua LIU Jianyi WANG Cong

机构地区 National Engineering Laboratory for Disaster Backup and Recovery

出处《China Communications》 SCIE CSCD 2010年第4期89-95,共7页 中国通信（英文版）

基金 This study is supported by National Natural Science Foundation of China （No.60973146） National Natur al Science Foundation of Beijing （No.4092029） The Fundamental Research Funds for the Central Universities （No.2009RC0217）. We also thank the anonymous reviewers for their constructive comments.

关键词 Distributed System Secure Storage Information Dispersal knight＇s tour problem 存储系统安全性安全技术通信技术

分类号 TP333 [自动化与计算机技术—计算机系统结构]

作者简介 CHEN Zhao： male, PhD Candidate, a member of National Engineering Laboratory for Disaster Backup and Recovery, research interests includes disaster recovery and safe storage.YAO Wenbin： male, PhD, Professor, a member of National Engineering Laboratory for Disaster Backup and Recovery, research interests includes disaster recovery, fault-tolerant computing, system reliability evaluation.XIAO Da： male, PhD, a member of National Engineering Laboratory for Disaster Backup and Recovery, research interests include disaster recovery, safe storage, cloud storage.WU Chunhua： female, PhD, a member of National Engineering Laboratory for Disaster Backup and Recovery, research interests includes disaster recovery, Intelligent Storage, cloud storage.L1U Jianyi： male, PhD, associate professor, a member of National Engineering Laboratory for Disaster Backup and Recovery, research interests includes disaster recovery, information content security.WANG tong： female, PhD, Professor, a member of National Engineering Laboratory for Disaster Backup and Recovery, research interests includes network and information security, content and system security, disaster recovery technology.

引文网络
相关文献

参考文献16

1Yongdae K, Maithili N, Gene T. Secure group key management for storage area networks [J]. IEEE Communications Magazine, 2003, 41(8): 92-96.
2Kubiatowicz J, Bindel D, Chen P Yan, et al, Oceanstore: An architecture for global-scale persistent storage [C]//Proceedings of the ninth intemational conference on Architectural support for programming languages and operating systems. Cambridge, USA: ACM Press, 2000: 190-201.
3Adya A, Bolosky WJ, Castro M, et al. FARSITE: Federated, available, and reliable storage for an incompletely trusted environment [C]// Proceedings of the 5th Symposium on Operating Systems Design and Implementation (OSDI). Boston, USA: ACM Press, 2002: 1-14.
4Rowstron A, Druschel P. Storage management and caching in PAST, a large-scale, persistent peer-to-peer storage utility [C]// Proceedings of the 18th ACM Symposium on Operating Systems Principles. Alberta, Canada: ACM Press, 2001 : 188-201.
5Kotla R, Alvisi L, Dahlin M. SafeStore: a durable and practical storage system [C]//2007 USENIX Annual Technical Conference on Proceedings of the USENIX Annual Technical Conference. Berkeley, USA: USENIX Association, 2007: 1-14.
6Chang F, Ji M, Leung St, et al. Myriad: Cost-effective Disaster Tolerance [C]//Proceedings of the 1st USENIX Conference on File and Storage Technologies. Berkeley, USA: USENIX Association, 2002:103-116.
7Rabin MO. Efficient dispersal of information for security, load balancing, and fault tolerance [J]. Journal of the ACM. 1989, 36(2): 335-348.
8Ganger G, Khosla P, Bakkaloglu M, et al. Survivable storage systems [C]//Proceedings of DARPA Information Survivability Conference and Exposition. Anaheim. USA: 1EEE Press, 2001 : 184-195.
9Subbiah A, Blough Dm. An approach for fault tolerant and secure data storage in collaborative work environments [C]//Proceedings of the 2005 ACM Workshop on Storage Security and Survivability. Fairfax, USA: ACM Press, 2005: 84-93.
10Shamir A. How to share a secret [J]. Communications of the ACM. 1979, 22(11): 612-613.

1胡久乡,胡和平,卢正鼎.基于范例推理的专家系统ESSA的设计和实现[J].计算机工程与科学,2000,22(1):63-66. 被引量：1
2Jun-Ki Min,Member, A CM,Mi-Young Lee.DICE:An Effective Query Result Cache for Distributed Storage Systems[J].Journal of Computer Science & Technology,2010,25(5):933-944. 被引量：1
3Wang Haiquan,Chen Meng,Hu Junshun,Xia Chunhe.Scalable and Identifier/Locator-Splitting Routing Protocol for Mobile Ad Hoc Networks[J].China Communications,2012,9(1):102-110. 被引量：3
4Akiyoshi Wakatani.An Incomplete Splitting-up Conjugate Gradient Method for Parallel Computing[J].Computer Technology and Application,2016,7(5):236-243.
5孙伟东,王意洁,裴晓强.Tree-Structured Parallel Regeneration for Multiple Data Losses in Distributed Storage Systems Based on Erasure Codes[J].China Communications,2013,10(4):113-125. 被引量：5
6Da-fang ZHANG,Dan CHEN,Yan-biao LI,Kun XIE,Tong SHEN.A splitting-after-merging approach to multi-FIB compression and fast refactoring in virtual routers[J].Frontiers of Information Technology & Electronic Engineering,2016,17(12):1266-1274.
7胡汉平,熊联欢,李德华.人头三维表面数据的一种压缩方法[J].华中理工大学学报,1999,27(5):19-20. 被引量：2
8潘发益,郭颖,崔宝江.基于动态数据生成缺陷的XSS漏洞挖掘技术[J].信息网络安全,2012(11):44-47. 被引量：3
9李旭方,邹建成.一种基于压缩感知的MR成像的新方法[J].北方工业大学学报,2014,26(3):1-5.
10温璞,范洁,杨学军.计算与通信重叠的V-Parcel Splitting机制[J].微电子学与计算机,2006,23(9):29-31.

China Communications

2010年第4期

浏览历史

内容加载中请稍等...

ESSA： An Efficient and Secure Splitting Algorithm for Distributed Storage Systems

参考文献16

相关作者

相关机构

相关主题

浏览历史