Data Node Encrypted File System: Efficient Secure Deletion for Flash Memory
OPEN ACCESS
Author / Producer
Date
2013
Publication Type
Report
ETH Bibliography
yes
Citations
Altmetric
OPEN ACCESS
Data
Rights / License
Abstract
We propose the Data Node Encrypted File System (DNEFS), which uses on-the-fly encryption and decryption of file system data nodes to eciently and securely delete data on flash memory systems. DNEFS is a generic modication of existing flashfile systems or controllers that enables secure data deletion while preserving the underlying systems' desirable properties: application-independence,finegrained data access, wear-levelling, and efficiency. We describe DNEFS both abstractly and in the context of the flashfile system UBIFS. We propose UBIFSec, which integrates DNEFS into UBIFS. We implement UBIFSec by extending UBIFS's Linux implementation and we integrate UBIFSec in the Android operating system running on a Google Nexus One smartphone. We show that it is efficient and usable; Android OS and applications (including video and audio playback) run normally on top of UBIFSec. To the best of our knowledge, this work presents thefirst comprehensive and fully-implemented secure deletion solution that works within the specification of flash memory.
Permanent link
Publication status
published
External links
Editor
Book title
Journal / series
Volume
Pages / Article No.
Publisher
ETH Zurich, Department of Computer Science
Event
Edition / version
Methods
Software
Geographic location
Date collected
Date created
Subject
Organisational unit
03634 - Basin, David / Basin, David
03755 - Capkun, Srdan / Capkun, Srdan
02660 - Institut für Informationssicherheit / Institute of Information Security
02150 - Dep. Informatik / Dep. of Computer Science