Open access
Datum
2013Typ
- Report
ETH Bibliographie
yes
Altmetrics
Abstract
We propose the Data Node Encrypted File System (DNEFS), which uses on-the-fly encryption and decryption of file system data nodes to eciently and securely delete data on flash memory systems. DNEFS is a generic modication of existing flashfile systems or controllers that enables secure data deletion while preserving the underlying systems' desirable properties: application-independence,finegrained data access, wear-levelling, and efficiency. We describe DNEFS both abstractly and in the context of the flashfile system UBIFS. We propose UBIFSec, which integrates DNEFS into UBIFS. We implement UBIFSec by extending UBIFS's Linux implementation and we integrate UBIFSec in the Android operating system running on a Google Nexus One smartphone. We show that it is efficient and usable; Android OS and applications (including video and audio playback) run normally on top of UBIFSec. To the best of our knowledge, this work presents thefirst comprehensive and fully-implemented secure deletion solution that works within the specification of flash memory. Mehr anzeigen
Persistenter Link
https://doi.org/10.3929/ethz-a-007593083Publikationsstatus
publishedVerlag
Department of Computer Science, ETH ZurichThema
DATA SECURITY + DATA PROTECTION (OPERATING SYSTEMS); SPEICHERORGANISATION + SPEICHERVERWALTUNG (BETRIEBSSYSTEME); STORAGE MANAGEMENT + MEMORY MANAGEMENT (OPERATING SYSTEMS); FILE ORGANIZATION + FILE PROCESSING (OPERATING SYSTEMS); DATEIORGANISATION + DATEIVERARBEITUNG (BETRIEBSSYSTEME); DATENSICHERHEIT + DATENSCHUTZ (BETRIEBSSYSTEME)Organisationseinheit
02660 - Institut für Informationssicherheit / Institute of Information Security03755 - Capkun, Srdan / Capkun, Srdan
02150 - Dep. Informatik / Dep. of Computer Science
03634 - Basin, David / Basin, David
Anmerkungen
Technical Reports D-INFK.ETH Bibliographie
yes
Altmetrics