JVPFS: Adding Robustness to a Secure Stacked File System with Untrusted Local Storage Components

The Virtual Private File System (VPFS) was built to protect confidentiality and integrity of application data against strong attacks. To minimize the trusted computing base (i.e., the attack surface) it was built as a stacked file system, where a small isolated component in a microkernel-based system reuses a potentially large and complex untrusted file system; for example, as provided by a more vulnerable guest OS in a separate virtual machine. However, its design ignores robustness issues that come with sudden power loss or crashes of the untrusted file system.

Provided by: Technische Universitat Dortmund Topic: Security Date Added: Jun 2011 Format: PDF

Find By Topic