UPSS: A Global, Least-Privileged Storage System with Stronger Security and Better Performance

Arastoo Bozorgi; Mahya Jadidi; Jonathan Anderson

doi:10.5220/0012306600003648

UPSS: A Global, Least-Privileged Storage System with Stronger Security and Better Performance

Arastoo Bozorgi, Mahya Jadidi, Jonathan Anderson

2024

Abstract

Strong confidentiality, integrity, user control, reliability and performance are critical requirements in privacy-sensitive applications. Such applications would benefit from a data storage and sharing infrastructure that provides these properties even in decentralized topologies with untrusted storage backends, but users today are forced to choose between systemic security properties and system reliability or performance. As an alternative to this status quo we present UPSS: the user-centric private sharing system, a cryptographic storage system that can be used as a conventional filesystem or as the foundation for security-sensitive applications such as redaction with integrity and private revision control. We demonstrate that both the security and performance properties of UPSS exceed that of existing cryptographic filesystems and that its performance is comparable to mature conventional filesystems — in some cases even superior. Whether used directly via its Rust API or as a conventional filesystem, UPSS provides strong security and practical performance on untrusted storage.

Download

Paper Citation

in Harvard Style

Bozorgi A., Jadidi M. and Anderson J. (2024). UPSS: A Global, Least-Privileged Storage System with Stronger Security and Better Performance. In Proceedings of the 10th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP; ISBN 978-989-758-683-5, SciTePress, pages 660-671. DOI: 10.5220/0012306600003648

in Bibtex Style

@conference{icissp24,
author={Arastoo Bozorgi and Mahya Jadidi and Jonathan Anderson},
title={UPSS: A Global, Least-Privileged Storage System with Stronger Security and Better Performance},
booktitle={Proceedings of the 10th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP},
year={2024},
pages={660-671},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0012306600003648},
isbn={978-989-758-683-5},
}

in EndNote Style

TY - CONF

JO - Proceedings of the 10th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP
TI - UPSS: A Global, Least-Privileged Storage System with Stronger Security and Better Performance
SN - 978-989-758-683-5
AU - Bozorgi A.
AU - Jadidi M.
AU - Anderson J.
PY - 2024
SP - 660
EP - 671
DO - 10.5220/0012306600003648
PB - SciTePress