Plutus: Scalable secure file sharing on untrusted storage

Mahesh Kallahalla; Erik Riedel; Ram Swaminathan; Qian Wang; Kevin Fu

Plutus: Scalable secure file sharing on untrusted storage

Mahesh Kallahalla, Erik Riedel, Ram Swaminathan, Qian Wang, Kevin Fu

Mechanical Engineering

Research output: Contribution to conference › Paper › peer-review

430 Citations (SciVal)

Abstract

Plutus is a cryptographic storage system that enables secure file sharing without placing much trust on the file servers. In particular, it makes novel use of cryptographic primitives to protect and share files. Plutus features highly scalable key management while allowing individual users to retain direct control over who gets access to their files. We explain the mechanisms in Plutus to reduce the number of cryptographic keys exchanged between users by using filegroups, distinguish file read and write access, handle user revocation efficiently, and allow an untrusted server to authorize file writes. We have built a prototype of Plutus on OpenAFS. Measurements of this prototype show that Plutus achieves strong security with overhead comparable to systems that encrypt all network traffic.

Original language	English (US)
Pages	29-42
Number of pages	14
State	Published - 2003
Event	2nd USENIX Conference on File and Storage Technologies, FAST 2003 - San Francisco, United States Duration: Mar 31 2003 → Apr 2 2003

Conference

Conference	2nd USENIX Conference on File and Storage Technologies, FAST 2003
Country/Territory	United States
City	San Francisco
Period	3/31/03 → 4/2/03

All Science Journal Classification (ASJC) codes

Computer Networks and Communications
Hardware and Architecture
Software

Cite this

@conference{12cc9d1a3ebb42d0b9a2445c27615f24,

title = "Plutus: Scalable secure file sharing on untrusted storage",

abstract = "Plutus is a cryptographic storage system that enables secure file sharing without placing much trust on the file servers. In particular, it makes novel use of cryptographic primitives to protect and share files. Plutus features highly scalable key management while allowing individual users to retain direct control over who gets access to their files. We explain the mechanisms in Plutus to reduce the number of cryptographic keys exchanged between users by using filegroups, distinguish file read and write access, handle user revocation efficiently, and allow an untrusted server to authorize file writes. We have built a prototype of Plutus on OpenAFS. Measurements of this prototype show that Plutus achieves strong security with overhead comparable to systems that encrypt all network traffic.",

author = "Mahesh Kallahalla and Erik Riedel and Ram Swaminathan and Qian Wang and Kevin Fu",

note = "Publisher Copyright: {\textcopyright} 2003 by The USENIX Association All Rights Reserved. Copyright: Copyright 2020 Elsevier B.V., All rights reserved.; 2nd USENIX Conference on File and Storage Technologies, FAST 2003 ; Conference date: 31-03-2003 Through 02-04-2003",

year = "2003",

language = "English (US)",

pages = "29--42",

}

TY - CONF

T1 - Plutus

T2 - 2nd USENIX Conference on File and Storage Technologies, FAST 2003

AU - Kallahalla, Mahesh

AU - Riedel, Erik

AU - Swaminathan, Ram

AU - Wang, Qian

AU - Fu, Kevin

PY - 2003

Y1 - 2003

N2 - Plutus is a cryptographic storage system that enables secure file sharing without placing much trust on the file servers. In particular, it makes novel use of cryptographic primitives to protect and share files. Plutus features highly scalable key management while allowing individual users to retain direct control over who gets access to their files. We explain the mechanisms in Plutus to reduce the number of cryptographic keys exchanged between users by using filegroups, distinguish file read and write access, handle user revocation efficiently, and allow an untrusted server to authorize file writes. We have built a prototype of Plutus on OpenAFS. Measurements of this prototype show that Plutus achieves strong security with overhead comparable to systems that encrypt all network traffic.

AB - Plutus is a cryptographic storage system that enables secure file sharing without placing much trust on the file servers. In particular, it makes novel use of cryptographic primitives to protect and share files. Plutus features highly scalable key management while allowing individual users to retain direct control over who gets access to their files. We explain the mechanisms in Plutus to reduce the number of cryptographic keys exchanged between users by using filegroups, distinguish file read and write access, handle user revocation efficiently, and allow an untrusted server to authorize file writes. We have built a prototype of Plutus on OpenAFS. Measurements of this prototype show that Plutus achieves strong security with overhead comparable to systems that encrypt all network traffic.

UR - http://www.scopus.com/inward/record.url?scp=85033460636&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85033460636&partnerID=8YFLogxK

M3 - Paper

AN - SCOPUS:85033460636

SP - 29

EP - 42

Y2 - 31 March 2003 through 2 April 2003

ER -

Plutus: Scalable secure file sharing on untrusted storage

Abstract

Conference

All Science Journal Classification (ASJC) codes

Other files and links

Fingerprint

Cite this