SGX-SSD: A Policy-based Versioning SSD with Intel SGX

Jinwoo Ahn; Seungjin Lee; Jinhoon Lee; Yungwoo Ko; Donghyun Min,; Junghee Lee; Youngjae Kim

arXiv:2004.13354·cs.CR·April 30, 2020·1 cites

SGX-SSD: A Policy-based Versioning SSD with Intel SGX

Jinwoo Ahn, Seungjin Lee, Jinhoon Lee, Yungwoo Ko, Donghyun Min,, Junghee Lee, Youngjae Kim

PDF

Open Access

TL;DR

SGX-SSD is a novel versioning SSD system leveraging Intel SGX to securely manage file history based on customizable policies, preventing data tampering and optimizing storage for important files.

Contribution

The paper introduces SGX-SSD, a secure, policy-based versioning SSD that uses Intel SGX to protect version management from high-privileged malware.

Findings

01

Secure file history management using SGX-based policy system

02

Selective data preservation improves storage efficiency

03

Ensures integrity of critical files against tampering

Abstract

This paper demonstrates that SSDs, which perform device-level versioning, can be exposed to data tampering attacks when the retention time of data is less than the malware's dwell time. To deal with that threat, we propose SGX-SSD, a SGX-based versioning SSD which selectively preserves file history based on the given policy. The proposed system adopts Intel SGX to implement the version policy management system that is safe from high-privileged malware. Based on the policy, only the necessary data is selectively preserved in SSD that prevents files with less priority from wasting space and also ensures the integrity of important files.

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.

Taxonomy

TopicsAdvanced Data Storage Technologies · Distributed and Parallel Computing Systems · Caching and Content Delivery