Computer Science Department
School of Computer Science, Carnegie Mellon University
Embedded Security for Network-Attached Storage
Howard Gobioff, David Nagle*, Garth Gibson
Central to this work is an alternative cryptographic approach, called "Hash and MAC", that reduces the cost of protecting the integrity of read traffic in storage devices that are unable to generate a message authentication code at full data transfers rates. Hash and MAC does this by precomputing security information, using and reusing the precomputed information on subsequent read requests. We also present a refined "Hash and MAC" approach that uses incremental hash functions to improve the performance of small read and write operations as well as non-block-aligned operations.
*Department of Electrical and Computer Engineering, Carnegie Mellon University.