TY - GEN
T1 - Towards self-repairing replication-based storage systems using untrusted clouds
AU - Chen, Bo
AU - Curtmola, Reza
N1 - Copyright:
Copyright 2013 Elsevier B.V., All rights reserved.
PY - 2013
Y1 - 2013
N2 - Distributed storage systems store data redundantly at multiple servers which are geographically spread through- out the world. This basic approach would be sufficient in handling server failure due to natural faults, because when one server fails, data from healthy servers can be used to restore the desired redundancy level. However, in a set- ting where servers are untrusted and can behave maliciously, data redundancy must be used in tandem with Remote Data Checking (RDC) to ensure that the redundancy level of the storage systems is maintained over time. All previous RDC schemes for distributed systems impose a heavy burden on the data owner (client) during data maintenance: To repair data at a faulty server, the data owner needs to first download a large amount of data, re-generate the data to be stored at a new server, and then upload this data at a new healthy server. We propose RDC - SR, a novel RDC scheme for replication-based distributed storage systems. RDC - SR enables Server-side Repair (thus taking advantage of the premium connections available between a CSP's data centers) and places a minimal load on the data owner who only has to act as a repair coordinator. The main insight behind RDC - SR is that the replicas are differentiated based on a controllable amount of masking, which offers RDC - SR flexibility in handling different adversarial strengths. Also, replica generation must be time consuming in order to avoid certain colluding attacks from malicious servers. Our prototype for RDC - SR built on Amazon AWS validates the practicality of this new approach.
AB - Distributed storage systems store data redundantly at multiple servers which are geographically spread through- out the world. This basic approach would be sufficient in handling server failure due to natural faults, because when one server fails, data from healthy servers can be used to restore the desired redundancy level. However, in a set- ting where servers are untrusted and can behave maliciously, data redundancy must be used in tandem with Remote Data Checking (RDC) to ensure that the redundancy level of the storage systems is maintained over time. All previous RDC schemes for distributed systems impose a heavy burden on the data owner (client) during data maintenance: To repair data at a faulty server, the data owner needs to first download a large amount of data, re-generate the data to be stored at a new server, and then upload this data at a new healthy server. We propose RDC - SR, a novel RDC scheme for replication-based distributed storage systems. RDC - SR enables Server-side Repair (thus taking advantage of the premium connections available between a CSP's data centers) and places a minimal load on the data owner who only has to act as a repair coordinator. The main insight behind RDC - SR is that the replicas are differentiated based on a controllable amount of masking, which offers RDC - SR flexibility in handling different adversarial strengths. Also, replica generation must be time consuming in order to avoid certain colluding attacks from malicious servers. Our prototype for RDC - SR built on Amazon AWS validates the practicality of this new approach.
KW - Amazon AWS
KW - Cloud storage
KW - Remote data integrity checking
KW - Replicate on the fly
KW - Server-side repair
UR - http://www.scopus.com/inward/record.url?scp=84874925278&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=84874925278&partnerID=8YFLogxK
U2 - 10.1145/2435349.2435402
DO - 10.1145/2435349.2435402
M3 - Conference contribution
AN - SCOPUS:84874925278
SN - 9781450318907
T3 - CODASPY 2013 - Proceedings of the 3rd ACM Conference on Data and Application Security and Privacy
SP - 377
EP - 388
BT - CODASPY 2013 - Proceedings of the 3rd ACM Conference on Data and Application Security and Privacy
T2 - 3rd ACM Conference on Data and Application Security and Privacy, CODASPY 2013
Y2 - 18 February 2013 through 20 February 2013
ER -