* [RFC] eCryptfs file system with HMAC verification
@ 2012-04-10 13:22 Li Wang
0 siblings, 0 replies; 5+ messages in thread
From: Li Wang @ 2012-04-10 13:22 UTC (permalink / raw)
To: Tyler Hicks, dustin.kirkland, torvalds, akpm
Cc: linux-kernel, ecryptfs, linux-fsdevel
Hi,
we have implemented a prototype, which equips eCryptfs with HMAC verification,
based on the kernel crypto API. This enables eCryptfs to detect unauthorized (cipher)
data modification and unexpected data corruption. And the preliminary experiments
demonstrate the decrease in throughput is modest. As a file system highlighting security,
we think it should be useful.
Any comments/suggestions are welcome.
Cheers,
Li Wang
^ permalink raw reply [flat|nested] 5+ messages in thread
* [RFC] eCryptfs file system with HMAC verification
[not found] <000a01cd171d$9e6c23b0$db446b10$@edu.cn>
2012-04-10 13:26 ` [RFC] eCryptfs file system with HMAC verification Li Wang
@ 2012-04-10 13:26 ` Li Wang
2012-04-10 13:26 ` Li Wang
2012-04-10 16:05 ` Tyler Hicks
3 siblings, 0 replies; 5+ messages in thread
From: Li Wang @ 2012-04-10 13:26 UTC (permalink / raw)
To: Tyler Hicks, dustin.kirkland, torvalds, akpm
Cc: linux-kernel, ecryptfs, linux-fsdevel
Hi,
we have implemented a prototype, which equips eCryptfs with HMAC verification,
based on the kernel crypto API. This enables eCryptfs to detect unauthorized (cipher)
data modification and unexpected data corruption. And the preliminary experiments
demonstrate the decrease in throughput is modest. As a file system highlighting security,
we think it should be useful.
Any comments/suggestions are welcome.
Cheers,
Li Wang
^ permalink raw reply [flat|nested] 5+ messages in thread
* [RFC] eCryptfs file system with HMAC verification
[not found] <000a01cd171d$9e6c23b0$db446b10$@edu.cn>
2012-04-10 13:26 ` [RFC] eCryptfs file system with HMAC verification Li Wang
2012-04-10 13:26 ` Li Wang
@ 2012-04-10 13:26 ` Li Wang
2012-04-10 16:05 ` Tyler Hicks
3 siblings, 0 replies; 5+ messages in thread
From: Li Wang @ 2012-04-10 13:26 UTC (permalink / raw)
To: Tyler Hicks, dustin.kirkland, torvalds, akpm
Cc: linux-kernel, ecryptfs, linux-fsdevel
Hi,
we have implemented a prototype, which equips eCryptfs with HMAC verification,
based on the kernel crypto API. This enables eCryptfs to detect unauthorized (cipher)
data modification and unexpected data corruption. And the preliminary experiments
demonstrate the decrease in throughput is modest. As a file system highlighting security,
we think it should be useful.
Any comments/suggestions are welcome.
Cheers,
Li Wang
^ permalink raw reply [flat|nested] 5+ messages in thread
* [RFC] eCryptfs file system with HMAC verification
[not found] <000a01cd171d$9e6c23b0$db446b10$@edu.cn>
@ 2012-04-10 13:26 ` Li Wang
2012-04-10 13:26 ` Li Wang
` (2 subsequent siblings)
3 siblings, 0 replies; 5+ messages in thread
From: Li Wang @ 2012-04-10 13:26 UTC (permalink / raw)
To: Tyler Hicks, dustin.kirkland, torvalds, akpm
Cc: linux-kernel, ecryptfs, linux-fsdevel
Hi,
we have implemented a prototype, which equips eCryptfs with HMAC verification,
based on the kernel crypto API. This enables eCryptfs to detect unauthorized (cipher)
data modification and unexpected data corruption. And the preliminary experiments
demonstrate the decrease in throughput is modest. As a file system highlighting security,
we think it should be useful.
Any comments/suggestions are welcome.
Cheers,
Li Wang
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: [RFC] eCryptfs file system with HMAC verification
[not found] <000a01cd171d$9e6c23b0$db446b10$@edu.cn>
` (2 preceding siblings ...)
2012-04-10 13:26 ` Li Wang
@ 2012-04-10 16:05 ` Tyler Hicks
3 siblings, 0 replies; 5+ messages in thread
From: Tyler Hicks @ 2012-04-10 16:05 UTC (permalink / raw)
To: Li Wang
Cc: dustin.kirkland, torvalds, akpm, linux-kernel, ecryptfs,
linux-fsdevel
[-- Attachment #1: Type: text/plain, Size: 1499 bytes --]
On 2012-04-10 21:26:58, Li Wang wrote:
> Hi,
> we have implemented a prototype, which equips eCryptfs with HMAC verification,
> based on the kernel crypto API. This enables eCryptfs to detect unauthorized (cipher)
> data modification and unexpected data corruption. And the preliminary experiments
> demonstrate the decrease in throughput is modest. As a file system highlighting security,
> we think it should be useful.
> Any comments/suggestions are welcome.
Hi Li - the paragraph above does not give me much to comment on but what
I can say is that an HMAC patch for eCryptfs was written years ago.
Unfortunately, it seems to have been lost. I don't think that the patch
was ever sent to a list but it lived in the project's old sourceforge
site for a long time.
The maintainer of eCryptfs at that time was also the original author of
eCryptfs, Mike Halcrow, and he opted to not merge the HMAC patch in
favor of using GCM for integrity protection. The HMAC patch was at least
his own design and maybe his own code (I can't quite remember), so he
wasn't negatively biased when deciding that GCM would be a better fit.
Here's a reference, although it isn't the actual patch review:
http://www.mail-archive.com/ecryptfs-users@lists.sourceforge.net/msg00271.html
You can find more about Mike's HMAC design in the design doc located the
ecryptfs-utils source tree.
So, the best way to proceed is probably to ask if you've given GCM any
consideration?
Tyler
[-- Attachment #2: Digital signature --]
[-- Type: application/pgp-signature, Size: 836 bytes --]
^ permalink raw reply [flat|nested] 5+ messages in thread
end of thread, other threads:[~2012-04-10 16:05 UTC | newest]
Thread overview: 5+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
[not found] <000a01cd171d$9e6c23b0$db446b10$@edu.cn>
2012-04-10 13:26 ` [RFC] eCryptfs file system with HMAC verification Li Wang
2012-04-10 13:26 ` Li Wang
2012-04-10 13:26 ` Li Wang
2012-04-10 16:05 ` Tyler Hicks
2012-04-10 13:22 Li Wang
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).