CAREER: The Secure Untrusted Data Repository (SUNDR)

职业：安全不受信任的数据存储库 (SUNDR)

• 批准号: 0093361
• 负责人: David Mazières
• 金额: $ 25万
• 依托单位: New York University
• 依托单位国家: 美国
• 项目类别: Continuing Grant
• 财政年份: 2001
• 资助国家: 美国
• 起止时间: 2001-03-15 至 2006-02-28
• 项目状态: 已结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=0093361&HistoricalAwards=false
• 关键词: CAREER; Secure; Untrusted; Data; Repository

All too often, decisions about whom to trust in computer systems aredriven by the needs of system management rather than data security.In particular, data storage is often entrusted to people who have norole in creating or using the data--through outsourcing of datamanagement, hiring of outside consultants to administer servers, oreven collocation servers in physically insecure machine rooms to gainbetter network connectivity.SUNDR is a network file system designed to run on untrusted servers.SUNDR servers can safely be managed by people who have no permissionto read or write data stored in the file system. Thus, people canbase their trust decisions on who needs to use data and theiradministrative decisions on how best to manage the data. Moreover,with SUNDR, attackers will no longer be able to wreak havoc bycompromising servers and tampering with data. They will need tocompromise clients while legitimate users are logged on. Sinceclients do not need to accept incoming network connections, they canmore easily be firewalled and protected from compromise than servers

很多时候，关于计算机系统信任谁的决定是由系统管理的需求而不是数据安全驱动的。特别是，数据存储通常委托给那些无权创建或使用数据的人——通过外包数据管理、聘请外部顾问来管理服务器，甚至在物理上不安全的机房中配置服务器以获得更好的网络连接。SUNDR 是一种网络文件系统，设计为在不可信的网络上运行 服务器。SUNDR 服务器可以由无权读取或写入文件系统中存储的数据的人员安全地管理。 因此，人们可以根据谁需要使用数据来做出信任决策，并根据如何最好地管理数据来做出管理决策。 此外，借助 SUNDR，攻击者将无法再通过破坏服务器和篡改数据来造成严重破坏。 他们需要在合法用户登录时破坏客户端。 由于客户端不需要接受传入的网络连接，因此它们比服务器更容易受到防火墙保护并免受损害