Pesos: Policy Enhanced Secure Object Store
Research output: Contribution to conferences › Paper › Contributed › peer-review
Contributors
Abstract
Third-party storage services pose the risk of integrity and con-
fidentiality violations as the current storage policy enforce-
ment mechanisms are spread across many layers in the system
stack. To mitigate these security vulnerabilities, we present
the design and implementation of Pesos, a Policy Enhanced
Secure Object Store (Pesos) for untrusted third-party storage
providers. Pesos allows clients to specify per-object security
policies, concisely and separately from the storage stack, and
enforces these policies by securely mediating the I/O in the
persistence layer through a single unified enforcement layer.
More broadly, Pesos exposes a rich set of storage policies
ensuring the integrity, confidentiality, and access accounting
for data storage through a declarative policy language.
Pesos enforces these policies on untrusted commodity plat-
forms by leveraging a combination of two trusted comput-
ing technologies: Intel SGX for trusted execution environ-
ment (TEE) and Kinetic Open Storage for trusted storage. We
have implemented Pesos as a fully-functional storage system
supporting many useful end-to-end storage features, and a
range of effective performance optimizations. We evaluated
Pesos using a range of micro-benchmarks, and real-world
use cases. Our evaluation shows that Pesos incurs reasonable
performance overheads for the enforcement of policies while
keeping the trusted computing base (TCB) small.
fidentiality violations as the current storage policy enforce-
ment mechanisms are spread across many layers in the system
stack. To mitigate these security vulnerabilities, we present
the design and implementation of Pesos, a Policy Enhanced
Secure Object Store (Pesos) for untrusted third-party storage
providers. Pesos allows clients to specify per-object security
policies, concisely and separately from the storage stack, and
enforces these policies by securely mediating the I/O in the
persistence layer through a single unified enforcement layer.
More broadly, Pesos exposes a rich set of storage policies
ensuring the integrity, confidentiality, and access accounting
for data storage through a declarative policy language.
Pesos enforces these policies on untrusted commodity plat-
forms by leveraging a combination of two trusted comput-
ing technologies: Intel SGX for trusted execution environ-
ment (TEE) and Kinetic Open Storage for trusted storage. We
have implemented Pesos as a fully-functional storage system
supporting many useful end-to-end storage features, and a
range of effective performance optimizations. We evaluated
Pesos using a range of micro-benchmarks, and real-world
use cases. Our evaluation shows that Pesos incurs reasonable
performance overheads for the enforcement of policies while
keeping the trusted computing base (TCB) small.
Details
Original language | English |
---|---|
Number of pages | 1 |
Publication status | Published - 2018 |
Peer-reviewed | Yes |
Conference
Title | Thirteenth EuroSys Conference |
---|---|
Abbreviated title | EuroSys '18 |
Conference number | |
Duration | 23 - 26 April 2018 |
Degree of recognition | International event |
Location | |
City | Porto |
Country | Portugal |
External IDs
ORCID | /0000-0003-0768-6351/work/141545300 |
---|
Keywords
Research priority areas of TU Dresden
DFG Classification of Subject Areas according to Review Boards
Keywords
- Storage security, policy language, Intel SGX, Kinetic disks