Abstract
Data on a storage device are easier targets for malicious attackers. Storing data in an encrypted form is an effective way to improve data security. In an encrypted storage system, key management is one of the most challenging tasks. In this paper, we propose a new key management scheme for distributed encrypted storage that has various salient features. First, in the proposed scheme, encryption keys are not directly known to users. Due to this property, the security of the encrypted data is not deteriorated though some users that have shared the data lose the access right. Second, in the proposed scheme, even if some components of the system are attacked, the security of the system is still guaranteed. Third, the system provides high availability by exploiting the secret sharing scheme.
This research was partially supported by University IT Research Center (ITRC) Project and Seoul R&BD Program.
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsPreview
Unable to display preview. Download preview PDF.
References
IPSec Working Group: IP Security Protocol (ipsec). Technical report, The Internet Engineering Task Force IETF (2002), http://www.ietf.org/html.charters/ipsec-charter.html
Ylonen, T., Kivinen, T., Saarinen, M., Rinne, T., Lehtinen, S.: SSH Protocol Architecture. Technical report, The Internet Engineering Task Force IETF (2002), http://www.ietf.org/internet-drafts/draft-ietf-secsharchitecture-13.txt
Dierks, T., Allen, C.: The TLS Protocol Version 1.0. Technical report, The Internet Engineering Task Force IETF (1999), http://www.ietf.org/rfc/rfc2246.txt
Zou, X.: Secure Group Communications and Hierarchical Access Control. PhD. Thesis, University of Nebraska-Lincoln, USA (2000)
Birget, J.-C., Zou, X., Noubir, G., Ramamurthy, B.: Hierarchical-based Access Control in Distributed Environments. International Conference on Communications (2001)
Sun, Y., Ray Liu, K.J.: Scalable Hierarchical Access Control in Secure Group Communications. IEEE INFOCOM (2004)
Seitz, L., Pierson, J.-M.: Key Management for Encrypted Data Storage in Distributed Systems. In: Second IEEE International Security in Storage Workshop (2003)
Kim, Y., Narasimha, M., Maino, F., Tsudik, G.: Secure Group Services for Storage Area Networks. In: IEEE Security in Storage Workshop (2002)
Shamir, A.: How to Share a Secret. Communications of the ACM 22(11), 612–613 (1979)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2006 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Lee, M., Bahn, H., Chae, K. (2006). A New Key Management Scheme for Distributed Encrypted Storage Systems. In: Gavrilova, M., et al. Computational Science and Its Applications - ICCSA 2006. ICCSA 2006. Lecture Notes in Computer Science, vol 3980. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11751540_117
Download citation
DOI: https://doi.org/10.1007/11751540_117
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-34070-6
Online ISBN: 978-3-540-34071-3
eBook Packages: Computer ScienceComputer Science (R0)