Hardware-Assisted Secure Decentralized Cloud Storage via Self-audit and Self-repair
摘要
Outsourcing data to the decentralized cloud has faced significant security concerns. The storage peers might be infected by malware, or motivated by other means to arbitrarily manipulate data. Most current decentralized cloud storage system designs rely on a blockchain to implement auditing via smart contracts and rely purely on storing redundant data across peers to repair corruptions. This results in significant overhead for executing the smart contracts, as well as substantial bandwidth consumption for performing repairs over time. This work has introduced HiDCS, a Hardware-assisted integrity-assured Decentralized Cloud Storage system. HiDCS relies on two trusted components: 1) trusted execution environment which is a secure area of the processor, and 2) flash translation layer which is the firmware encapsulated in the flash storage hardware. Using these two components, HiDCS enables self-audit, while also explicitly preventing both outsourcing and generation attacks. Additionally, HiDCS enables self-repair, which attempts to fix corrupted data using only local resources, thereby eliminating the significant communication overhead typically associated with repairs over time. Security analysis and experimental evaluation justify the fact that HiDCS can ensure the reliability of outsourced data in the decentralized cloud with minimal performance impact.