Contact Project Developer Ashish D. Tiwari [astiwz@gmail.com]
Download Synopsis Abstract
C#.NET ASP.NET Networking BE-Engineering(CO/IT) ME-Engineering(CO/IT) BCS MCS BCA MCA MCM BSC Computer/IT MSC Computer/IT Diploma (CO/IT) IEEE-2016

Authenticated Key Exchange Protocols for Parallel Network File Systems

We study the problem of key establishment for secure many-to-many communications. The problem is inspired by theproliferation of large-scale distributed file systems supporting par
Abstract-Synopsis-Documentation

Abstract

We study the problem of key establishment for secure many-to-many communications. The problem is inspired by theproliferation of large-scale distributed file systems supporting parallel access to multiple storage devices. Our work focuses on thecurrent Internet standard for such file systems, i.e., parallel Network File System (pNFS), which makes use of Kerberos to establishparallel session keys between clients and storage devices. Our review of the existing Kerberos-based protocol shows that it has anumber of limitations: (i) a metadata server facilitating key exchange between the clients and the storage devices has heavy workloadthat restricts the scalability of the protocol; (ii) the protocol does not provide forward secrecy; (iii) the metadata server generates itselfall the session keys that are used between the clients and storage devices, and this inherently leads to key escrow. In this paper, wepropose a variety of authenticated key exchange protocols that are designed to address the above issues. We show that our protocolsare capable of reducing up to approximately 54 percent of the workload of the metadata server and concurrently supporting forwardsecrecy and escrow-freeness. All this requires only a small fraction of increased computation overhead at the client.

View More...



Comment is Only Available for registered users! Create Account or Login Now!