Title:
Secure Management of Networked Storage Services: Models and Techniques

Simple item page
dc.contributor.advisor Liu, Ling
dc.contributor.author Singh, Aameek en_US
dc.contributor.committeeMember Johnson, Eric
dc.contributor.committeeMember Christensen, Henrik I.
dc.contributor.committeeMember Essa, Irfan
dc.contributor.committeeMember Pollefeys, Marc
dc.contributor.department Computing en_US
dc.date.accessioned 2007-08-16T17:58:33Z
dc.date.available 2007-08-16T17:58:33Z
dc.date.issued 2007-05-03 en_US
dc.description.abstract With continued advances in computing, the amount of digital data continues to grow at an astounding rate. This has strained enterprise infrastructures and triggered development of service oriented architectures. In recent years, storage has also begun its transformation into a class of service. By outsourcing storage to an external storage service provider (SSP), enterprises not only cut management cost but also obtain on-demand infrastructure with superior disaster recovery and content dissemination capabilities. Wide deployment of this new outsourced storage environment requires solutions to many challenging problems. The foremost is the development of usable security and access control mechanisms that provide desirable levels of data confidentiality without placing an inordinate amount of trust into the SSP. This absence of a trusted reference monitor is a fundamental departure from traditional mechanisms and new solutions are required. The second important challenge is the autonomic management of SSP's infrastructure, uniquely characterized by a highly dynamic workload with large data capacity requirements. This dissertation research proposes models and techniques to address these two challenges. First, we introduce a novel access control system called xACCESS that uses cryptographic access control primitives (CAPs) to "embed" access control into stored data. This eliminates any dependency on the SSP for enforcement of security policies. We also analyze the privacy characteristics of its data sharing mechanisms and propose enhancements for more secure and convenient data sharing. We also develop a secure multiuser search approach that permits hosting of secured search indices at untrusted SSPs. We introduce a novel access control barrel (ACB) primitive that embeds access control into indices to prevent unauthorized information extraction during search. Our contribution to the autonomic SSP storage management has two important highlights. First, we have developed an impact analysis engine that efficiently analyzes the impact of a client-initiated change (workload surge, storage growth) on the SSP storage area network with minimal administrator involvement. Second, we have designed a new algorithm to quickly perform reallocation of resources in order to efficiently integrate the client change. en_US
dc.description.degree Ph.D. en_US
dc.identifier.uri http://hdl.handle.net/1853/16297
dc.publisher Georgia Institute of Technology en_US
dc.subject Access control en_US
dc.subject Storage management en_US
dc.subject Outsourced storage en_US
dc.subject Networked storage services en_US
dc.subject Storage as a service en_US
dc.subject.lcsh Storage area networks (Computer networks) en_US
dc.subject.lcsh Data protection en_US
dc.subject.lcsh Computers Access control en_US
dc.title Secure Management of Networked Storage Services: Models and Techniques en_US
dc.type Text
dc.type.genre Dissertation
dspace.entity.type Publication
local.contributor.advisor Liu, Ling
local.contributor.corporatename College of Computing
relation.isAdvisorOfPublication 96391b98-ac42-4e2c-93ee-79a5e16c2dfb
relation.isOrgUnitOfPublication c8892b3c-8db6-4b7b-a33a-1b67f7db2021
Files
Original bundle
Now showing 1 - 1 of 1
Thumbnail Image
Name:
singh_aameek_200708_phd.pdf
Size:
1.89 MB
Format:
Adobe Portable Document Format
Description:
Download
Collections
Theses and Dissertations