Commit ce9c8c90 authored by Hank Hoffmann's avatar Hank Hoffmann
parents ae458d42 fade781a
This diff is collapsed.
......@@ -36,8 +36,8 @@ the backing store when spatially switching. We simulate this with IPC.
\PUNT{This is especially important when considering the selective switching
strategy; a production-ready implementation supporting selective switching would
need to differentiate between metadata operations belonging to the filesystem
(should be mirrored across all partitions) and actual end-user data (should be
selectively read from and written to nuggets in specific partitions).}
(should be mirrored across all regions) and actual end-user data (should be
selectively read from and written to nuggets in specific regions).}
Further, to operate securely, SwitchCrypt must be seeded with random data
initially rather than have the backing store consist of all zeroes. This is a
......@@ -93,7 +93,7 @@ re-keying operation every time. On the other hand, during hard re-cipher, the
nugget's metadata is changed to match the active cipher configuration \emph{and}
the nugget data is encrypted using the new cipher.
\TODO{MAybe repeat that mirrored relies on someone to implement the fast secure erase, so that you can read the fast partition until it is time to panic and then you quickly erase? Are there other uses of mirrored?}
\TODO{MAybe repeat that mirrored relies on someone to implement the fast secure erase, so that you can read the fast region until it is time to panic and then you quickly erase? Are there other uses of mirrored?}
\PUNT{When using forward switching other that 0-forward, \ie{N-forward} where $N
> 0$, only read operations are allowed to trigger hard re-ciphering for nuggets
......
......@@ -159,7 +159,7 @@ experiments, the backing store can be considered partitioned in half. This
overhead is most egregious for the 4K Mirrored write workload. This makes
Selective preferable to Mirrored; however, Selective can never converge the
backing store to a single cipher configuration or survive the loss of an entire
partition (see: \secref{sec:usecases}).
region (see: \secref{sec:usecases}).
\subsection{Cipher Switching Overhead}
......
......@@ -24,7 +24,7 @@ lattermost prior approach with SwitchCrypt: a stream cipher based FDE and
metadata layer that exploits LFS overwrite-averse behavior to achieve
high-performance encryption.
Unlike prior work, which focuses on optimizing performance despite re-encrypting
Unlike prior work, which focuses on optimizing performance despite re-ciphering
due to overwrites, SwitchCrypt maintains overwrite protections while abstracting
the idea of re-encrypting nuggets out into re-ciphering or \emph{cipher
switching}, where a nugget's contents are decrypted using the old key and
......
......@@ -59,12 +59,16 @@
\usepackage{pgfplots}
\usepackage{balance}
\usepackage{cleveref}
\usepackage{array}
% Fancy subsection references with cref
\crefformat{section}{\S#2#1#3} % see manual of cleveref, section 8.2.1
\crefformat{subsection}{\S#2#1#3}
\crefformat{subsubsection}{\S#2#1#3}
% Flexible table column specifications
\newcolumntype{C}[1]{>{\centering\arraybackslash}m{#1}}
% \makeatletter
% \def\balanceissued{unbalanced}%flag to indicate if \balance has been used
% \let\oldbibitem\bibitem
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment