Get 20M+ Full-Text Papers For Less Than $1.50/day. Start a 14-Day Trial for You or Your Team.

Learn More →

ErasuCrypto: A Light-weight Secure Data Deletion Scheme for Solid State Drives

ErasuCrypto: A Light-weight Secure Data Deletion Scheme for Solid State Drives Abstract Securely deleting invalid data from secondary storage is critical to protect users’ data privacy against unauthorized accesses. However, secure deletion is very costly for solid state drives (SSDs), which unlike hard disks do not support in-place update. When applied to SSDs, both erasure-based and cryptography-based secure deletion methods inevitably incur large amount of valid data migrations and/or block erasures, which not only introduce extra latency and energy consumption, but also harm SSD lifetime. This paper proposes ErasuCrypto, a light-weight secure deletion framework with low block erasure and data migration overhead. ErasuCrypto integrates both erasurebased and encryption-based data deletion methods and flexibly selects the more cost-effective one to securely delete invalid data. We formulate a deletion cost minimization problem and give a greedy heuristic as the starting point. We further show that the problem can be reduced to a maximum-edge biclique finding problem, which can be effectively solved with existing heuristics. Experiments on real-world benchmarks show that ErasuCrypto can reduce the secure deletion cost of erasurebased scheme by 71% and the cost of cryptographybased scheme by 37%, while guaranteeing 100% security by deleting all the invalid data. http://www.deepdyve.com/assets/images/DeepDyve-Logo-lg.png Proceedings on Privacy Enhancing Technologies de Gruyter

ErasuCrypto: A Light-weight Secure Data Deletion Scheme for Solid State Drives

Download PDF
17 pages

Loading next page...
 
/lp/de-gruyter/erasucrypto-a-light-weight-secure-data-deletion-scheme-for-solid-state-OwNVicg57f
Publisher
de Gruyter
Copyright
Copyright © 2017 by the
ISSN
2299-0984
eISSN
2299-0984
DOI
10.1515/popets-2017-0009
Publisher site
See Article on Publisher Site

Abstract

Abstract Securely deleting invalid data from secondary storage is critical to protect users’ data privacy against unauthorized accesses. However, secure deletion is very costly for solid state drives (SSDs), which unlike hard disks do not support in-place update. When applied to SSDs, both erasure-based and cryptography-based secure deletion methods inevitably incur large amount of valid data migrations and/or block erasures, which not only introduce extra latency and energy consumption, but also harm SSD lifetime. This paper proposes ErasuCrypto, a light-weight secure deletion framework with low block erasure and data migration overhead. ErasuCrypto integrates both erasurebased and encryption-based data deletion methods and flexibly selects the more cost-effective one to securely delete invalid data. We formulate a deletion cost minimization problem and give a greedy heuristic as the starting point. We further show that the problem can be reduced to a maximum-edge biclique finding problem, which can be effectively solved with existing heuristics. Experiments on real-world benchmarks show that ErasuCrypto can reduce the secure deletion cost of erasurebased scheme by 71% and the cost of cryptographybased scheme by 37%, while guaranteeing 100% security by deleting all the invalid data.

Journal

Proceedings on Privacy Enhancing Technologiesde Gruyter

Published: Jan 1, 2017

References

  • Remembrance of Data Passed Study of Disk Sanitization Practices vol no pp Feb
    Garfinkel
  • Federal Standard The Available http csrc nist gov publications fips fips fips pdf
    NIST
  • Encryption Algorithm Enhancements in Northeast Section Conference Mar
    Solanki
  • Make flash - based storage more resilient and robust Performance vol Nov
    Huang
  • Characterizing flash memory Anomalies observations and applications in nd on Microarchitecture
    Grupp
  • Defense Services Office of the Designated Approving Authority Process Manual Nov Available http www dss mil documents odaa ODAA Process Manual Version
    ODAA
  • Eraser Available http eraser heidi ie
  • Federal Standard The Available http csrc nist gov publications fips fips fips pdf
    NIST
  • Disk Wipe Available http www diskwipe org
  • Basin Userlevel secure deletion on log - structured file systems in th on Communications
    Reardon
  • comprehensive study of energy efficiency and performance of flash - based of the
    Park
  • a flash translation layer employing demand - based selective caching of page - level address mappings in Proceedings of the th International Conference on Architectural Support for Programming Languages and Operating Systems Mar
    Gupta
  • Write Off Loading Practical Management for Enterprise Storage ACM Transactions on Storage vol no pp Nov
    Narayanan
  • Basin Secure Data Deletion in Proceedings of the on and
    Reardon
  • Managing Intel Solid - State Drives Using Intel vPro Technology Available http www intel com content dam www public us en documents whitepapers it management wde ssd amt encryption paper pdf
    Balshai
  • Basin Secure Data Deletion in Proceedings of the on and
    Reardon
  • Basin Userlevel secure deletion on log - structured file systems in th on Communications
    Reardon
  • Models and Design of an Adaptive Hybrid Scheme for Secure Deletion of Data in Consumer on vol no pp Feb
    Sun
  • The Available http www pdl cmu edu
    Bucy
  • srm Linux man page Available https www mankier com srm
    Gauthier
  • Basin Data Node Encrypted File System : Efficient Secure Deletion for Flash Memory in Proceedings of the th Aug pp
    Reardon
  • Reliably Erasing Data from Flash - Based Solid State Drives in th USENIX Conference on File and Storage Technologies Feb pp
    Wei
  • Defense Services Office of the Designated Approving Authority Process Manual Nov Available http www dss mil documents odaa ODAA Process Manual Version
    ODAA
  • Remembrance of Data Passed Study of Disk Sanitization Practices vol no pp Feb
    Garfinkel
  • wipe Linux man page Available http manpages ubuntu com manpages wily man wipe html
    Durak
  • Write Off Loading Practical Management for Enterprise Storage ACM Transactions on Storage vol no pp Nov
    Narayanan
  • Characterizing flash memory Anomalies observations and applications in nd on Microarchitecture
    Grupp
  • The Maximum Edge Biclique Problem is vol no pp
    Peeters
  • Disk Wipe Available http www diskwipe org
  • a flash translation layer employing demand - based selective caching of page - level address mappings in Proceedings of the th International Conference on Architectural Support for Programming Languages and Operating Systems Mar
    Gupta
  • Disposal of disk and tape data by secure sanitization vol no pp Aug
    Hughes
  • The Maximum Edge Biclique Problem is vol no pp
    Peeters
  • Reliably Erasing Data from Flash - Based Solid State Drives in th USENIX Conference on File and Storage Technologies Feb pp
    Wei
  • continuous characterization of the maximum - edge biclique problem of Optimization vol no pp Mar
    Gillis
  • An efficient secure deletion scheme for flash file systems of and vol no pp Jan
    Lee
  • Microsoft Extension for Available http research microsoft com en us downloads
    DiskSim
  • Canadian Mounted Police Drive Secure Information Removal and Destruction Guidelines
    Hard
  • wipe Linux man page Available http manpages ubuntu com manpages wily man wipe html
    Durak
  • comprehensive study of energy efficiency and performance of flash - based of the
    Park
  • continuous characterization of the maximum - edge biclique problem of Optimization vol no pp Mar
    Gillis
  • Eraser Available http eraser heidi ie
  • How Available http dubeyko com development FileSystems YAFFS HowYaffsWorks pdf
    Manning
  • Encryption Algorithm Enhancements in Northeast Section Conference Mar
    Solanki
  • Canadian Mounted Police Drive Secure Information Removal and Destruction Guidelines
    Hard
  • An efficient secure deletion scheme for flash file systems of and vol no pp Jan
    Lee
  • Flash Memory for Ubiquitous Hardware Functions True Random Number Generation and Device Fingerprints in Proceedings of the on and
    Wang
  • Managing Intel Solid - State Drives Using Intel vPro Technology Available http www intel com content dam www public us en documents whitepapers it management wde ssd amt encryption paper pdf
    Balshai
  • Make flash - based storage more resilient and robust Performance vol Nov
    Huang
  • SAFE Fast Verifiable for of California San Rep Available https cseweb ucsd edu swanson papers Safe pdf
    Wei
  • The Available http www pdl cmu edu
    Bucy
  • Disposal of disk and tape data by secure sanitization vol no pp Aug
    Hughes
  • Flash Memory for Ubiquitous Hardware Functions True Random Number Generation and Device Fingerprints in Proceedings of the on and
    Wang
  • Basin Data Node Encrypted File System : Efficient Secure Deletion for Flash Memory in Proceedings of the th Aug pp
    Reardon
  • srm Linux man page Available https www mankier com srm
    Gauthier
  • Models and Design of an Adaptive Hybrid Scheme for Secure Deletion of Data in Consumer on vol no pp Feb
    Sun
  • How Available http dubeyko com development FileSystems YAFFS HowYaffsWorks pdf
    Manning
  • Microsoft Extension for Available http research microsoft com en us downloads
    DiskSim
  • SAFE Fast Verifiable for of California San Rep Available https cseweb ucsd edu swanson papers Safe pdf
    Wei