Secure recovery in a serverless distributed file system
First Claim
1. A method for secure file write processes in a serverless distributed file system, the method comprising:
- in the serverless distributed file system, requiring a certificate for file creation;
requiring the certificate for file uploads to the serverless distributed file system; and
accepting changes to any created files with the certificate according to predetermined criteria indicated by the certificate.
2 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods for secure file writes after a catastrophic event are allowed over an unauthenticated channel in a serverless distributed file system if an authenticator accompanies the secure file writes. The authenticator can be a power-of-attorney certificate with time limitations, a vector of message authenticated code, or a single message authenticator with secured with a secret shared among members of the serverless distributed file system. The serverless distributed file system includes at least 3f +1 participating computer members, with f representing a number of faults tolerable by the system. The group requires at least one authenticator for file creation and file uploads. Any changes to files stored among the members can be made over an unauthenticated channel if the file changes are secured by the authenticator and the group is able to verify the authenticator.
-
Citations
36 Claims
-
1. A method for secure file write processes in a serverless distributed file system, the method comprising:
-
in the serverless distributed file system, requiring a certificate for file creation;
requiring the certificate for file uploads to the serverless distributed file system; and
accepting changes to any created files with the certificate according to predetermined criteria indicated by the certificate. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A method for securely updating files in a distributed directory group with a plurality of members therein, the method comprising:
-
receiving by each member of the plurality of members one of n authenticators;
receiving over an insecure channel a transmit containing one or more file updates secured with a hash of file content and a vector of message authentication codes created using the n authenticators; and
authenticating the file updates by requiring a predetermined number of members in the distributed directory group to verify a predetermined number of the message authentication codes in the vector of message authentication codes.
-
-
7. The method of 6 wherein the n authenticators are UMAC message authentication codes.
-
8. The method of 6 wherein a user establishes a symmetric key relationship with each member of the distributed directory group.
-
9. The method of 6 wherein the number of members required to verify the predetermined number of message authentication codes is f+1 and the predetermined number of message authentication codes is 2f+1, wherein f is the number of faults tolerable by the distributed directory group.
-
10. A method for transmitting file writes to a fault tolerant directory group outside of an authenticated channel, the method comprising:
-
transmitting one or more file writes to the directory group; and
identifying the one or more file writes with at least one authenticator, the at least one authenticator requiring the directory group to reconstruct at least one secret key to authorize the one or more file writes. - View Dependent Claims (11, 12)
-
-
13. A method for allowing file writes to a fault tolerant directory group outside of an authenticated channel, the method comprising:
-
receiving a log from a client machine, the log including the file writes and the log authenticated by a message authentication code; and
reconstructing a secret key associated with the message authentication code, the reconstructing requiring a number of members of the fault tolerant directory group to provide a share of the secret key, the number being at least one plus a number of tolerable faults of the fault tolerant directory group. - View Dependent Claims (14, 15)
-
-
16. A method for file writes to a fault tolerant directory group outside of an authenticated channel, the method comprising:
-
creating a log in a client machine, the log including the file writes and the log authenticated by a message authentication code secured with a secret key associated with the message authentication code, wherein reconstruction of the secret key requires a number of members of the fault tolerant directory group to provide a share of the secret key, the number being at least one plus a number of tolerable faults of the fault tolerant directory group; and
transmitting the log outside the authenticated channel. - View Dependent Claims (17)
-
-
18. A serverless distributed file system comprising:
-
at least 3f+1 participating computer members forming a group, wherein f represents a number of faults tolerable by the group; and
and a plurality of files distributed among the members of the group, wherein the group requires at least one authenticator for file creation and the group requires the authenticator for file uploads to the serverless distributed file system and changes to any one of the plurality of files is according to predetermined criteria indicated by the authenticator associated with the file. - View Dependent Claims (19, 20, 21, 22)
-
-
23. A computer-readable medium having computer-executable instructions for enabling file writes to a fault tolerant directory group outside of an authenticated channel, the computer-executable instructions performing acts comprising:
-
creating a log, the log including the file writes and the log authenticated by a message authentication code secured with a secret key associated with the message authentication code, wherein reconstruction of the secret key requires a number of members of the fault tolerant directory group to provide a share of the secret key, the number being at least one plus a number of tolerable faults of the fault tolerant directory group; and
enabling a client machine to transmit the log outside the authenticated channel.
-
-
24. A computer-readable medium having computer-executable instructions for performing acts comprising:
-
in a serverless distributed file system, requiring a certificate for file creation;
requiring the certificate for file uploads to the serverless distributed file system; and
accepting changes to any created files with the certificate according to predetermined criteria indicated by the certificate. - View Dependent Claims (25, 26, 27)
-
-
28. A computer-readable medium having computer-executable instructions for performing acts comprising:
-
receiving by each member of a distributed directory group with a plurality of members one of n authenticators;
receiving over an insecure channel a transmit containing one or more file updates secured with a hash of file content and a vector of message authentication codes created using the n authenticators; and
authenticating the file updates by requiring a predetermined number of members in the distributed directory group to verify a predetermined number of the message authentication codes in the vector of message authentication codes. - View Dependent Claims (29, 30, 31)
-
-
32. A computer-readable medium having computer-executable instruction for performing acts for transmitting file writes to a fault tolerant directory group outside of an authenticated channel, the acts comprising:
-
transmitting one or more file writes to the directory group; and
identifying the one or more file writes with at least one authenticator, the at least one authenticator requiring the directory group to reconstruct at least one secret key to authorize the one or more file writes. - View Dependent Claims (33, 34)
-
-
35. A computer-readable medium having computer-executable instructions for performing acts for allowing file writes to a fault tolerant directory group outside of an authenticated channel, the acts comprising:
-
receiving a log from a client machine, the log including the file writes and the log authenticated by a message authentication code; and
reconstructing a secret key associated with the message authentication code by a predetermined number of members of the fault tolerant directory group disclosing a correct share of the secret key, the reconstructing of the secret key verifying the authenticity of the file writes when an authenticated channel is unavailable. - View Dependent Claims (36)
-
Specification