I-Oramfs, inkqubo yeefayile ebhalwe ngokufihlakeleyo ngokupheleleyo

Darkcrizt

Imizuzu ye4

Kwiintsuku ezimbalwa ezidlulileyo inkampani Kudelski Security (ngokukodwa ekuqhubeni uphicotho lwezokhuseleko) ityhile ukukhutshwa kwenkqubo yefayile yeOramfs ngokumiliselwa kwe-ORAM (Random Oblivious the Access Machine) itekhnoloji, kunyeisiqa Inkqubo yefayile ebonakalayo yenzelwe ukusetyenziswa kunye neevenkile zedatha ekude kwaye ayivumeli nabani na ukuba alandele ubume bokubhala kwaye afunde kubo ngokulandelelana. Idityaniswe nokubethela, itekhnoloji inikezela kwelona nqanaba liphezulu lokukhusela idatha yabucala

Iprojekthi icebisa imodyuli ye-FUSE yeLinux ngokuphunyezwa komaleko we-FS, ongavumeli ukulandelela ubume bokufundwa nokubhalwa kwemisebenzi, ikhowudi ye-Oramfs ibhaliwe eRust kwaye inelayisensi phantsi kweGPLv3.

Malunga ne-Oramfs

Itekhnoloji ye-ORAM ibandakanya ukwenziwa kolunye umaleko ukongeza kwi-encryption, engavumeli ukuba ichonge uhlobo lomsebenzi wangoku xa usebenza nedatha. Umzekelo, kwimeko yokusebenzisa i-encryption xa ugcina idatha kwinkonzo yomntu wesithathu, abanini bale nkonzo abanakufumana idatha ngokwabo, kodwa banokumisela ukuba zeziphi iibhloko ezifikelelweyo kwaye yeyiphi imisebenzi eyenziwayo. OKANYEI-RAM ifihla ulwazi malunga nokuba ngawaphi amacandelo enkqubo yefayile afikelelweyo kwaye loluphi uhlobo lomsebenzi owenziwayo (funda okanye ubhale).

Xa ujonga ubumfihlo bezisombululo zokugcina, ukubethela kuphela akwanelanga ukuthintela ukuvuza kwendlela yokungena. Ngokungafaniyo nezisombululo zesiko ezinje ngeLUKS okanye iBitlocker, isikimu se-ORAM sithintela umhlaseli ekubeni azi ukuba enze imisebenzi yokufunda okanye yokubhala kwaye ngawaphi amacandelo enkqubo yefayile afikelelweyo. Eli nqanaba labucala liyaphunyezwa ngokwenza ezinye izicelo zokufikelela kunokuba ziyimfuneko, ukuxuba iibhloko ezenza umaleko wokugcina, kunye nokubhala kunye nokubethela idatha kwakhona nangapha nangaliphi na ixesha, nokuba sele kwenziwe umsebenzi wokufunda. Ngokucacileyo oku kuza nelahleko yokusebenza, kodwa kubonelela ngokhuseleko olongezelelweyo xa kuthelekiswa nezinye izisombululo.

Ii-Oramfs zibonelela ngenkqubo yefayile yendalo yonke eyenza ukuba kube lula ukugcinwa kwedatha nakuluphi na ugcino lwangaphandle. Idatha igcinwa ngokufihliweyo kunye nenketho yokungqinisisa. I-ChaCha8, i-AES-CTR, kunye ne-AES-GCM algorithms inokusetyenziselwa ukubethela. Funda kwaye ubhale iipateni zokufikelela ezifihliweyo sisikimu sendlela ye-ORAM. Kwixesha elizayo, ukuphunyezwa kwezinye izikimu kucwangcisiwe, kodwa ngohlobo lwangoku, uphuhliso lisekwinqanaba leprototype, engacetyiswayo ukuba isetyenziswe kwiinkqubo zemveliso.

Oramfs inokusetyenziswa kuyo nayiphi na inkqubo yefayile kwaye ayixhomekekanga kuhlobo lwangaphandle lokugcina ekujoliswe kulo: Iifayile zinokuvumelaniswa nayo nayiphi na inkonzo enokuthi ifakwe kwisikhombisi sendawo (i-SSH, i-FTP, iGoogle Drayivu, i-Amazon S3, iDropbox, ukuGcinwa kwamafu kuGoogle, Imeyile.ru Cloud, Yandex kunye nezinye iinkonzo ezixhaswe yingqushu okanye ezikhoyo Iimodyuli ze-FUSE ukunyuka). Ubungakanani bokugcina abulungiswanga, kwaye ukuba kufuneka indawo ethe kratya, ubungakanani be-ORAM bunokukhula ngamandla.

Ukucwangciswa kwe-Oramfs kubila ekuchazeni imikhombandlela emibini, eyasesidlangalaleni neyabucala, esebenza njengeseva kunye nomthengi:

  • Umkhombandlela woluntu unokuba lulo naluphi na ulawulo lwenkqubo yefayile yengingqi eqhagamshelwe kwizitora zangaphandle ngokuzifaka ngeSSHFS, FTPFS, Rclone, kunye nayo nayiphi na imodyuli yeFUSE.
  • Ulawulo lwabucala lubonelelwa ngemodyuli ye-Oramfs FUSE kwaye yenzelwe ukuba isebenze ngokuthe ngqo kwiifayile ezigcinwe kwi-ORAM. Ulawulo loluntu luqulathe ifayile enomfanekiso we-ORAM.

Nawuphi na umsebenzi onesikhombisi sangasese uchaphazela imeko yale fayile yomfanekiso, kodwa le fayile ijongeka njengebhokisi emnyama kumntu obukele wangaphandle, utshintsho olungenakunxulunyaniswa nomsebenzi kulawulo lwabucala, kubandakanya umsebenzi wokubhala okanye ukufunda, akunakugqitywa. .

Gqibela ukuba unomdla wokwazi okungakumbi ngayo okanye ube nakho ukuvavanya le nkqubo yefayile, ungajonga iinkcukacha kwikhonkco elilandelayo.

Umthombo: https://research.kudelskisecurity.com/


Shiya uluvo lwakho

Idilesi yakho ye email aziyi kupapashwa. ezidingekayo ziphawulwe *

*

*

  1. Uxanduva lwedatha: UMiguel Ángel Gatón
  2. Injongo yedatha: Ulawulo lwe-SPAM, ulawulo lwezimvo.
  3. Umthetho: Imvume yakho
  4. Unxibelelwano lwedatha: Idatha ayizukuhanjiswa kubantu besithathu ngaphandle koxanduva lomthetho.
  5. Ukugcinwa kweenkcukacha
  6. Amalungelo: Ngalo naliphi na ixesha unganciphisa, uphinde uphinde ucime ulwazi lwakho.