Ama-Oramfs, isistimu yamafayela ebonakalayo ebethelwe ngokuphelele

Darkcrizt

Imizuzu ye-4

Ezinsukwini ezimbalwa ezedlule inkampani Ezokuphepha zeKudelski (onguchwepheshe ekwenzeni ucwaningo lokuphepha) yembula ukukhishwa kohlelo lwefayela le-Oramfs ngokuqaliswa kobuchwepheshe be-ORAM (Random Oblivious the Access Machine), kanyei-ste uhlelo lwefayela olubonakalayo lwenzelwe ukusetshenziswa nezitolo zedatha ekude futhi ayivumeli noma ngubani ukuthi alandele ukwakheka kokubhaliwe futhi afunde kubo, ngokulandelana. Ihlanganiswe nokubethela, ubuchwepheshe buhlinzeka ngezinga eliphakeme kakhulu lokuvikelwa kobumfihlo bedatha

Iphrojekthi iphakamisa imojula ye-FUSE yeLinux ngokusetshenziswa kongqimba lwe-FS, olungavumeli ukulandelela ukwakheka kwemisebenzi yokufunda nokubhala, ikhodi ye-Oramfs ibhalwe kuRust futhi ilayisensi ngaphansi kweGPLv3.

Mayelana ne-Oramfs

Ubuchwepheshe be-ORAM buhilela ukwenziwa kolunye ungqimba ngaphezu kokubethela, okungavumeli ukucacisa uhlobo lomsebenzi wamanje lapho usebenza nedatha. Isibonelo, esimweni sokusebenzisa ukubethela lapho kugcinwa idatha kusevisi yomuntu wesithathu, abanikazi bale sevisi abakwazi ukuzitholela imininingwane uqobo lwabo, kepha bangathola ukuthi yimaphi amabhulokhi afinyelelwayo nokuthi yimiphi imisebenzi eyenziwayo. NOMAI-RAM ifihla imininingwane yokuthi yiziphi izingxenye zohlelo lwefayela ezifinyelelwayo nokuthi hlobo luni lomsebenzi owenziwayo (funda noma ubhale).

Lapho ucabangela ubumfihlo bezixazululo zesitoreji, ukubethela kukodwa akwanele ukuvimbela ukuvuza kwephethini yokufinyelela. Ngokungafani nezixazululo zendabuko ezifana ne-LUKS noma i-Bitlocker, uhlelo lwe-ORAM luvimbela umhlaseli ekubeni azi ukuthi enze imisebenzi yokufunda noma yokubhala nokuthi yiziphi izingxenye zohlelo lwefayela ezitholakala kuzo. Leli zinga lobumfihlo litholakala ngokwenza ezinye izicelo zokufinyelela kunesidingo, ukuxuba amabhulokhi akha ungqimba lwesitoreji, nokubhala nokubethela kabusha idatha emuva naphambili isikhathi ngasinye, noma ngabe kwenziwa umsebenzi wokufunda kuphela. Ngokusobala lokhu kuza nokulahleka kokusebenza, kepha kunikeza ukuphepha okungeziwe kuqhathaniswa nezinye izixazululo.

I-Oramfs inikeza ungqimba lohlelo lwefayela jikelele olwenza kube lula ukuhlelwa kokugcinwa kwedatha kunoma yisiphi isitoreji sangaphandle. Idatha igcinwa ibethelwe ngenketho yokufakazela ubuqiniso. Ama-algorithm we-ChaCha8, AES-CTR, ne-AES-GCM angasetshenziselwa ukubethela. Amaphetheni wokufunda nokubhala afihliwe ngohlelo lwendlela ye-ORAM. Esikhathini esizayo kuhlelwa ukuqaliswa kwezinye izikimu, kepha ngendlela okuyiyo njengamanje, ukuthuthukiswa kusesigabeni sohlobo oluthile, olunganconyelwa ukusetshenziswa ezinhlelweni zokukhiqiza.

Ama-Oramfs ingasetshenziswa nganoma yiluphi uhlelo lwefayela futhi alincikile ohlotsheni lwesitoreji sangaphandle esilitshiwe: Amafayela angavumelaniswa nganoma iyiphi insizakalo engafakwa njengesiqondisi sendawo (i-SSH, i-FTP, i-Google Drayivu, i-Amazon S3, i-Dropbox, i-Google Cloud Storage, i-Mail.ru Cloud, i-Yandex namanye amasevisi asekelwa i-rclone noma akhona Amamojula we-FUSE ukukhweza). Usayizi wesitoreji awulungisiwe, futhi uma kudingeka isikhala esiningi, usayizi we-ORAM ungakhula ngamandla.

Ukucushwa kwe-Oramfs kubila ekuchazeni izinkomba ezimbili, ezomphakathi nezangasese, ezisebenza njengeseva neklayenti:

  • Uhla lwemibhalo lomphakathi lungaba noma yimuphi umkhombandlela ohlelweni lwefayela lendawo oluxhunywe kwizitokisi zangaphandle ngokuzifaka nge-SSHFS, FTPFS, Rclone, kanye nanoma iyiphi enye imojula ye-FUSE.
  • Umkhombandlela wangasese unikezwa yi-Oramfs FUSE module futhi yakhelwe ukusebenza ngqo namafayela agcinwe ku-ORAM. Uhla lwemibhalo lomphakathi luqukethe ifayela elinesithombe se-ORAM.

Noma ikuphi ukusebenza okunenkomba eyimfihlo kuthinta isimo saleli fayela lesithombe, kepha leli fayela libukeka njengebhokisi elimnyama kumuntu obuka ngaphandle, izinguquko ezingenakuhlotshaniswa nomsebenzi kumkhombandlela wangasese, kufaka phakathi umsebenzi wokubhala noma wokufunda, awunakunqunywa .

Okokugcina uma unesifiso sokwazi okwengeziwe ngakho noma ukwazi ukuhlola lolu hlelo lwefayela, ungabheka imininingwane ekulesi sixhumanisi esilandelayo.

Umthombo: https://research.kudelskisecurity.com/


Shiya umbono wakho

Ikheli lakho le ngeke ishicilelwe. Ezidingekayo ibhalwe nge *

*

*

  1. Ubhekele imininingwane: Miguel Ángel Gatón
  2. Inhloso yedatha: Lawula Ugaxekile, ukuphathwa kwamazwana.
  3. Ukusemthethweni: Imvume yakho
  4. Ukuxhumana kwemininingwane: Imininingwane ngeke idluliselwe kubantu besithathu ngaphandle kwesibopho esisemthethweni.
  5. Isitoreji sedatha: Idatabase ebanjwe yi-Occentus Networks (EU)
  6. Amalungelo: Nganoma yisiphi isikhathi ungakhawulela, uthole futhi ususe imininingwane yakho.