Download Shareware and Freeware Software for Windows, Linux, Macintosh, PDA

line Home  |  About Us  |  Link To Us  |  FAQ  |  Contact

Serving Software Downloads in 956 Categories, Downloaded 49.588.073 Times

TCFS 3.0b2

  Date Added: November 24, 2010  |  Visits: 1.054

TCFS

Report Broken Link
Printer Friendly Version


Product Homepage
Download (100 downloads)



TCFS project is a cryptographic network file system featuring group sharing of encrypted files. TCFS will encrypt your files before sending them to the file server and will decrypt them before they are read by the requesting application. Because the encryption/decryption process takes place on the client host, no clean data will travel the network. This is particularly valid for the encryption key. Recent advances in hardware and communication technologies have made possible and cost effective to share a file system among several machines over a local (but possibly also a wide) area network. One of the most successful and widely used such applications is Suns Network File System (NFS). NFS is very simple in structure but assumes a very strong trust model: the user trusts the remote file system server (which might be running on a machine in different country) and a network with his/her data. It is easy to see that neither assumption is a very realistic one. The server (or anybody with superuser privileges) might very well read the data on its local filesytem and it is well known that the Internet or any local area network (e.g, Ethernet) is very easy to tap (see for example, Berkeleys tcpdump application program). Impersonification of users is also another security drawback of NFS. In fact, most of the permission checking over NFS are performed in the kernel of the client. In such a context a pirate can temporarely assign to his own workstation the Internet address of victim. Without secure RPC no further authentication procedure is requested. From here on, the pirate can issue NFS requests presenting himself with any (false) uid and therefore accessing for reading and writing any private data on the server, even protected data. Given the above, a user seeking a certain level of security should take some measures. We propose a new cryptographic file system, which we call TCFS, as a suitable solution to the problem of privacy for distributed file system. Dynamic Encryption Modules in TCFS: The dynamic encryption module feature of TCFS allows a user to specify the encryption engine of his/her choiche to be used by TCFS. So you are not forced anymore to use what us (the developer) consider the best (i.e., more secure and efficient) encryption algorithm. The encryption engine must be given in the form of a Linux module and must conform to (the very simple) TCFS API for encryption module. Essentially, it must specify four functions: 1. An initialization function that is called by TCFS when the user pushes her key into TCFS. Typically the initialization function takes as input the key and returns a pointer to a struct containing a the result of a preprocessing of the key to be used for the encryption and the decryption. For the specific case of DES the initialization function computes the 16 48-bit subkeys, one for each round of DES. 2. An encryption function which takes a block of data, the length of the block in bytes and the result of the initialization function and encrypts the data. 3. A decryption function which takes a block of data, the length of the block in bytes and the result of the initialization function and decrypts the data. The encryption and the decryption functions are called each time TCFS needs to read/write a block of data. 4. A cleanup function which performs whatever operation is needed before the key removed by TCFS. Our work improves on Matt Blazes CFS by providing deeper integration between the encryption service and the file system which results in a complete transparency of use to the user applications. Release 2.2 of TCFS includes the possibility of threshold sharing files among users. Threshold sharing consists in specifying a minimum number of members (the threshold) that need to be ``active for the files owned by the group to become available. TCFS enforces the threshold sharing by generating an encryption key for each group and giving each member of the group a share using a Threshold Secret Sharing Scheme. The group encryption key can be reconstructed by any set of at least threshold keys. A member of the group that intends to become active does so by pushing her/his share of the group key into the kernel. The TCFS module checks if the number of shares available is above the threshold and, if it is so, it attempts to reconstruct the group encryption key. By the properties of the Threshold Secret Sharing Scheme, it is guaranteed that, if enough shares are available, the group encryption key is correctly reconstructed. Once the group encryption key has been reconstructed, the files owned by the group become accessible. Each time a member decides to become inactive, her share of the group encryption key is removed. The TCFS module checks if the number of shares available has gone under the threshold. In this case, the group encryption key is removed from the TCFS module and files owned by the group become unaccessible. The current TCFS implementation of the group sharing facility requires each memeber to trust the kernel of the machine that reconstructs the key to actually remove the key once the number of active users goes below the threshold. Future implementations will remove this requirement by performing the reconstruction of the key in a distributed manner..

Requirements: No special requirements
Platforms: Linux
Keyword: Data Encryption Encryption Key File File System Filesystems Group Key Nfs System Tcfs Threshold
Users rating: 0/10

License: Freeware Size: 87.04 KB
USER REVIEWS
More Reviews or Write Review


TCFS RELATED
Libraries  -  java data object persistence in file 3.1.0b1
Make java data object persistent in file system whithout database. Between serialization in file and database. Cache your data model in file. Manage more objects than memory can contains
1.17 MB  
File Synchronizers  -  File system investigator 1.0.3
FileSystem Investigator is a platform independent file system viewer and data extraction tool. It allows the user to: * View the contents of the target file system in a forensicly safe manner, bypassing the normal operating system mechanisms. *...
337.92 KB  
File Synchronizers  -  Fast Secure File System 0.1.1
Fast Secure File System exports existing directories securely over the network, letting users store and retrieve encrypted data in a scalable and transparent way. FSFS is written in C and works on GNU/Linux systems on x86 and PPC architectures,...
 
File Synchronizers  -  The Plastic File System 1.11
The Plastic File System project is an LD_PRELOAD module for manipulating what the file system looks like for programs. This allows virtual file systems to exist in user space, without kernel hacks or modules. PlasticFS includes the following...
184.32 KB  
File Synchronizers  -  Parallel Virtual File System 1.6.3
The goal of the Parallel Virtual File System (PVFS) Project is to explore the design, implementation, and uses of parallel I/O. PVFS serves as both a platform for parallel I/O research as well as a production file system for the cluster computing...
235.52 KB  
File Utilities  -  Simple TCP FUSE File System 1.2
Simple TCP FUSE File System is a FUSE based networked file system. It consists of 2 parts. A network server daemon that is started on the (remote) host and a FUSE module running in user-space on the local host. Server component is launched via SSH...
389.12 KB  
File Utilities  -  Fast Secure File System 0.1.1
Fast Secure File System exports existing directories securely over the network, letting users store and retrieve encrypted data in a scalable and transparent way. FSFS is written in C and works on GNU/Linux systems on x86 and PPC architectures,...
196.61 KB  
File Management  -  Virtual File System 0.1.2
Virtual File System is a Web-based system that allows authorised users to upload and download files. It is a file sharing utility aimed at communities that wish to share files across the Internet and where traditional mechanisms aren't...
 
File Management  -  php File System 1.0
php File System allows to share a file structure over the web, even in a restricted php environment -like most free providers have. All files and folders structure are stored in the database, and are accessible according to a per user entitlement...
 
File Security  -  Data encryption utility LabVault 0.5
LabVault is a software package that any user with a PC running under Windows 2000, XP (support of other OS will come shortly) can keep all there secret information securely. You can think of LabVault as a Bank with safety deposit boxes inside of...
1.09 MB  
NEW DOWNLOADS IN UTILITIES, FILE SYNCHRONIZERS
Utilities  -  Nessconnect 1.0.2
Nessconnect is a GUI, CLI and API client for Nessus and Nessus compatible servers. With an improved user interface, it provides local session management, scan templates, report generation through XSLT, charts and graphs, and vulnerability trending.
819.2 KB  
Utilities  -  Dynamic Power Management 2.6.16
The Dynamic Power Management (DPM) project explores technologies to improve power conservation capabilities of platforms based on open source software. Of particular interest are techniques applicable to running systems, adjusting power parameters...
30.72 KB  
Utilities  -  Ethernet bridge tables 2.4.37.9
Ethernet bridge tables - Linux Ethernet filter for the Linux bridge. The 2.4-ebtables-brnf package contains the ebtables+bridge-nf patch. Be sure to check out the ebtables hp. This site also contains the arptables userspace tool.
40.96 KB  
Utilities  -  SaraB 1.0.0
SaraB works with DAR (Disk ARchive) to schedule and rotate backups on random-access media (i.e. hard drives, CDs, DVDs, Zip, etc. Basically anything except magnetic tapes.) This reduces hassle for the administrator by providing an automatic backup...
20.48 KB  
Utilities  -  Command Not Found 0.2.41
Command Not Found is a program that uses a cache of existing programs and their associated packages to aid users in their day-to-day command-line work. Usage: command-not-found [options] Options: ...
30.72 KB  
File Synchronizers  -  CryptoMaster 0.42.3
CryptoMaster is a little Frontend to cryptsetup where you can initialize and mount your dm-crypt (LUKS) encrypted devices. The status for each device is shown and you are able to add and remove new existing disks. The idea is to be completely...
225.28 KB  
File Synchronizers  -  clist 0.1.0
clist is a text-based directory browser and file manager. clist uses the curses library for graphics and the keyboard for interaction. The current release is an alpha release v0.1.0. There are a lot of features still to be added but I think...
39.94 KB  
File Synchronizers  -  Mounttero 0.4
Mounttero automatically mounts most storage devices such as USB drives and cameras, DVDs, CDROMs, hard disks, and floppies. Devices are mounted when users opens their directory, such as /mnt/auto/cdrom, and are unmounted when the directory...
8.19 KB  
File Synchronizers  -  MapFS 1.0-0.1035
MapFS implements a Linux filesystem which utilizes copy-on-write functionality and existing Linux filesystems to allow component filesystems (or portions thereof) to be combined into a single virtual filesystem that appears to be fully writable....
77.82 KB  
File Synchronizers  -  fuselagefs 0.0.1
fuselagefs is a project which consists of a C++ wrapper class for FUSE called Fuselagefs. fuselagefs consists of a C++ wrapper class for FUSE called Fuselagefs, as well as Delegatefs which is a Fuselagefs subclass that delegates all operations...
276.48 KB