论文标题
SGX-SSD:具有Intel SGX的基于策略的版本管理SSD
SGX-SSD: A Policy-based Versioning SSD with Intel SGX
论文作者
论文摘要
本文表明,执行设备级版本的SSD可以在数据保留时间小于恶意软件的停留时间时暴露于数据篡改攻击。为了应对这种威胁,我们提出了SGX-SSD,这是一种基于SGX的SSD SSD,它根据给定的策略有选择地保留文件历史记录。拟议的系统采用Intel SGX来实现免受高私有恶意软件的版本策略管理系统。基于策略,仅在SSD中选择性保存必要的数据,该数据可以防止更少优先级的文件浪费空间,并确保重要文件的完整性。
This paper demonstrates that SSDs, which perform device-level versioning, can be exposed to data tampering attacks when the retention time of data is less than the malware's dwell time. To deal with that threat, we propose SGX-SSD, a SGX-based versioning SSD which selectively preserves file history based on the given policy. The proposed system adopts Intel SGX to implement the version policy management system that is safe from high-privileged malware. Based on the policy, only the necessary data is selectively preserved in SSD that prevents files with less priority from wasting space and also ensures the integrity of important files.
