CephVault: A secure Key Management System (KMS) for Ceph
| dc.contributor.advisor | Kent, Kenneth B. | |
| dc.contributor.author | Rana, Subhabrata | |
| dc.date.accessioned | 2024-05-23T16:06:29Z | |
| dc.date.available | 2024-05-23T16:06:29Z | |
| dc.date.issued | 2024-03 | |
| dc.description.abstract | Organizations are leveraging cluster storage solutions to address expansive storage requirements. Ceph is a reliable and massively scalable cluster solution that supports object, block, and file storage capabilities on commodity hardware without a single point of failure. Despite growing popularity, the absence of native object encryption support in Ceph raises concerns about potential security vulnerabilities and data compromise. CephArmor, a cryptography interface, was previously developed to provide data confidentiality in Ceph while data is at rest. In this work, we propose a secure Key Management System (KMS), CephVault that can support key generation for various encryption schemes and key lengths required by CephArmor. CephVault, which supports twelve phases of a KMS life cycle, is developed as an intrinsic component of Ceph. We demonstrate that the proposed solution provides better features and security than other KMSs, making CephVault a competitive and preferable choice to many existing KMSs available in the Ceph ecosystem. | |
| dc.description.copyright | ©Subhabrata Rana, 2024 | |
| dc.format.extent | xvi, 143 | |
| dc.format.medium | electronic | |
| dc.identifier.oclc | (OCoLC)1440128405 | en |
| dc.identifier.other | Thesis 11396 | en |
| dc.identifier.uri | https://unbscholar.lib.unb.ca/handle/1882/37825 | |
| dc.language.iso | en | |
| dc.publisher | University of New Brunswick | |
| dc.relation | MITACS | |
| dc.relation | 45Drives | |
| dc.rights | http://purl.org/coar/access_right/c_abf2 | |
| dc.subject.discipline | Computer Science | |
| dc.subject.lcsh | Big data. | en |
| dc.subject.lcsh | Data encryption (Computer science) | en |
| dc.subject.lcsh | Information storage and retrieval systems. | en |
| dc.title | CephVault: A secure Key Management System (KMS) for Ceph | |
| dc.type | master thesis | |
| oaire.license.condition | other | |
| thesis.degree.discipline | Computer Science | |
| thesis.degree.grantor | University of New Brunswick | |
| thesis.degree.level | masters | |
| thesis.degree.name | M.C.S. |