This is a recording of Global CENTRA Webinar on 28 March 2018 (at 10-11pm US EDT). The webinar series is hosted by CENTRA Project (globalcentra.org, supported by US NSF ACI Award 1550126), headquartered at the **ACIS Lab, University of Florida.
Topic: SafeFS: Secure Software-Defined Storage
Speaker: Dr. João Paulo, Institute for Systems and Computer Engineering, Technology and Science (INESC TEC), Portugal
00:32 Introducing today's speaker Dr. João Paulo (by Dr. Rui Oliveira, INESC TEC board member and CENTRA Steering Committee member).
02:15 Presentation begins: Digital Data Explosion; Infrastructure and Storage Heterogeneity
06:48 Problem Statement
07:18 Software Defined Storage
09:45 Data Plane Challenges
12:10 SafeFS: a modular user-space secure file system
14:00 SafeFS architecture, FUSE and storage requests flow
19:43 SafeFS Implementation
23:45 SafeFS Configuration
27:23 Experimental Evaluation
28:13 Filebench Results
33:43 Conclusion for the challenges that SafeFS have addressed so far
35:14 On-going Work and Open Challenges: Content-Aware Processing
36:22 Exploring Intel SGX
37:47 SafeFS and SGX
39:07 Secure Deduplication, and how SGX could be useful for some storage features, examples
48:56 Open Challenges for: novel layers/ storage functionalities; runtime layer / driver configuration; software-defined storage; control plane scalability
51:26 Final Remarks
53:08 Q & A begins...
53:32 Q1: Layering brings some performance overhead. If there are a lot of layers - duplications of functions of base and upper layers. What are your ideas /findings to prevent performance overhead?
55:57 Q2: What does SafeFS deployment looks like? Does a single SafeFS deployment support a single or multiple users?
57:40 Q3: Could a single instance of safeFS can multiplex several applications optimally at the same time?
1:01:06 An informal, short intro for next webinar: SafeDB: Secure Database Processing on 10 April 2018 [recording now also available here: vimeo.com/globalcentra/SafeDB]
[Abstract of this presentation]
The Big Data era opened a number of interesting technological challenges related with data storage. On one hand, infrastructure heterogeneity and data exponential growth rendered traditional monolithic storage solutions inadequate for handling today's diversity of storage workloads. On the other hand, data has become a highly valuable resource of the modern world and its collection and usage is increasingly raising critical privacy and security concerns.
This talk will focus the key insights for designing a new generation of highly-available, resilient and secure storage systems. Namely, we highlight the SafeFS storage system which offers backward-compatible interfaces and re-architects the way storage solutions are built, configured and managed. To this end, SafeFS defines a programmable and layered approach to the implementation of storage systems that allows seamlessly combining different storage features (e.g., encryption, deduplication, remote storage) in a dynamic and automated fashion. This flexibility allows SafeFS to provide the best storage configuration to address application-specific needs and heterogeneous storage environments.
This project is the result of a collaboration between INESC TEC and University of Neuchâtel, developed under the scope of the European H2020 SafeCloud Project. The webinar will overview SafeFS and highlight avenues for potential future collaborations.
**Advanced Computing and Information Systems Laboratory (ACIS Lab): acis.ufl.edu/
Follow us on Facebook: facebook.com/GlobalCENTRA and facebook.com/acis.lab