Publications
Detailed Information
Evanesco: Architectural support for efficient data sanitization in modern flash-based storage systems
Cited 14 time in
Web of Science
Cited 15 time in Scopus
- Authors
- Issue Date
- 2020-03
- Publisher
- Association for Computing Machinery
- Citation
- International Conference on Architectural Support for Programming Languages and Operating Systems - ASPLOS, pp.1311-1326
- Abstract
- © 2020 Copyright held by the owner/author(s). Publication rights licensed to ACM.As data privacy and security rapidly become key requirements, securely erasing data from a storage system becomes as important as reliably storing data in the system. Unfortunately, in modern flash-based storage systems, it is challenging to irrecoverably erase (i.e., sanitize) a file without large performance or reliability penalties. In this paper, we propose Evanesco, a new data sanitization technique specifically designed for high-density 3D NAND flash memory. Unlike existing techniques that physically destroy stored data, Evanesco provides data sanitization by blocking access to stored data. By exploiting existing spare flash cells in the flash memory chip, Evanesco efficiently supports two new flash lock commands (pLock and bLock) that disable access to deleted data at both page and block granularities. Since the locked page (or block) can be unlocked only after its data is erased, Evanesco provides a strong security guarantee even against an advanced threat model. To evaluate our technique, we build SecureSSD, an Evanesco-enabled emulated flash storage system. Our experimental results show that SecureSSD can effectively support data sanitization with a small performance overhead and no reliability degradation.
- Files in This Item:
- There are no files associated with this item.
Item View & Download Count
Items in S-Space are protected by copyright, with all rights reserved, unless otherwise indicated.