Paper 2023/1927

Holepunch: Fast, Secure File Deletion with Crash Consistency

Zachary Ratliff, Harvard University
Wittmann Goh, Harvard University
Abe Wieland, Harvard University
James Mickens, Harvard University
Ryan Williams, Northeastern University
Abstract

A file system provides secure deletion if, after a file is deleted, an attacker with physical possession of the storage device cannot recover any data from the deleted file. Unfortunately, secure deletion is not provided by commodity file systems. Even file systems which explicitly desire to provide secure deletion are challenged by the subtleties of hardware controllers on modern storage devices; those controllers obscure the mappings between logical blocks and physical blocks, silently duplicate physical blocks, and generally make it hard for host-level software to make reliable assumptions about how file data is kept on the device. State-of-the-art frameworks for secure deletion also have no crash consistency, meaning that an ill-timed power outage or software fault will desynchonize keys and the associated encrypted file data, corrupting the file system. In this paper, we present Holepunch, a new software-level approach for implementing secure deletion. Holepunch treats the storage device as a black box, providing secure deletion via cryptographic erasure. Holepunch uses per-file keys to transparently encrypt outgoing file writes and decrypt incoming file reads, ensuring that all physical data in the storage device is always encrypted. Holepunch uses puncturable pseudorandom functions (PPRFs) to quickly access file keys; upon the deletion of file $f$, Holepunch updates the PPRF so that, even if the PPRF is recovered, the PPRF cannot be used to generate $f$'s key. By using PPRFs instead of the key trees leveraged by prior work, Holepunch reduces both the memory pressure caused by key management and the number of disk IOs needed to access files. Holepunch stores its master key in secure TPM storage, and uses a novel journaling scheme to provide crash consistency between TPM state and on-disk state.

Metadata
Available format(s)
PDF
Category
Cryptographic protocols
Publication info
Published elsewhere. Minor revision. IEEE Security & Privacy (S&P) 2024
Keywords
secure deletioncryptographic erasuresystems securityprivacy
Contact author(s)
zacharyratliff @ g harvard edu
History
2023-12-21: approved
2023-12-18: received
See all versions
Short URL
https://ia.cr/2023/1927
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2023/1927,
      author = {Zachary Ratliff and Wittmann Goh and Abe Wieland and James Mickens and Ryan Williams},
      title = {Holepunch: Fast, Secure File Deletion with Crash Consistency},
      howpublished = {Cryptology {ePrint} Archive, Paper 2023/1927},
      year = {2023},
      url = {https://eprint.iacr.org/2023/1927}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.