oramfs - ORAM filesystem written in Rust
Peter Fairbrother
peter at tsto.co.uk
Thu Jul 1 17:01:33 PDT 2021
On 30/06/2021 22:55, coderman wrote:
> https://github.com/kudelskisecurity/oramfs
> <https://github.com/kudelskisecurity/oramfs>
>
>
> oramfs - ORAM filesystem written in Rust
[..]
> How does it work?
I read that bit, and I still don't know how it works. You don't explain
properly, just give a lot of irrelevant implementation stuff.
In all cases, but especially for explanations, keep it simple. And
answer the question, don't futz around - I don't want to know how you
implemented it (at least not here), I want to know how it works.
> That's it! Files written/read to/from the private directory are
> encrypted and access patterns are hidden to the FTP server.
Not as far as I can see. It seems simple to attack, 'oh look the
file(system) has been changed, the user wrote or deleted a file'
therefore he has accessed the filesystem.
Have you considered how to do secure deletion? It is very tricky. If an
attacker can see the raw fs in a state which includes a particular file,
and the key is not deleted, then if he gets the undeleted key at any
future time he can read the file.
Peter Fairbrother
More information about the cypherpunks
mailing list