Transcryptfs: A Dynamically Loadable Kernelspace Filesystem Architecture

Adarsh Jagannatha

जून 2013 · Adarsh Jagannatha

ई-बुक

पेज

इस ई-बुक के बारे में जानकारी

TransCrypt is an encrypting filesystem, indigenously developed at IIT Kanpur. It has been under continuous development for the past 6 years, by various students of IIT Kanpur at Prabhu Goel Reasearch Centre for Computer and Internet Security. The codebase of Transcryptfs filesystem for Linux is spread across various sub systems of Linux kernel, viz. dm-layer, lsm, vfs, crypto, etc., making it difficult to keep Transcryptfs updated with changes in any of those subsystem in upstream kernel’s mainline code. One of the main features of Transcryptfs for Linux file server is the use of Linux security module (LSM) for providing access control mechanism; Due to changes in kernel architecture, since late 2007, LSM has to be statically linked with kernel during its compile time, thereby imposing a restriction that Transcryptfs supported kernel should be statically compiled with the Transcryptfs-lsm module.

This additionally imposed restriction has led to a complicated procedure for setting up of Transcryptfs filesystem and also has shifted the responsibility of patching kernel with new updates from the distribution managers to individual system administrators. These factors have resulted in non-adoption of Transcryptfs for real world usecase.

In this thesis, we re-engineer and come up with an architecture that aims to make Transcryptfs an easily deployable and dynamically loadable kernel module, in addition to decoupling codebase from the kernel source into a single manageable module, thereby easing maintenance and further development of Transcryptfs filesystem. The contribution of this thesis is in designing the kernelspace architecture and related implementation of Transcryptfs as an out-of-the-tree kernel module.

लेखक के बारे में

Adarsh is a technology enthusiast, he wrote this thesis as part of his masters' thesis. He is a web developer, system admin and an entrepreneur.

पठन जानकारी

स्मार्टफ़ोन और टैबलेट

Android और iPad/iPhone के लिए Google Play किताबें ऐप्लिकेशन इंस्टॉल करें. यह आपके खाते के साथ अपने आप सिंक हो जाता है और आपको कहीं भी ऑनलाइन या ऑफ़लाइन पढ़ने की सुविधा देता है.

लैपटॉप और कंप्यूटर

आप अपने कंप्यूटर के वेब ब्राउज़र का उपयोग करके Google Play पर खरीदी गई ऑडियो किताबें सुन सकते हैं.

eReaders और अन्य डिवाइस

Kobo ई-रीडर जैसी ई-इंक डिवाइसों पर कुछ पढ़ने के लिए, आपको फ़ाइल डाउनलोड करके उसे अपने डिवाइस पर ट्रांसफ़र करना होगा. ई-रीडर पर काम करने वाली फ़ाइलों को ई-रीडर पर ट्रांसफ़र करने के लिए, सहायता केंद्र के निर्देशों का पालन करें.