Efficient Storage Integrity in Adversarial Settings

Quinn Burke; Ryan Sheatsley; Yohan Beugin; Eric Pauley; Owen Hines; Michael Swift; Patrick McDaniel

doi:10.1109/SP61157.2025.00196

Efficient Storage Integrity in Adversarial Settings

Quinn Burke
, Ryan Sheatsley
, Yohan Beugin
, Eric Pauley
, Owen Hines
, Michael Swift
, Patrick McDaniel

Computer Science and Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

Storage integrity is essential to systems and applications that use untrusted storage (e.g., public clouds, end-user devices). However, known methods for achieving storage integrity either suffer from high (and often prohibitive) overheads or provide weak integrity guarantees. In this work, we demonstrate a hybrid approach to storage integrity that simultaneously reduces overhead while providing strong integrity guarantees. Our system, partially asynchronous integrity checking (PAC), allows disk write commitments to be deferred while still providing guarantees around read integrity. PAC delivers a 5.5 × throughput and latency improvement over the state of the art, and 85% of the throughput achieved by non-integrity-assuring approaches. In this way, we show that untrusted storage can be used for integrity-critical workloads without meaningfully sacrificing performance.

Original language	English (US)
Title of host publication	Proceedings - 46th IEEE Symposium on Security and Privacy, SP 2025
Editors	Marina Blanton, William Enck, Cristina Nita-Rotaru
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	3145-3160
Number of pages	16
ISBN (Electronic)	9798331522360
DOIs	https://doi.org/10.1109/SP61157.2025.00196
State	Published - 2025
Event	46th IEEE Symposium on Security and Privacy, SP 2025 - San Francisco, United States Duration: May 12 2025 → May 15 2025

Publication series

Name	Proceedings - IEEE Symposium on Security and Privacy
ISSN (Print)	1081-6011

Conference

Conference	46th IEEE Symposium on Security and Privacy, SP 2025
Country/Territory	United States
City	San Francisco
Period	5/12/25 → 5/15/25

All Science Journal Classification (ASJC) codes

Safety, Risk, Reliability and Quality
Software
Computer Networks and Communications

Access to Document

10.1109/SP61157.2025.00196

Cite this

Burke, Q., Sheatsley, R., Beugin, Y., Pauley, E., Hines, O., Swift, M., & McDaniel, P. (2025). Efficient Storage Integrity in Adversarial Settings. In M. Blanton, W. Enck, & C. Nita-Rotaru (Eds.), Proceedings - 46th IEEE Symposium on Security and Privacy, SP 2025 (pp. 3145-3160). (Proceedings - IEEE Symposium on Security and Privacy). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/SP61157.2025.00196

Burke, Quinn ; Sheatsley, Ryan ; Beugin, Yohan et al. / Efficient Storage Integrity in Adversarial Settings. Proceedings - 46th IEEE Symposium on Security and Privacy, SP 2025. editor / Marina Blanton ; William Enck ; Cristina Nita-Rotaru. Institute of Electrical and Electronics Engineers Inc., 2025. pp. 3145-3160 (Proceedings - IEEE Symposium on Security and Privacy).

@inproceedings{92941fe0bf1f41328925562ce158fa0f,

title = "Efficient Storage Integrity in Adversarial Settings",

abstract = "Storage integrity is essential to systems and applications that use untrusted storage (e.g., public clouds, end-user devices). However, known methods for achieving storage integrity either suffer from high (and often prohibitive) overheads or provide weak integrity guarantees. In this work, we demonstrate a hybrid approach to storage integrity that simultaneously reduces overhead while providing strong integrity guarantees. Our system, partially asynchronous integrity checking (PAC), allows disk write commitments to be deferred while still providing guarantees around read integrity. PAC delivers a 5.5 × throughput and latency improvement over the state of the art, and 85\% of the throughput achieved by non-integrity-assuring approaches. In this way, we show that untrusted storage can be used for integrity-critical workloads without meaningfully sacrificing performance.",

author = "Quinn Burke and Ryan Sheatsley and Yohan Beugin and Eric Pauley and Owen Hines and Michael Swift and Patrick McDaniel",

note = "Publisher Copyright: {\textcopyright} 2025 IEEE.; 46th IEEE Symposium on Security and Privacy, SP 2025 ; Conference date: 12-05-2025 Through 15-05-2025",

year = "2025",

doi = "10.1109/SP61157.2025.00196",

language = "English (US)",

series = "Proceedings - IEEE Symposium on Security and Privacy",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "3145--3160",

editor = "Marina Blanton and William Enck and Cristina Nita-Rotaru",

booktitle = "Proceedings - 46th IEEE Symposium on Security and Privacy, SP 2025",

address = "United States",

}

Burke, Q, Sheatsley, R, Beugin, Y, Pauley, E, Hines, O, Swift, M & McDaniel, P 2025, Efficient Storage Integrity in Adversarial Settings. in M Blanton, W Enck & C Nita-Rotaru (eds), Proceedings - 46th IEEE Symposium on Security and Privacy, SP 2025. Proceedings - IEEE Symposium on Security and Privacy, Institute of Electrical and Electronics Engineers Inc., pp. 3145-3160, 46th IEEE Symposium on Security and Privacy, SP 2025, San Francisco, United States, 5/12/25. https://doi.org/10.1109/SP61157.2025.00196

Efficient Storage Integrity in Adversarial Settings. / Burke, Quinn; Sheatsley, Ryan; Beugin, Yohan et al.
Proceedings - 46th IEEE Symposium on Security and Privacy, SP 2025. ed. / Marina Blanton; William Enck; Cristina Nita-Rotaru. Institute of Electrical and Electronics Engineers Inc., 2025. p. 3145-3160 (Proceedings - IEEE Symposium on Security and Privacy).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - Efficient Storage Integrity in Adversarial Settings

AU - Burke, Quinn

AU - Sheatsley, Ryan

AU - Beugin, Yohan

AU - Pauley, Eric

AU - Hines, Owen

AU - Swift, Michael

AU - McDaniel, Patrick

PY - 2025

Y1 - 2025

N2 - Storage integrity is essential to systems and applications that use untrusted storage (e.g., public clouds, end-user devices). However, known methods for achieving storage integrity either suffer from high (and often prohibitive) overheads or provide weak integrity guarantees. In this work, we demonstrate a hybrid approach to storage integrity that simultaneously reduces overhead while providing strong integrity guarantees. Our system, partially asynchronous integrity checking (PAC), allows disk write commitments to be deferred while still providing guarantees around read integrity. PAC delivers a 5.5 × throughput and latency improvement over the state of the art, and 85% of the throughput achieved by non-integrity-assuring approaches. In this way, we show that untrusted storage can be used for integrity-critical workloads without meaningfully sacrificing performance.

AB - Storage integrity is essential to systems and applications that use untrusted storage (e.g., public clouds, end-user devices). However, known methods for achieving storage integrity either suffer from high (and often prohibitive) overheads or provide weak integrity guarantees. In this work, we demonstrate a hybrid approach to storage integrity that simultaneously reduces overhead while providing strong integrity guarantees. Our system, partially asynchronous integrity checking (PAC), allows disk write commitments to be deferred while still providing guarantees around read integrity. PAC delivers a 5.5 × throughput and latency improvement over the state of the art, and 85% of the throughput achieved by non-integrity-assuring approaches. In this way, we show that untrusted storage can be used for integrity-critical workloads without meaningfully sacrificing performance.

UR - https://www.scopus.com/pages/publications/105009322866

UR - https://www.scopus.com/pages/publications/105009322866#tab=citedBy

U2 - 10.1109/SP61157.2025.00196

DO - 10.1109/SP61157.2025.00196

M3 - Conference contribution

AN - SCOPUS:105009322866

T3 - Proceedings - IEEE Symposium on Security and Privacy

SP - 3145

EP - 3160

BT - Proceedings - 46th IEEE Symposium on Security and Privacy, SP 2025

A2 - Blanton, Marina

A2 - Enck, William

A2 - Nita-Rotaru, Cristina

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 46th IEEE Symposium on Security and Privacy, SP 2025

Y2 - 12 May 2025 through 15 May 2025

ER -

Burke Q, Sheatsley R, Beugin Y, Pauley E, Hines O, Swift M et al. Efficient Storage Integrity in Adversarial Settings. In Blanton M, Enck W, Nita-Rotaru C, editors, Proceedings - 46th IEEE Symposium on Security and Privacy, SP 2025. Institute of Electrical and Electronics Engineers Inc. 2025. p. 3145-3160. (Proceedings - IEEE Symposium on Security and Privacy). doi: 10.1109/SP61157.2025.00196

Efficient Storage Integrity in Adversarial Settings

Abstract

Publication series

Conference

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this