OIDM: An Intrusion Detection Mechanism for Object-based Storage System

As the object-based storage device (OSD) protocol emerges as the next generation storage technology, its security has received a great deal of attentions. Object-based storage security mechanism is credential-based. It doesn't consider intrusion threat. Since OSD can observe all the changes to the object data and attributes, it can spot several types of intrusion. In this paper, we study how intrusion can be detected at object level in OBSS environment. We propose a novel object-based intrusion detection mechanism (OIDM) for protecting OBSS from abuse. In particular we present an OIDM prototype, embedded in current OSD reference implementation, to demonstrate its feasibility

[1]  Stefan Axelsson Research in Intrusion-Detection Systems: A Survey , 1998 .

[2]  Mohammad Banikazemi,et al.  Storage-based intrusion detection for storage area networks (SANs) , 2005, 22nd IEEE / 13th NASA Goddard Conference on Mass Storage Systems and Technologies (MSST'05).

[3]  Gregory R. Ganger,et al.  Object-based storage , 2003, IEEE Commun. Mag..

[4]  Craig A. N. Soules,et al.  Self-securing storage: protecting data in compromised systems , 2000, Foundations of Intrusion Tolerant Systems, 2003 [Organically Assured and Survivable Information Systems].

[5]  Eugene H. Spafford,et al.  The design and implementation of tripwire: a file system integrity checker , 1994, CCS '94.

[6]  Jonathan M. Smith,et al.  USENIX Association , 2000 .

[7]  Craig A. N. Soules,et al.  Storage-based Intrusion Detection: Watching Storage Activity for Suspicious Behavior , 2003, USENIX Security Symposium.

[8]  Garth A. Gibson,et al.  A Case for Network-Attached Secure Disks, , 1996 .

[9]  Gregory R. Ganger,et al.  On the Feasibility of Intrusion Detection Inside Workstation Disks , 2003 .

[10]  Kanishk Jain Object-based Storage , 2022 .