{"created":"2025-01-19T01:17:49.693578+00:00","metadata":{"_oai":{"id":"oai:ipsj.ixsq.nii.ac.jp:00217330","sets":["1164:1867:10898:10899"]},"path":["10899"],"owner":"44499","recid":"217330","title":["Intel SGXを利用したクラウド環境から保護された暗号化共有ファイルシステム"],"pubdate":{"attribute_name":"公開日","attribute_value":"2022-03-07"},"_buckets":{"deposit":"4cd6f9f0-2740-4f09-879d-4787727d4f25"},"_deposit":{"id":"217330","pid":{"type":"depid","value":"217330","revision_id":0},"owners":[44499],"status":"published","created_by":44499},"item_title":"Intel SGXを利用したクラウド環境から保護された暗号化共有ファイルシステム","author_link":["562960","562961"],"item_titles":{"attribute_name":"タイトル","attribute_value_mlt":[{"subitem_title":"Intel SGXを利用したクラウド環境から保護された暗号化共有ファイルシステム"},{"subitem_title":"Encrypted and shared file system protected from cloud environments using Intel SGX","subitem_title_language":"en"}]},"item_keyword":{"attribute_name":"キーワード","attribute_value_mlt":[{"subitem_subject":"セキュリティ","subitem_subject_scheme":"Other"}]},"item_type_id":"4","publish_date":"2022-03-07","item_4_text_3":{"attribute_name":"著者所属","attribute_value_mlt":[{"subitem_text_value":"法政大学大学院情報科学研究科"},{"subitem_text_value":"法政大学大学院情報科学研究科"}]},"item_4_text_4":{"attribute_name":"著者所属(英)","attribute_value_mlt":[{"subitem_text_value":"Graduate School of Computer and Information Sciences, Hosei University","subitem_text_language":"en"},{"subitem_text_value":"Graduate School of Computer and Information Sciences, Hosei University","subitem_text_language":"en"}]},"item_language":{"attribute_name":"言語","attribute_value_mlt":[{"subitem_language":"jpn"}]},"item_publisher":{"attribute_name":"出版者","attribute_value_mlt":[{"subitem_publisher":"情報処理学会","subitem_publisher_language":"ja"}]},"publish_status":"0","weko_shared_id":-1,"item_file_price":{"attribute_name":"Billing file","attribute_type":"file","attribute_value_mlt":[{"url":{"url":"https://ipsj.ixsq.nii.ac.jp/record/217330/files/IPSJ-OS22154008.pdf","label":"IPSJ-OS22154008.pdf"},"date":[{"dateType":"Available","dateValue":"2024-03-07"}],"format":"application/pdf","billing":["billing_file"],"filename":"IPSJ-OS22154008.pdf","filesize":[{"value":"1.0 MB"}],"mimetype":"application/pdf","priceinfo":[{"tax":["include_tax"],"price":"660","billingrole":"5"},{"tax":["include_tax"],"price":"330","billingrole":"6"},{"tax":["include_tax"],"price":"0","billingrole":"11"},{"tax":["include_tax"],"price":"0","billingrole":"44"}],"accessrole":"open_date","version_id":"06ed51aa-e05b-4aa6-9103-ebd2e53a1190","displaytype":"detail","licensetype":"license_note","license_note":"Copyright (c) 2022 by the Information Processing Society of Japan"}]},"item_4_creator_5":{"attribute_name":"著者名","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"小林, 惇"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"廣津, 登志夫"}],"nameIdentifiers":[{}]}]},"item_4_source_id_9":{"attribute_name":"書誌レコードID","attribute_value_mlt":[{"subitem_source_identifier":"AN10444176","subitem_source_identifier_type":"NCID"}]},"item_4_textarea_12":{"attribute_name":"Notice","attribute_value_mlt":[{"subitem_textarea_value":"SIG Technical Reports are nonrefereed and hence may later appear in any journals, conferences, symposia, etc."}]},"item_resource_type":{"attribute_name":"資源タイプ","attribute_value_mlt":[{"resourceuri":"http://purl.org/coar/resource_type/c_18gh","resourcetype":"technical report"}]},"item_4_source_id_11":{"attribute_name":"ISSN","attribute_value_mlt":[{"subitem_source_identifier":"2188-8795","subitem_source_identifier_type":"ISSN"}]},"item_4_description_7":{"attribute_name":"論文抄録","attribute_value_mlt":[{"subitem_description":"クラウドサービスは現代の ICT 基盤として広く普及している．クラウドサービスが提供する仮想マシンのコンポーネントは事業者の所有している物理マシンにホストされており，悪意のあるユーザーにアクセスされるとこれらのコンポーネントにアクセスすることが可能である．そこで，クラウドサービス上でセンシティブな情報を扱うにはデータの暗号化や実行環境の保護が必要である．このようなクラウドサービス上でアプリケーション等を安全に実行できる技術として TEE がある．TEE はホスト環境から隔離された実行環境を提供し，その内部でのデータやプログラムの処理を保護する．Intel SGX はエンクレーブと呼ばれる隔離実行環境を生成して，その内部で実行されるプログラムの整合性と実行環境の保護を行う．本研究では Intel SGX が提供するメモリ保護機能を応用して，クラウドプラットフォーム上でも安全に実行可能で任意のクライアントから利用可能な暗号化共有ファイルシステムを提案する．","subitem_description_type":"Other"}]},"item_4_description_8":{"attribute_name":"論文抄録(英)","attribute_value_mlt":[{"subitem_description":"The platform of cloud services is a system consisting of huge physical machines owned by cloud service providers. Therefore, users of cloud services need to trust the cloud service provider to handle data on the cloud service or handle information protected by encryption or other methods. However, in the former case, there are incidents of privacy violation by cloud service providers, and in the latter case, conventional encryption methods cannot process encrypted data, which limits its functionality and causes delays in encryption and decryption. In this research, we propose a protected shared file system that uses the cloud service as storage by using Intel SGX, a type of TEE technology. Intel SGX provides an isolated execution environment by deploying an encrypted memory area called an Enclave. Only encryption-protected data and Enclave-protected applications exist on the cloud service, and the file system can be mounted by the local environment by the formal owner. In addition, it can be mounted in multiple local environments and other SGX applications, and treated like shared storage.","subitem_description_type":"Other"}]},"item_4_biblio_info_10":{"attribute_name":"書誌情報","attribute_value_mlt":[{"bibliographicPageEnd":"8","bibliographic_titles":[{"bibliographic_title":"研究報告システムソフトウェアとオペレーティング・システム（OS）"}],"bibliographicPageStart":"1","bibliographicIssueDates":{"bibliographicIssueDate":"2022-03-07","bibliographicIssueDateType":"Issued"},"bibliographicIssueNumber":"8","bibliographicVolumeNumber":"2022-OS-154"}]},"relation_version_is_last":true,"weko_creator_id":"44499"},"id":217330,"updated":"2025-01-19T15:32:14.271904+00:00","links":{}}