Comments (2)
netheril96
commented on May 30, 2024
Other crypto filesystems do not defend against the attack of replacement of a certain block with its old revision. The meta file ensures the integrity of the whole file and protects against such attacks. If you are not that paranoid, you can just create securefs format v4, which has substantially lower overhead.
I don't understand your last paragraph. The sizes of the meta file is a fraction of the content file, so if you have to redownload meta files every time, what do you do with the much larger content files?
As for the block size, there is no security implications of enlarging it. The only downside is that even when you request a read/write of very small size, securefs still have to read/write and decrypt/encrypt a whole block, so the larger the block size, the more wasted computation.
from securefs.
Vesnyx
commented on May 30, 2024
Perhaps it was badly worded. What happens is that Google's File Stream will download the meta file when opening the encrypted files via Windows Explorer, without opening the content. My assumption is that the data necessary for it to populate the file's metadata are present in the .meta file, hence the load.
In regards to storage, it means that even browsing through the folders with large files will download multiple meta files, even if the content files are never opened.
In any case, I can see the benefit of this method for encryption and the question has been answered, so I'll close the issue. Thanks!
from securefs.
Related Issues (20)
- Issue while compiling on raspberry pi 4b or cross-compile HOT 1
- How to deal with long file names HOT 2
- 希望能帮助完成一些工作 HOT 4
- brew install failing on MBP M2 Apple Silicon HOT 2
- Add the option to NOT encrypt filenames HOT 2
- Failing to compile on FreeBSD 13.2 HOT 23
- CryptoppConfig.cmake not found HOT 12
- Use with SFTP HOT 15
- I Forgot the password HOT 3
- followed build instructions, still getting "--vcpkg_root must point to a directory." HOT 3
- Crash. libc++abi: terminating due to uncaught exception... HOT 3
- How to build on Windows? HOT 16
- Destination Path Too Long HOT 5
- Has securefs been proven or analyzed for security? HOT 2
- 有关format 3存储时间戳的作用问题 HOT 2
- Consider not using the string "securefs" in metafiles HOT 3
- Install on Windows HOT 7
- mount in daemon mode like gocryptfs HOT 1
- Perf issue on external usb-c ssd HOT 12
- failed to fully extract large tar file HOT 9
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from securefs.