Fermilab Computing Division

CS Document 5068-v2

Security in the CernVM File System and the Frontier Distributed Database Caching System

Document #:
CS-doc-5068-v2
Document type:
Conference
Submitted by:
Dave Dykstra
Updated by:
Dave Dykstra
Document Created:
25 Mar 2013, 13:31
Contents Revised:
18 Oct 2013, 10:21
Metadata Revised:
18 Oct 2013, 10:21
Viewable by:
  • Public document
Modifiable by:

Quick Links:
Latest Version

Other Versions:
CS-doc-5068-v1
11 Oct 2013, 16:50
CS-doc-5068-v0
31 May 2013, 15:19
Abstract:
Both the CernVM File System (CVMFS) and the Frontier Distributed Database
Caching System (Frontier) distribute centrally updated data worldwide for LHC experiments
using http proxy caches. Neither system provides privacy or access control on reading the
data, but both control access to updates of the data and can guarantee the authenticity and
integrity of the data transferred to clients over the internet. CVMFS has since its early days
required digital signatures and secure hashes on all distributed data, and recently Frontier has
added X.509-based authenticity and integrity checking. In this paper we detail and compare
the security models of CVMFS and Frontier.
Files in Document:
Associated with Events:
CHEP 2013 held on 14 Oct 2013 in Amsterdam, The Netherlands
Publication Information:
Acceptance type: poster
DocDB Home ]  [ Search ] [ Authors ] [ Events ] [ Topics ]

DocDB Version 8.8.9, contact Document Database Administrators