Re: [patch] cgd

To: "Roland C. Dowdeswell" <elric%imrryr.org@localhost>
Subject: Re: [patch] cgd
From: Steven Bellovin <smb%cs.columbia.edu@localhost>
Date: Thu, 2 Dec 2010 07:13:24 -0500

>> 
> 
> I'm of the opinion that integrity checking best belongs in the file
> system layer because it necessarily involves increasing the size
> of the data which for a pseudo-disk is very expensive indeed.  If
> you decide to break a single disk write into multiple writes then
> you must also necessarily maintain state on the disk of what you
> are doing in case you crash in the midst of a write.  This would
> involve turning each single sector write into at least three separate
> writes.  At the file system layer, you have no such problem and
> can preserve performance while also ensuring integrity.  (Unless
> you can present 500 byte sectors to the rest of the kernel.)

I'm fond of the scheme described in 
http://www.cs.unc.edu/~reiter/papers/2005/NDSS.pdf
(NDSS 2005).

                --Steve Bellovin, http://www.cs.columbia.edu/~smb

References:
- Re: [patch] cgd
  - From: Roland C. Dowdeswell
- Re: Re: [patch] cgd
  - From: Taylor R Campbell
- Re: Re: [patch] cgd
  - From: Roland C. Dowdeswell

Prev by Date: Re: Re: [patch] cgd
Next by Date: Re: Re: [patch] cgd
Previous by Thread: Re: Re: [patch] cgd
Indexes:

Home | Main Index | Thread Index | Old Index