Forward-Looking Encryption Applied to Low-Latency File Systems
Abstract
As storage devices evolve, the time spent by software to read or write data becomes increasingly relevant. This characteristic is accentuated in the context of cryptographic file systems, where the software layer is in charge of performing cryptographic operations. Seeking to address this problem, this work proposes a solution that hides the latency of cryptographic operations in low-latency environments through ahead-of-time encryption, taking advantage of low-level interfaces of the Operating System kernel.
References
Axboe, J. (2025). Flexible io tester (fio). [link].
Dworkin, M. J., Barker, E. B., Nechvatal, J. R., Foti, J., Bassham, L. E., Roback, E., and Dray Jr, J. F. (2001). Advanced encryption standard (AES).
Eduardo, V., de Bona, L. C. E., and Zola, W. M. N. (2019). Speculative encryption on GPU applied to cryptographic file systems. In 17th USENIX Conference on File and Storage Technologies (FAST 19), pages 93–105, Boston, MA. USENIX Association.
Gough, V. (2017). EncFS: An encrypted filesystem for FUSE.
Gueron, S. (2010). Intel advanced encryption standard (AES) new instructions set.
Kernel Development Community (2025a). ext4 data structures and algorithms. [link].
Kernel Development Community (2025b). Filesystem-level encryption (fscrypt). [link].
Lipmaa, H., Rogaway, P., and Wagner, D. (2000). Comments to NIST concerning AES modes of operations: CTR-mode encryption. In First NIST Workshop on Modes of Operation, volume 39. Citeseer. MD.
Liu, S., Kolli, A., Ren, J., and Khan, S. (2018). Crash consistency in encrypted non-volatile main memory systems. In 2018 IEEE International Symposium on High Performance Computer Architecture (HPCA), pages 310–323. IEEE.
Lomont, C. (2011). Introduction to Intel advanced vector extensions. Intel white paper, 23.
Mueller, S. and Vasut, M. (2025). Linux kernel crypto API. [link].
Pfeiffer, J. J. (2018). Writing a fuse filesystem: a tutorial. [link].
Vangoor, B. K. R., Tarasov, V., and Zadok, E. (2017). To FUSE or not to FUSE: Performance of User-Space file systems. In 15th USENIX Conference on File and Storage Technologies (FAST 17), pages 59–72, Santa Clara, CA. USENIX Association.
Zhong, Y., Li, H., Wu, Y. J., Zarkadas, I., Tao, J., Mesterhazy, E., Makris, M., Yang, J., Tai, A., Stutsman, R., and Cidon, A. (2022). XRP: In-Kernel storage functions with eBPF. In 16th USENIX Symposium on Operating Systems Design and Implementation (OSDI 22), pages 375–393, Carlsbad, CA. USENIX Association.
Zola, W. M. N. and De Bona, L. C. E. (2012). Parallel speculative encryption of multiple AES contexts on GPUs. In 2012 Innovative Parallel Computing (InPar), pages 1–9. IEEE.
Dworkin, M. J., Barker, E. B., Nechvatal, J. R., Foti, J., Bassham, L. E., Roback, E., and Dray Jr, J. F. (2001). Advanced encryption standard (AES).
Eduardo, V., de Bona, L. C. E., and Zola, W. M. N. (2019). Speculative encryption on GPU applied to cryptographic file systems. In 17th USENIX Conference on File and Storage Technologies (FAST 19), pages 93–105, Boston, MA. USENIX Association.
Gough, V. (2017). EncFS: An encrypted filesystem for FUSE.
Gueron, S. (2010). Intel advanced encryption standard (AES) new instructions set.
Kernel Development Community (2025a). ext4 data structures and algorithms. [link].
Kernel Development Community (2025b). Filesystem-level encryption (fscrypt). [link].
Lipmaa, H., Rogaway, P., and Wagner, D. (2000). Comments to NIST concerning AES modes of operations: CTR-mode encryption. In First NIST Workshop on Modes of Operation, volume 39. Citeseer. MD.
Liu, S., Kolli, A., Ren, J., and Khan, S. (2018). Crash consistency in encrypted non-volatile main memory systems. In 2018 IEEE International Symposium on High Performance Computer Architecture (HPCA), pages 310–323. IEEE.
Lomont, C. (2011). Introduction to Intel advanced vector extensions. Intel white paper, 23.
Mueller, S. and Vasut, M. (2025). Linux kernel crypto API. [link].
Pfeiffer, J. J. (2018). Writing a fuse filesystem: a tutorial. [link].
Vangoor, B. K. R., Tarasov, V., and Zadok, E. (2017). To FUSE or not to FUSE: Performance of User-Space file systems. In 15th USENIX Conference on File and Storage Technologies (FAST 17), pages 59–72, Santa Clara, CA. USENIX Association.
Zhong, Y., Li, H., Wu, Y. J., Zarkadas, I., Tao, J., Mesterhazy, E., Makris, M., Yang, J., Tai, A., Stutsman, R., and Cidon, A. (2022). XRP: In-Kernel storage functions with eBPF. In 16th USENIX Symposium on Operating Systems Design and Implementation (OSDI 22), pages 375–393, Carlsbad, CA. USENIX Association.
Zola, W. M. N. and De Bona, L. C. E. (2012). Parallel speculative encryption of multiple AES contexts on GPUs. In 2012 Innovative Parallel Computing (InPar), pages 1–9. IEEE.
Published
2025-07-20
How to Cite
CORREIA, Jorge Pires; ZOLA, Wagner Machado N..
Forward-Looking Encryption Applied to Low-Latency File Systems. In: INTEGRATED SOFTWARE AND HARDWARE SEMINAR (SEMISH), 52. , 2025, Maceió/AL.
Anais [...].
Porto Alegre: Sociedade Brasileira de Computação,
2025
.
p. 369-380.
ISSN 2595-6205.
DOI: https://doi.org/10.5753/semish.2025.8919.
