The International Conference for High Performance Computing, Networking, Storage, and Analysis
The International Conference for High Performance Computing, Networking, Storage, and Analysis
Workshop: 4th International Workshop on Cyber Security in High Performance Computing (S-HPC)
Authors: Glenn Song and Michael Breitenfeld (The HDF Group) and Suren Byna (Ohio State University)
Abstract: HDF5 is a popular data management and I/O library used by numerous scientific and industry applications. HDF5 in the recent years pluggable extensions to enhance HDF5’s functionality to improve performance and to utilize underlying hardware and file systems. Plugins play a crucial role in adding custom features, such as compression filters, virtual file drivers (VFDs), and virtual object layer (VOL) connectors, without requiring extensive changes to the source code or modifications to the main library. While the plugin capability gives power to extend HDF5, plugins could be misused for malicious routing of HDF5 calls. To improve the security of HDF5 systematically, in this study, we explore the option of digitally signing plugins. This would help ensure the authenticity and integrity of any plugins that users may use. We discuss a few implementation scenarios in HDF5 and assess the accuracy and overhead associated with the plugin verification process.
Back to 4th International Workshop on Cyber Security in High Performance Computing (S-HPC) Archive Listing Back to Full Workshop Archive Listing