Mobile certifying cryptographic file system

Abstract

This thesis describes the design and implementation of a Mobile Certifying Cryptographic File System (MCCFS), which proposes a solution that allows the mobile user access to remote resources from different locations using either the same device or nearby devices. The MCCFS is aimed to support the host mobility and user mobility in a secure environment. We separated the key management from the notion of administrative realm based on two factors authentication and certificate-based access control lists. Mobile users can certify themselves in remote domains freely. MCCFS provided transparent encryption support for accessing files not only in local machine but also across Internet on HTTP or FTP servers. Files are encrypted when they are transferred over the network and when saved on untrusted machines. The MCCFS affords mobile users more flexibility in accessing and sharing their files and does not require the assistance of the local or remote realm's system administrator.