Formal verification and security analysis of FastDFS using process algebra

IF 6 3区计算机科学 Q1 COMPUTER SCIENCE, INFORMATION SYSTEMS

Internet of Things Pub Date : 2025-02-27 DOI:10.1016/j.iot.2025.101543

Zhiru Hou, Huibiao Zhu

{"title":"Formal verification and security analysis of FastDFS using process algebra","authors":"Zhiru Hou, Huibiao Zhu","doi":"10.1016/j.iot.2025.101543","DOIUrl":null,"url":null,"abstract":"<div><div>FastDFS is a lightweight distributed file system that fully incorporates redundant backup, load balancing, linear expansion and other mechanisms. It is easy to build a high-performance file server cluster using FastDFS. Given the widespread usage of FastDFS, carrying out its analysis within a formal framework is highly significant. In this paper, we first model and analyze FastDFS using process algebra CSP. The three key functions that we concentrate on are uploading, downloading, and deleting files. Additionally, we pay attention to the security of FastDFS from a deterministic point of view. Utilizing the Process Analysis Toolkit (PAT) as a model checker, we employ the constructed model to validate several internal properties and security properties, including Deadlock Freedom, Divergence Freedom, Reachability, Robustness, Consistency, Eagerly Secure, Lazily Secure and Mixed Secure. Our final verification results demonstrate that the model effectively fulfills the internal properties, indicating that the system can well guarantee the management of files. However, it cannot cater to the security properties, which means the model implies some potential security vulnerabilities from a deterministic point of view.</div></div>","PeriodicalId":29968,"journal":{"name":"Internet of Things","volume":"31 ","pages":"Article 101543"},"PeriodicalIF":6.0000,"publicationDate":"2025-02-27","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Internet of Things","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S2542660525000563","RegionNum":3,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 0

Abstract

FastDFS is a lightweight distributed file system that fully incorporates redundant backup, load balancing, linear expansion and other mechanisms. It is easy to build a high-performance file server cluster using FastDFS. Given the widespread usage of FastDFS, carrying out its analysis within a formal framework is highly significant. In this paper, we first model and analyze FastDFS using process algebra CSP. The three key functions that we concentrate on are uploading, downloading, and deleting files. Additionally, we pay attention to the security of FastDFS from a deterministic point of view. Utilizing the Process Analysis Toolkit (PAT) as a model checker, we employ the constructed model to validate several internal properties and security properties, including Deadlock Freedom, Divergence Freedom, Reachability, Robustness, Consistency, Eagerly Secure, Lazily Secure and Mixed Secure. Our final verification results demonstrate that the model effectively fulfills the internal properties, indicating that the system can well guarantee the management of files. However, it cannot cater to the security properties, which means the model implies some potential security vulnerabilities from a deterministic point of view.

Abstract Image

查看原文本刊更多论文

利用进程代数对FastDFS进行形式化验证和安全性分析

FastDFS是一个轻量级的分布式文件系统，它完全集成了冗余备份、负载平衡、线性扩展等机制。使用FastDFS很容易构建高性能文件服务器集群。鉴于FastDFS的广泛使用，在正式框架内执行其分析是非常重要的。本文首先利用进程代数CSP对FastDFS进行建模和分析。我们关注的三个关键功能是上传、下载和删除文件。此外，我们从确定性的角度关注FastDFS的安全性。利用过程分析工具包（Process Analysis Toolkit， PAT）作为模型检查器，我们使用构建的模型来验证几个内部属性和安全属性，包括死锁自由、发散自由、可达性、鲁棒性、一致性、急切安全、惰性安全和混合安全。最终的验证结果表明，该模型有效地实现了内部属性，表明该系统可以很好地保证文件的管理。然而，它不能满足安全属性，这意味着从确定性的角度来看，该模型暗示了一些潜在的安全漏洞。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Internet of Things Multiple-

CiteScore

3.60

自引率

5.10%

发文量

115

审稿时长

37 days

期刊介绍： Internet of Things; Engineering Cyber Physical Human Systems is a comprehensive journal encouraging cross collaboration between researchers, engineers and practitioners in the field of IoT & Cyber Physical Human Systems. The journal offers a unique platform to exchange scientific information on the entire breadth of technology, science, and societal applications of the IoT. The journal will place a high priority on timely publication, and provide a home for high quality. Furthermore, IOT is interested in publishing topical Special Issues on any aspect of IOT.