Accession Number : ADA619785

Title :   Git as an Encrypted Distributed Version Control System

Descriptive Note : Master's thesis

Corporate Author : AIR FORCE INSTITUTE OF TECHNOLOGY WRIGHT-PATTERSON AFB OH GRADUATE SCHOOL OF ENGINEERING AND MANAGEMENT

Personal Author(s) : Shirey, Russell G

PDF Url : ADA619785

Report Date : Mar 2015

Pagination or Media Count : 126

Abstract : This thesis develops and presents a secure Git implementation, Git Virtual Vault (GV2), for users of Git to work on sensitive projects with repositories located in unsecure distributed environments, such as in cloud computing. This scenario is common within the Department of Defense, as much work is of a sensitive nature. In order to provide security to Git, additional functionality is added for confidentiality and integrity protection. This thesis examines existing Git encryption implementations and baselines their performance compared to unencrypted Git. Real-world Git repositories are examined to characterize typical Git usage and determine if the existing Git encryption implementations are capable of efficient performance with regards to typical Git usage. This research shows that the existing Git encryption implementations do not provide efficient performance. This research develops an improved secure Git implementation, GV2, with transparent authenticated encryption. The fundamental contribution of this research is developing GV2 to perform Git garbage collection on plaintext data before encrypting the data. The result is a secure Git implementation that is transparent to the user with only a minor performance penalty, compared to unencrypted Git.

Descriptors :   *CONTROL SYSTEMS, *CRYPTOGRAPHY, *DATA PROCESSING SECURITY, BASE LINES, DISTRIBUTION, EFFICIENCY, ENVIRONMENTS, INTERNET, PROTECTION, SCENARIOS, SECURITY, SENSITIVITY, STORAGE, THESES, TRANSPARENCE, USER NEEDS

Subject Categories : Computer Systems Management and Standards

Distribution Statement : APPROVED FOR PUBLIC RELEASE