{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,19]],"date-time":"2025-06-19T04:09:29Z","timestamp":1750306169040,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":61,"publisher":"ACM","license":[{"start":{"date-parts":[[2016,10,5]],"date-time":"2016-10-05T00:00:00Z","timestamp":1475625600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2016,10,5]]},"DOI":"10.1145\/2987550.2987581","type":"proceedings-article","created":{"date-parts":[[2016,9,21]],"date-time":"2016-09-21T12:42:53Z","timestamp":1474461773000},"page":"251-264","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":2,"title":["Tutamen"],"prefix":"10.1145","author":[{"given":"Andy","family":"Sayler","sequence":"first","affiliation":[{"name":"University of Colorado, Boulder"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Taylor","family":"Andrews","sequence":"additional","affiliation":[{"name":"University of Colorado, Boulder"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Matt","family":"Monaco","sequence":"additional","affiliation":[{"name":"University of Colorado, Boulder"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Dirk","family":"Grunwald","sequence":"additional","affiliation":[{"name":"University of Colorado, Boulder"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2016,10,5]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"AgileBits. 1Password. http:\/\/agilebits.com\/onepassword.  AgileBits. 1Password. http:\/\/agilebits.com\/onepassword."},{"key":"e_1_3_2_1_2_1","unstructured":"Amazon.com Inc. Elastic Cloud Compute. http:\/\/aws.amazon.com\/ec2.  Amazon.com Inc. Elastic Cloud Compute. http:\/\/aws.amazon.com\/ec2."},{"key":"e_1_3_2_1_3_1","volume-title":"FuseBox source. https:\/\/github.com\/taylorjandrews\/FuseBox","author":"Andrews T.","year":"2016","unstructured":"Andrews , T. FuseBox source. https:\/\/github.com\/taylorjandrews\/FuseBox , 2016 . Andrews, T. FuseBox source. https:\/\/github.com\/taylorjandrews\/FuseBox, 2016."},{"key":"e_1_3_2_1_4_1","unstructured":"Apache Software Foundation. Apache HTTP server project. https:\/\/httpd.apache.org\/.  Apache Software Foundation. Apache HTTP server project. https:\/\/httpd.apache.org\/."},{"key":"e_1_3_2_1_5_1","unstructured":"Bellard F. and Others. QEMU: Open source process emulator. http:\/\/wiki.qemu.org\/Main_Page.  Bellard F. and Others. QEMU: Open source process emulator. http:\/\/wiki.qemu.org\/Main_Page."},{"key":"e_1_3_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.1145\/1966445.1966449"},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1145\/168588.168590"},{"key":"e_1_3_2_1_8_1","first-page":"1174","author":"Blaze M.","year":"1996","unstructured":"Blaze , M. Oblivious key escrow. Information Hiding 1174 ( 1996 ). Blaze, M. Oblivious key escrow. Information Hiding 1174 (1996).","journal-title":"Information Hiding"},{"key":"e_1_3_2_1_9_1","unstructured":"Broz M. and Others. dm-crypt. http:\/\/code.google.com\/p\/cryptsetup\/wiki\/DMCrypt.  Broz M. and Others. dm-crypt. http:\/\/code.google.com\/p\/cryptsetup\/wiki\/DMCrypt."},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2010.194"},{"key":"e_1_3_2_1_11_1","first-page":"199","volume-title":"USENIX Annual Technical Conference","author":"Cattaneo G.","year":"2001","unstructured":"Cattaneo , G. , Catuogno , L. , Sorbo , A. D. , and Persiano , P . The design and implementation of a transparent cryptographic file system for UNIX . In USENIX Annual Technical Conference ( 2001 ), pp. 199 -- 212 . Cattaneo, G., Catuogno, L., Sorbo, A. D., and Persiano, P. The design and implementation of a transparent cryptographic file system for UNIX. In USENIX Annual Technical Conference (2001), pp. 199--212."},{"key":"e_1_3_2_1_12_1","unstructured":"Cooper D. Santesson S. Farrell S. Boeyen S. Housley R. and Polk W. RFC 5280: Internet X.509 public key infrastructure certificate and certificate revocation list (CRL) profile. Tech. rep. Internet Engineering Task Force.  Cooper D. Santesson S. Farrell S. Boeyen S. Housley R. and Polk W. RFC 5280: Internet X.509 public key infrastructure certificate and certificate revocation list (CRL) profile. Tech. rep. Internet Engineering Task Force."},{"key":"e_1_3_2_1_13_1","unstructured":"Crockford D. Introducing JSON. http:\/\/www.json.org.  Crockford D. Introducing JSON. http:\/\/www.json.org."},{"key":"e_1_3_2_1_14_1","volume-title":"AES proposal: Rijndael. Tech. rep","author":"Daemen J.","year":"1999","unstructured":"Daemen , J. , and Rijmen , V . AES proposal: Rijndael. Tech. rep ., 1999 . Daemen, J., and Rijmen, V. AES proposal: Rijndael. Tech. rep., 1999."},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1145\/227234.227239"},{"key":"e_1_3_2_1_16_1","volume-title":"Internet Engineering Task Force","author":"Dierks T.","year":"2008","unstructured":"Dierks , T. , and Rescorla , E . RFC 5246: The transport layer security (TLS) protocol - version 1.2. Tech. rep ., Internet Engineering Task Force , 2008 . Dierks, T., and Rescorla, E. RFC 5246: The transport layer security (TLS) protocol - version 1.2. Tech. rep., Internet Engineering Task Force, 2008."},{"key":"e_1_3_2_1_17_1","unstructured":"Dropbox Inc. Dropbox. http:\/\/www.dropbox.com.  Dropbox Inc. Dropbox. http:\/\/www.dropbox.com."},{"key":"e_1_3_2_1_18_1","volume-title":"PEP 3333 -- Python web server gateway interface v1.0.1. Tech. rep","author":"Eby P.","year":"2010","unstructured":"Eby , P. PEP 3333 -- Python web server gateway interface v1.0.1. Tech. rep ., Python Software Foundation , 2010 . Eby, P. PEP 3333 -- Python web server gateway interface v1.0.1. Tech. rep., Python Software Foundation, 2010."},{"key":"e_1_3_2_1_20_1","unstructured":"Fruhwirth C. LUKS. https:\/\/code.google.com\/p\/cryptsetup.  Fruhwirth C. LUKS. https:\/\/code.google.com\/p\/cryptsetup."},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1145\/1966445.1966447"},{"key":"e_1_3_2_1_22_1","first-page":"0121481","author":"Goh E.-J.","year":"2003","unstructured":"Goh , E.-J. , Shacham , H. , Modadugu , N. , and Boneh , D. SiRi US: Securing remote untrusted storage. NDSS , 0121481 ( 2003 ). Goh, E.-J., Shacham, H., Modadugu, N., and Boneh, D. SiRiUS: Securing remote untrusted storage. NDSS, 0121481 (2003).","journal-title":"NDSS"},{"key":"e_1_3_2_1_23_1","unstructured":"Google Inc. Drive. http:\/\/drive.google.com.  Google Inc. Drive. http:\/\/drive.google.com."},{"key":"e_1_3_2_1_24_1","first-page":"201","volume-title":"Ottawa Linux Symposium","author":"Halcrow M. A.","year":"2005","unstructured":"Halcrow , M. A. e Cryptfs : An enterprise-class cryptographic filesystem for Linux . In Ottawa Linux Symposium ( 2005 ), pp. 201 -- 218 . Halcrow, M. A. eCryptfs: An enterprise-class cryptographic filesystem for Linux. In Ottawa Linux Symposium (2005), pp. 201--218."},{"key":"e_1_3_2_1_25_1","unstructured":"HashiCorp. Vault: A tool for managing secrets. https:\/\/www.vaultproject.io\/.  HashiCorp. Vault: A tool for managing secrets. https:\/\/www.vaultproject.io\/."},{"key":"e_1_3_2_1_26_1","doi-asserted-by":"publisher","DOI":"10.1145\/1063979.1064000"},{"key":"e_1_3_2_1_27_1","volume-title":"Internet Engineering Task Force","author":"Jones M.","year":"2015","unstructured":"Jones , M. , Bradles , J. , and Sakimura , N . RFC 7515: JSON web signature (JWS). Tech. rep ., Internet Engineering Task Force , May 2015 . Jones, M., Bradles, J., and Sakimura, N. RFC 7515: JSON web signature (JWS). Tech. rep., Internet Engineering Task Force, May 2015."},{"key":"e_1_3_2_1_28_1","volume-title":"Internet Engineering Task Force","author":"Jones M.","year":"2015","unstructured":"Jones , M. , Bradles , J. , and Sakimura , N . RFC 7519: JSON web token (JWT). Tech. rep ., Internet Engineering Task Force , May 2015 . Jones, M., Bradles, J., and Sakimura, N. RFC 7519: JSON web token (JWT). Tech. rep., Internet Engineering Task Force, May 2015."},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.5555\/1090694.1090698"},{"key":"e_1_3_2_1_30_1","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"crossref","first-page":"136","DOI":"10.1007\/3-540-48329-2_12","volume-title":"Advances in Cryptology-CRYPTO'93","author":"Krawczyk H.","year":"1994","unstructured":"Krawczyk , H. Secret sharing made short . In Advances in Cryptology-CRYPTO'93 , D. R. Stinson, Ed., vol. 773 of Lecture Notes in Computer Science . Springer Berlin Heidelberg , Berlin, Heidelberg , July 1994 , pp. 136 -- 146 . Krawczyk, H. Secret sharing made short. In Advances in Cryptology-CRYPTO'93, D. R. Stinson, Ed., vol. 773 of Lecture Notes in Computer Science. Springer Berlin Heidelberg, Berlin, Heidelberg, July 1994, pp. 136--146."},{"key":"e_1_3_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.1145\/356989.357007"},{"key":"e_1_3_2_1_32_1","unstructured":"LastPass. LastPass password manager. https:\/\/lastpass.com.  LastPass. LastPass password manager. https:\/\/lastpass.com."},{"key":"e_1_3_2_1_33_1","volume-title":"Internet Engineering Task Force","author":"Laurie B.","year":"2013","unstructured":"Laurie , B. , Langley , A. , and Kasper , E . RFC 6962: Certificate transparency. Tech. rep ., Internet Engineering Task Force , 2013 . Laurie, B., Langley, A., and Kasper, E. RFC 6962: Certificate transparency. Tech. rep., Internet Engineering Task Force, 2013."},{"key":"e_1_3_2_1_34_1","volume-title":"Internet Engineering Task Force","author":"Leach P.","year":"2005","unstructured":"Leach , P. , Mealling , M. , and Salz , R . RFC 4122: A universally unique identifier (UUID) URN namespace. Tech. rep ., Internet Engineering Task Force , 2005 . Leach, P., Mealling, M., and Salz, R. RFC 4122: A universally unique identifier (UUID) URN namespace. Tech. rep., Internet Engineering Task Force, 2005."},{"key":"e_1_3_2_1_35_1","volume-title":"ICN 2012, The Eleventh International Conference on Networks","author":"Leandro M. A. P.","year":"2012","unstructured":"Leandro , M. A. P. , Nascimento , T. J. , dos Santos , D. R. , and Westphall , C. B. C. M. Multi-tenancy authorization system with federated identity for cloud-based environments using Shibboleth . ICN 2012, The Eleventh International Conference on Networks ( 2012 ), 88--93. Leandro, M. A. P., Nascimento, T. J., dos Santos, D. R., and Westphall, C. B. C. M. Multi-tenancy authorization system with federated identity for cloud-based environments using Shibboleth. ICN 2012, The Eleventh International Conference on Networks (2012), 88--93."},{"key":"e_1_3_2_1_36_1","unstructured":"Lyft. Confidant: Your secret keeper. https:\/\/lyft.github.io\/confidant\/.  Lyft. Confidant: Your secret keeper. https:\/\/lyft.github.io\/confidant\/."},{"key":"e_1_3_2_1_37_1","doi-asserted-by":"publisher","DOI":"10.1145\/2063509.2063512"},{"key":"e_1_3_2_1_38_1","volume-title":"Tutamen ask-password source. https:\/\/github.com\/asayler\/tutamen-ask-password\/","author":"Monaco M.","year":"2016","unstructured":"Monaco , M. Tutamen ask-password source. https:\/\/github.com\/asayler\/tutamen-ask-password\/ , 2016 . Monaco, M. Tutamen ask-password source. https:\/\/github.com\/asayler\/tutamen-ask-password\/, 2016."},{"key":"e_1_3_2_1_39_1","volume-title":"Tutamen golang library source. https:\/\/github.com\/asayler\/tutamen-golang","author":"Monaco M.","year":"2016","unstructured":"Monaco , M. Tutamen golang library source. https:\/\/github.com\/asayler\/tutamen-golang , 2016 . Monaco, M. Tutamen golang library source. https:\/\/github.com\/asayler\/tutamen-golang, 2016."},{"key":"e_1_3_2_1_41_1","doi-asserted-by":"publisher","DOI":"10.1109\/35.312841"},{"key":"e_1_3_2_1_42_1","unstructured":"Opscode. Chef. https:\/\/www.opscode.com\/chef.  Opscode. Chef. https:\/\/www.opscode.com\/chef."},{"key":"e_1_3_2_1_43_1","unstructured":"Padilla J. and Lindsay J. pyJWT: A Python implementation of RFC 7519. https:\/\/github.com\/jpadilla\/pyjwt.  Padilla J. and Lindsay J. pyJWT: A Python implementation of RFC 7519. https:\/\/github.com\/jpadilla\/pyjwt."},{"key":"e_1_3_2_1_44_1","unstructured":"Puppet Labs. Puppet. http:\/\/puppetlabs.com.  Puppet Labs. Puppet. http:\/\/puppetlabs.com."},{"key":"e_1_3_2_1_45_1","unstructured":"Redis Team. Redis: Remote dictionary server. http:\/\/redis.io\/.  Redis Team. Redis: Remote dictionary server. http:\/\/redis.io\/."},{"key":"e_1_3_2_1_46_1","unstructured":"Ronacher A. Flask: Web development one drop at a time. http:\/\/flask.pocoo.org\/.  Ronacher A. Flask: Web development one drop at a time. http:\/\/flask.pocoo.org\/."},{"key":"e_1_3_2_1_47_1","doi-asserted-by":"publisher","DOI":"10.1145\/238168.238177"},{"key":"e_1_3_2_1_48_1","volume-title":"DC","author":"Sayler A.","year":"2016","unstructured":"Sayler , A. Categorizing , analyzing , and managing third party trust. In TPRC 44 (Washington , DC , September 2016 ), SSRN. Sayler, A. Categorizing, analyzing, and managing third party trust. In TPRC 44 (Washington, DC, September 2016), SSRN."},{"key":"e_1_3_2_1_49_1","volume-title":"pytutamen client source. https:\/\/github.com\/asayler\/tutamen-pytutamen","author":"Sayler A.","year":"2016","unstructured":"Sayler , A. pytutamen client source. https:\/\/github.com\/asayler\/tutamen-pytutamen , 2016 . Sayler, A. pytutamen client source. https:\/\/github.com\/asayler\/tutamen-pytutamen, 2016."},{"key":"e_1_3_2_1_50_1","volume-title":"pytutamen server source. https:\/\/github.com\/asayler\/tutamen-pytutamen_server","author":"Sayler A.","year":"2016","unstructured":"Sayler , A. pytutamen server source. https:\/\/github.com\/asayler\/tutamen-pytutamen_server , 2016 . Sayler, A. pytutamen server source. https:\/\/github.com\/asayler\/tutamen-pytutamen_server, 2016."},{"key":"e_1_3_2_1_52_1","volume-title":"Tutamen access control API source. https:\/\/github.com\/asayler\/tutamen-api_accesscontrol","author":"Sayler A.","year":"2016","unstructured":"Sayler , A. Tutamen access control API source. https:\/\/github.com\/asayler\/tutamen-api_accesscontrol , 2016 . Sayler, A. Tutamen access control API source. https:\/\/github.com\/asayler\/tutamen-api_accesscontrol, 2016."},{"key":"e_1_3_2_1_53_1","volume-title":"Tutamen command line interface source. https:\/\/github.com\/asayler\/tutamen-tutamencli","author":"Sayler A.","year":"2016","unstructured":"Sayler , A. Tutamen command line interface source. https:\/\/github.com\/asayler\/tutamen-tutamencli , 2016 . Sayler, A. Tutamen command line interface source. https:\/\/github.com\/asayler\/tutamen-tutamencli, 2016."},{"key":"e_1_3_2_1_54_1","volume-title":"Tutamen storage API source. https:\/\/github.com\/asayler\/tutamen-api_storage\/","author":"Sayler A.","year":"2016","unstructured":"Sayler , A. Tutamen storage API source. https:\/\/github.com\/asayler\/tutamen-api_storage\/ , 2016 . Sayler, A. Tutamen storage API source. https:\/\/github.com\/asayler\/tutamen-api_storage\/, 2016."},{"key":"e_1_3_2_1_55_1","volume-title":"2014 Conference on Timely Results in Operating Systems (TRIOS 14)","author":"Sayler A.","year":"2014","unstructured":"Sayler , A. , and Grunwald , D . Custos: Increasing security with secret storage as a service . In 2014 Conference on Timely Results in Operating Systems (TRIOS 14) (Broomfield, CO, October 2014 ), USENIX Association. Sayler, A., and Grunwald, D. Custos: Increasing security with secret storage as a service. In 2014 Conference on Timely Results in Operating Systems (TRIOS 14) (Broomfield, CO, October 2014), USENIX Association."},{"key":"e_1_3_2_1_56_1","volume-title":"Tutamen-aware QEMU port source. https:\/\/github.com\/asayler\/qemu","author":"Sayler A.","year":"2016","unstructured":"Sayler , A. , and Others . Tutamen-aware QEMU port source. https:\/\/github.com\/asayler\/qemu , 2016 . Sayler, A., and Others. Tutamen-aware QEMU port source. https:\/\/github.com\/asayler\/qemu, 2016."},{"key":"e_1_3_2_1_57_1","unstructured":"Scaleway. Deploy baremetal ssd cloud servers in seconds. https:\/\/www.scaleway.com\/.  Scaleway. Deploy baremetal ssd cloud servers in seconds. https:\/\/www.scaleway.com\/."},{"key":"e_1_3_2_1_58_1","doi-asserted-by":"publisher","DOI":"10.1145\/359168.359176"},{"key":"e_1_3_2_1_59_1","unstructured":"Square. Keywhiz: A system for managing and distributing secrets. https:\/\/square.github.io\/keywhiz\/.  Square. Keywhiz: A system for managing and distributing secrets. https:\/\/square.github.io\/keywhiz\/."},{"key":"e_1_3_2_1_60_1","first-page":"77","volume-title":"Proceedings of the 10th USENIX conference on Operating Systems Design and Implementation","author":"Tang Y.","year":"2012","unstructured":"Tang , Y. , Ames , P. , Bhamidipati , S. , Bijlani , A. , Geambasu , R. , and Sarda , N . CleanOS: Limiting mobile data exposure with idle eviction . In Proceedings of the 10th USENIX conference on Operating Systems Design and Implementation ( 2012 ), pp. 77 -- 91 . Tang, Y., Ames, P., Bhamidipati, S., Bijlani, A., Geambasu, R., and Sarda, N. CleanOS: Limiting mobile data exposure with idle eviction. In Proceedings of the 10th USENIX conference on Operating Systems Design and Implementation (2012), pp. 77--91."},{"key":"e_1_3_2_1_61_1","unstructured":"Twilio. Twilio: A messaging voice video and authentication API for every application. https:\/\/www.twilio.com\/.  Twilio. Twilio: A messaging voice video and authentication API for every application. https:\/\/www.twilio.com\/."},{"key":"e_1_3_2_1_62_1","doi-asserted-by":"publisher","DOI":"10.1145\/1456469.1456474"},{"key":"e_1_3_2_1_63_1","volume-title":"To share or not to share in client-side encrypted clouds. arXiv:1404.2697 (November","author":"Wilson D.","year":"2014","unstructured":"Wilson , D. , and Ateniese , G . To share or not to share in client-side encrypted clouds. arXiv:1404.2697 (November 2014 ). Wilson, D., and Ateniese, G. To share or not to share in client-side encrypted clouds. arXiv:1404.2697 (November 2014)."},{"key":"e_1_3_2_1_64_1","doi-asserted-by":"publisher","DOI":"10.1145\/2741948.2741977"}],"event":{"name":"SoCC '16: ACM Symposium on Cloud Computing","sponsor":["SIGMOD ACM Special Interest Group on Management of Data","SIGOPS ACM Special Interest Group on Operating Systems"],"location":"Santa Clara CA USA","acronym":"SoCC '16"},"container-title":["Proceedings of the Seventh ACM Symposium on Cloud Computing"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2987550.2987581","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/2987550.2987581","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T03:40:06Z","timestamp":1750218006000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2987550.2987581"}},"subtitle":["A Next-Generation Secret-Storage Platform"],"short-title":[],"issued":{"date-parts":[[2016,10,5]]},"references-count":61,"alternative-id":["10.1145\/2987550.2987581","10.1145\/2987550"],"URL":"https:\/\/doi.org\/10.1145\/2987550.2987581","relation":{},"subject":[],"published":{"date-parts":[[2016,10,5]]},"assertion":[{"value":"2016-10-05","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}