目前現有的儲存系統是以區塊(block)為最小的儲存單位，而儲存系統裡所有的塊區位址及某一檔案用到那些區塊都是由檔案系統來管理。如此一來儲存裝置大部分時間都是處於閒置的狀態，只有當檔案系統要存取某一區塊時儲存裝置才會運作。因此我們希望能利用儲存媒介閒置的時候分擔檔案系統的負載，把檔案系統部分的工作卸載給儲存裝置，以期能減輕檔案系統的負荷。
基於物件之儲存系統將部分傳統檔案系統的工作移交給儲存裝置來完成。如此一來儲存系統的安全性，擴充性及效能可以較傳統的儲存系統提升。一旦任何系統使用網路來傳輸資料，安全性絕對是很重要的議題。我們將探討物件儲存系統在安全性可能受到的威脅並且提出解決的方法。
物件儲存系統所提供的安全性存在一個缺點，一旦未被認證的使用者截取到合法的CDB(command descriptor block)，再將其中的安全性方法(security method)更改為NOSEC，如此一來物件儲存系統收到此CDB也不會檢查資料是否被竄改。
為了解決物件儲存系統在安全性方面受到的威脅，我們在資料送出前先將重要的欄位加密，經過加密後其他未被認證的使用者就算截取到資料也不知道要如果去竄改。因為加密過程都是二進位運算，所以這個加密的過程所需的額外運算是非常低的。如此一來我們所提出的架構和一般的物件儲存系統在效能方面是差不多的。我們也和一些傳統的儲存系統相比較，在寫的效能方面比傳統的儲存系統好上2~3倍，而使用者端的處理器也減少了3倍的使用率。

Object-based storage offloads some works of file systems to storage devices to improve security, scalability, and performance. Security is a main concern when sharing data over network. We examine the security model of object-based storage and find that there is some problem in the model. It can be disabled by modifying specific field in the command. We propose a solution to this problem by encryption that makes unauthenticated clients impossible to alter the field. The overhead of this encryption is quite low. Thus the performance of our enhanced object-based storage system is comparable to that of the original one while offering an enhanced security.
In addition, we have compared the performance of OSD systems with that of iSCSI and NFS. The write performance of an object-based storage system is much better because it can offload some tasks to storage devices, and the CPU usage at client side is also largely reduced.

[1] Mike Mesnier, Gregory R. Ganger, Erik Reidel: Object-Based Storage. IEEE Communications Magazine, v.41 n.8 pp 84-90, August 2003.
[2] David Du, Dingshan He, Changjin Hong, Jaehoon Jeong, Vishal Kher,Yongdae Kim, Yingping Lu, Aravindan Raghuveer, Sarah Sharafkandi: Experiences Building an Object-Based Storage System based on the OSD T-10 Standard.
[3] SCSI Object-Based Storage Device Commands – 2 (OSD-2), Project T10/1731-D, revision 0, October 2004.
[4] IBM Object Store. http://www.haifa.il.ibm.com/projects/storage/objectstore/index.html/
[5] Alain Azagury, et el. Towards an Object Store. Proceedings of the 20th IEEE/11th NASA Goddard Conference on Mass Storage Systems and Technologies (MSS'03).
[6] Intel iSCSI/OSD reference implementation. http://sourceforge.net/projects/intel-iscsi/
[7] Julian Satran, et al: Draft-ietf-ips-iscsi-20, January 2003.
[8] Kalman Z. Meth, Julian Santran: Design of the iSCSI Protocol. Proceedings of the 20th IEEE/11th NASA Goddard Conference on Mass Storage Systems and Technologies (MSS'03).
[9] SCSI Architecture Model - 4(SAM-4), Project T10/1683-D, revision 5, January 2006.
[10] Michael Factor, David Nagle, Dalit Naor, Eric Reidel, and Julian Satran: The OSD security protocol. Proceedings of 3rd International IEEE Security in Storage Workshop, December 2005.
[11] The Keyed-Hash Message Authentication Code. Federal Information Processing Standards Publication 198, March 2006.
[12] R.J. McEliece. A public-key cryptosystem based on algebraic coding theory. JPL DSN Progress Report 42-44 , pages 114-116, 1978.
[13] Yuan-Xing Li, Da-Xing Li, Chuan-Kun Wu: How to Generate a Random Nonsingular Matrix in McEliece’s Public-Key Cryptosystem.
[14] Bart Preneel, Antoon Bosselaers, Rene Govaerts and Joos Vandewalle: A SOFTWARE IMPLEMENTATION OF THE McELIECE PUBLIC-KEY CRYPTOSYSTEM. Proceedings of the 13th Symposium on Information Theory in the Benelux, Werkgemeenschap voor Informatie- en Communicatietheorie, pp. 119-126, 1992.
[15] Bonnie++ benchmark suit. http://www.coker.com.au/bonnie++/
[16] Linux-iSCSI Project. http://linux-iscsi.soureforge.net