Secure deduplication of encrypted data without additional independent servers

Jian Liu; N. Asokan; Benny Pinkas

doi:https://doi.org/10.1145/2810103.2813623

Secure deduplication of encrypted data without additional independent servers

Jian Liu, N. Asokan, Benny Pinkas

Department of Computer Science

Bar-Ilan University

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

Encrypting data on client-side before uploading it to a cloud storage is essential for protecting users'privacy. However client-side encryption is at odds with the standard practice of deduplication. Reconciling client-side encryption with cross-user deduplication is an active research topic. We present the first secure cross-user deduplication scheme that supports client-side encryption without requiring any additional independent servers. Interestingly, the scheme is based on using a PAKE (password authenticated key exchange) protocol. We demonstrate that our scheme provides better security guarantees than previous efforts. We show both the effectiveness and the efficiency of our scheme, via simulations using realistic datasets and an implementation.

Original language	English
Title of host publication	CCS 2015 - Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security
Pages	874-885
Number of pages	12
ISBN (Electronic)	9781450338325
DOIs	https://doi.org/10.1145/2810103.2813623
State	Published - 12 Oct 2015
Event	22nd ACM SIGSAC Conference on Computer and Communications Security, CCS 2015 - Denver, United States Duration: 12 Oct 2015 → 16 Oct 2015

Publication series

Name	Proceedings of the ACM Conference on Computer and Communications Security
Volume	2015-October

Conference

Conference	22nd ACM SIGSAC Conference on Computer and Communications Security, CCS 2015
Country/Territory	United States
City	Denver
Period	12/10/15 → 16/10/15

Keywords

Cloud storage
Deduplication
PAKE
Semantically secure encryption

All Science Journal Classification (ASJC) codes

Software
Computer Networks and Communications

Access to Document

https://doi.org/10.1145/2810103.2813623

Cite this

Liu, J., Asokan, N., & Pinkas, B. (2015). Secure deduplication of encrypted data without additional independent servers. In CCS 2015 - Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security (pp. 874-885). (Proceedings of the ACM Conference on Computer and Communications Security; Vol. 2015-October). https://doi.org/10.1145/2810103.2813623

@inproceedings{5810639152854848b744a2c24617c11c,

title = "Secure deduplication of encrypted data without additional independent servers",

abstract = "Encrypting data on client-side before uploading it to a cloud storage is essential for protecting users'privacy. However client-side encryption is at odds with the standard practice of deduplication. Reconciling client-side encryption with cross-user deduplication is an active research topic. We present the first secure cross-user deduplication scheme that supports client-side encryption without requiring any additional independent servers. Interestingly, the scheme is based on using a PAKE (password authenticated key exchange) protocol. We demonstrate that our scheme provides better security guarantees than previous efforts. We show both the effectiveness and the efficiency of our scheme, via simulations using realistic datasets and an implementation.",

keywords = "Cloud storage, Deduplication, PAKE, Semantically secure encryption",

author = "Jian Liu and N. Asokan and Benny Pinkas",

note = "Publisher Copyright: {\textcopyright} 2015 ACM.; 22nd ACM SIGSAC Conference on Computer and Communications Security, CCS 2015 ; Conference date: 12-10-2015 Through 16-10-2015",

year = "2015",

month = oct,

day = "12",

doi = "https://doi.org/10.1145/2810103.2813623",

language = "الإنجليزيّة",

series = "Proceedings of the ACM Conference on Computer and Communications Security",

pages = "874--885",

booktitle = "CCS 2015 - Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security",

}

Liu, J, Asokan, N & Pinkas, B 2015, Secure deduplication of encrypted data without additional independent servers. in CCS 2015 - Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security. Proceedings of the ACM Conference on Computer and Communications Security, vol. 2015-October, pp. 874-885, 22nd ACM SIGSAC Conference on Computer and Communications Security, CCS 2015, Denver, United States, 12/10/15. https://doi.org/10.1145/2810103.2813623

Secure deduplication of encrypted data without additional independent servers. / Liu, Jian; Asokan, N.; Pinkas, Benny.
CCS 2015 - Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security. 2015. p. 874-885 (Proceedings of the ACM Conference on Computer and Communications Security; Vol. 2015-October).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Secure deduplication of encrypted data without additional independent servers

AU - Liu, Jian

AU - Asokan, N.

AU - Pinkas, Benny

PY - 2015/10/12

Y1 - 2015/10/12

N2 - Encrypting data on client-side before uploading it to a cloud storage is essential for protecting users'privacy. However client-side encryption is at odds with the standard practice of deduplication. Reconciling client-side encryption with cross-user deduplication is an active research topic. We present the first secure cross-user deduplication scheme that supports client-side encryption without requiring any additional independent servers. Interestingly, the scheme is based on using a PAKE (password authenticated key exchange) protocol. We demonstrate that our scheme provides better security guarantees than previous efforts. We show both the effectiveness and the efficiency of our scheme, via simulations using realistic datasets and an implementation.

AB - Encrypting data on client-side before uploading it to a cloud storage is essential for protecting users'privacy. However client-side encryption is at odds with the standard practice of deduplication. Reconciling client-side encryption with cross-user deduplication is an active research topic. We present the first secure cross-user deduplication scheme that supports client-side encryption without requiring any additional independent servers. Interestingly, the scheme is based on using a PAKE (password authenticated key exchange) protocol. We demonstrate that our scheme provides better security guarantees than previous efforts. We show both the effectiveness and the efficiency of our scheme, via simulations using realistic datasets and an implementation.

KW - Cloud storage

KW - Deduplication

KW - PAKE

KW - Semantically secure encryption

UR - http://www.scopus.com/inward/record.url?scp=84954136616&partnerID=8YFLogxK

U2 - https://doi.org/10.1145/2810103.2813623

DO - https://doi.org/10.1145/2810103.2813623

M3 - منشور من مؤتمر

T3 - Proceedings of the ACM Conference on Computer and Communications Security

SP - 874

EP - 885

BT - CCS 2015 - Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security

T2 - 22nd ACM SIGSAC Conference on Computer and Communications Security, CCS 2015

Y2 - 12 October 2015 through 16 October 2015

ER -

Secure deduplication of encrypted data without additional independent servers

Abstract

Publication series

Conference

Keywords

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this