On protecting integrity and confidentiality of cryptographic file system for outsourced storage

Yun, Aaram; Shi, Chunhui; Kim, Yong‐Dae

doi:10.1145/1655008.1655017

Cited by 42 publications

(13 citation statements)

References 19 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…a number of the studies propose to use threshold secrete sharing to take care of strength of key management however they are doing not think about de-duplication commonplace cryptography makes de-duplication not possible. [2,3,4] It proposes the proofs of possession for de-duplication system specified shopper will with efficiency persuade the cloud storage server that he/she owns a file while not uploading file itself. However these approaches don't think about data privacy.…”

Section: Background and Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Secure De-Duplication using Convergent Keys (Convergent Cryptography) for Cloud Storage

Kavade¹,

Lomte²

2015

IJCA

View full text Add to dashboard Cite

One very important challenges of today's cloud storage services is that the management of the ever-increasing amount of data. To create data management scalable, de-duplication has been a widely known technique to condense space for storing and transfer information measure in cloud storage. Rather than keeping multiple data copies with an equivalent content, de-duplication eliminates redundant data by keeping just one physical copy and referring different redundant data to it copy. Convergent Encryption, additionally called content hash keying, could be a cryptosystem that produces identical ciphertext from identical plaintext files. Data de-duplication could be a technique for eliminating duplicate copies of data, and has been wide employed in cloud storage to scale back space for storing and transfer information measure. Promising because it is, associate degree arising challenge is to perform secure de-duplication in cloud storage. Currently daily the foremost arising challenge is to perform secure de-duplication in cloud storage. Though Convergent Encryption has been extensively adopted for secure de-duplication, a essential issue of creating Convergent Encryption sensible is to with efficiency and dependably manage a large range of convergent keys. we have a tendency to initial introduce a baseline approach during which file level de-duplication is performed and it doesn't support on-line approach. For that purpose the current context have a tendency to formally address the matter of achieving economical and reliable key management in secure de-duplication. Within the planned design Dupkey, users don't ought to manage any keys on their own. It implements de-duplication at block level and provides a lot of security. Dupkey is on-line approach and supply deduplication and reduces DB size on cloud.

show abstract

Section: Background and Related Workmentioning

confidence: 99%

“…To protect the confidentiality of outsourced data, varied cryptological solutions are planned within the literature (e.g., [2], [3], [4]). Their plan builds on traditional(symmetric) cryptography, during which every user encrypts data with associate degree freelance secret key.…”

Section: Traditional Cryptographymentioning

confidence: 99%

Secure De-Duplication using Convergent Keys (Convergent Cryptography) for Cloud Storage

Kavade¹,

Lomte²

2015

IJCA

View full text Add to dashboard Cite

show abstract

“…Secure solutions that are compatible with existing public cloud storage services have been proposed. Yun et al [40] propose a cryptographic file system that provides privacy and integrity guarantees for outsourced data using a universal-hash based MAC tree. They prototype a system that can interact with an untrusted storage server via a modified file system.…”

Section: Related Workmentioning

confidence: 99%

Secure Overlay Cloud Storage with Access Control and Assured Deletion

Tang

Lee

Lui

et al. 2012

IEEE Trans. Dependable and Secure Comput.

192

View full text Add to dashboard Cite

Abstract-We can now outsource data backups off-site to third-party cloud storage services so as to reduce data management costs. However, we must provide security guarantees for the outsourced data, which is now maintained by third parties. We design and implement FADE, a secure overlay cloud storage system that achieves fine-grained, policy-based access control and file assured deletion. It associates outsourced files with file access policies, and assuredly deletes files to make them unrecoverable to anyone upon revocations of file access policies. To achieve such security goals, FADE is built upon a set of cryptographic key operations that are self-maintained by a quorum of key managers that are independent of third-party clouds. In particular, FADE acts as an overlay system that works seamlessly atop today's cloud storage services. We implement a proof-of-concept prototype of FADE atop Amazon S3, one of today's cloud storage services. We conduct extensive empirical studies, and demonstrate that FADE provides security protection for outsourced data, while introducing only minimal performance and monetary cost overhead. Our work provides insights of how to incorporate value-added security features into today's cloud storage services.

show abstract

“…Yun et al [24] propose a cryptographic file system that provides privacy and integrity guarantees for outsourced data using a universalhash based MAC tree. They prototype a system that can interact with an untrusted storage server via a modified file system.…”

Section: Related Workmentioning

confidence: 99%

FADE: Secure Overlay Cloud Storage with File Assured Deletion

Tang

Lee

Lui

et al. 2010

Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering

View full text Add to dashboard Cite

Abstract. While we can now outsource data backup to third-party cloud storage services so as to reduce data management costs, security concerns arise in terms of ensuring the privacy and integrity of outsourced data. We design FADE, a practical, implementable, and readily deployable cloud storage system that focuses on protecting deleted data with policy-based file assured deletion. FADE is built upon standard cryptographic techniques, such that it encrypts outsourced data files to guarantee their privacy and integrity, and most importantly, assuredly deletes files to make them unrecoverable to anyone (including those who manage the cloud storage) upon revocations of file access policies. In particular, the design of FADE is geared toward the objective that it acts as an overlay system that works seamlessly atop today's cloud storage services. To demonstrate this objective, we implement a working prototype of FADE atop Amazon S3, one of today's cloud storage services, and empirically show that FADE provides policy-based file assured deletion with a minimal trade-off of performance overhead. Our work provides insights of how to incorporate value-added security features into current data outsourcing applications.

show abstract

On protecting integrity and confidentiality of cryptographic file system for outsourced storage

Cited by 42 publications

References 19 publications

Secure De-Duplication using Convergent Keys (Convergent Cryptography) for Cloud Storage

Secure De-Duplication using Convergent Keys (Convergent Cryptography) for Cloud Storage

Secure Overlay Cloud Storage with Access Control and Assured Deletion

FADE: Secure Overlay Cloud Storage with File Assured Deletion

Contact Info

Product

Resources

About