What If Keys Are Leaked? towards Practical and Secure Re-Encryption in Deduplication-Based Cloud Storage

You, Weijing; Lei, Lei; Chen, Bo; Liu, Limin

doi:10.3390/info12040142

Cited by 2 publications

(4 citation statements)

References 53 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…You et al [49] proposed the rst deduplicationfriendly watermarking scheme for multimedia data in public clouds, in which the data integrity can be checked by the cloud server without having access to the original data. A proof of ownership for encrypted les is proposed [50] by recruiting the rst data owner to assist later data integrity checking. However, in order to continuously check data integrity, the users must keep online and perform data integrity checking frequently via PoS protocols, which is cumbersome for users and unrealistic in practice.…”

Section: Outsourced Data Integritymentioning

confidence: 99%

EnclavePoSt: A Practical Proof of Storage-Time in Cloud via Intel SGX

Zhang

You

Jia

et al. 2022

Security and Communication Networks

Self Cite

View full text Add to dashboard Cite

Data integrity is one of the most critical security concerns for users when using the cloud storage service. However, it is difficult for users to always stay online and frequently interact with storage service providers to ensure continuous data integrity in practice. The existing Proof of Storage-time schemes, enabling verifiable continuous data integrity checking at cost of performance, fail to provide flexible storage period, reliable measurement of storage time, and resistance to the outsourcing attack. In this paper, we propose EnclavePoSt, the first practical Proof of Storage-time via Intel SGX, where the data integrity checking can be automatically executed in a hardware-driven Trusted Execution Environment (TEE), i.e., the enclave, when users are offline. The checking results can be aggregated and efficiently verified by users. Besides, the elapsed time during isolated data integrity checking can be precisely measured, and the storage period is allowed to flexibly change. Lastly, our EnclavePoSt is resistant to the outsourcing attack. The security analysis and evaluations justify that the EnclavePoSt is more practical than previous works.

show abstract

Section: Outsourced Data Integritymentioning

confidence: 99%

EnclavePoSt: A Practical Proof of Storage-Time in Cloud via Intel SGX

Zhang

You

Jia

et al. 2022

Security and Communication Networks

Self Cite

View full text Add to dashboard Cite

show abstract

“…Data deduplication techniques can benefit from convergent encryption (CE) to achieve security smoothly and more easily [10,15]. Convergent encryption is a cryptographic concept that ensures security in the cloud by achieving confidentiality and data privacy.…”

Section: B Convergent Encryptionmentioning

confidence: 99%

“…Data deduplication is an effective mechanism that aims at reducing the required storage space of the cloud storage servers by avoiding storing several copies of the same data. There are two main types of deduplication [9,10] namely, server-side deduplication and client-side deduplication. The server-side deduplication schemes [11,12] remove duplicated copies of the same files after uploading them to the server.…”

Section: Introductionmentioning

confidence: 99%

“…The server-side deduplication schemes [11,12] remove duplicated copies of the same files after uploading them to the server. On the other hand, In client-side deduplication [10,13], duplicated copies are identified on the client side and not uploaded to the server. Hence, in contrary to server-side deduplication, client-side deduplication can not only save storage space and uploading time but also reduce network bandwidth.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Secure and Efficient Proof of Ownership Scheme for Client-Side Deduplication in Cloud Environments

Al-Amer¹,

Ouda²

2021

IJACSA

View full text Add to dashboard Cite

Data deduplication is an effective mechanism that reduces the required storage space of cloud storage servers by avoiding storing several copies of the same data. In contrast with server-side deduplication, client-side deduplication can not only save storage space but also reduce network bandwidth. Clientside deduplication schemes, however, might suffer from serious security threats. For instance, an adversary can spoof the server and gain access to a file he/she does not possess by claiming that she/he owns it. In order to thwart such a threat, the concept of proof-of-ownership (PoW) has been introduced. The security of the existing PoW scheme cannot be assured without affecting the computational complexity of the client-side deduplication. This paper proposes a secure and efficient PoW scheme for client-side deduplication in cloud environments with minimal computational overhead. The proposed scheme utilizes convergent encryption to encrypt a sufficiently large block specified by the server to challenge the client that claims possession of the file requested to be uploaded. To ensure that the client owns the entire file contents, and hence resist collusion attacks, the server challenges the client by requesting him to split the file he asks to upload into fixed-sized blocks and then encrypting a randomly chosen block using a key formed from extracting one bit at a specified location in all other blocks. This ensures a significant reduction in the communication overhead between the server and client. Computational complexity analysis and experimental results demonstrate that the proposed PoW scheme outperforms state-of-the-art PoW techniques.

show abstract

What If Keys Are Leaked? towards Practical and Secure Re-Encryption in Deduplication-Based Cloud Storage

Cited by 2 publications

References 53 publications

EnclavePoSt: A Practical Proof of Storage-Time in Cloud via Intel SGX

EnclavePoSt: A Practical Proof of Storage-Time in Cloud via Intel SGX

Secure and Efficient Proof of Ownership Scheme for Client-Side Deduplication in Cloud Environments

Contact Info

Product

Resources

About