Cited By
View all- Yu C(2023)Counteracting Side Channels in Cross-User Client-Side Deduplicated Cloud StorageIEEE Internet of Things Journal10.1109/JIOT.2023.326479310:17(15604-15616)Online publication date: 1-Sep-2023
Definitions for Plaintext-Existence Hiding in Cloud Storage
Authors: 
Colin Boyd, Gareth T. Davies, Kristian Gjøsteen, Håvard Raddum, Mohsen TooraniAuthors Info & Claims
Colin Boyd, Gareth T. Davies, Kristian Gjøsteen, Håvard Raddum, Mohsen TooraniAuthors Info & ClaimsARES '18: Proceedings of the 13th International Conference on Availability, Reliability and Security
Article No.: 41, Pages 1 - 7
Abstract
Cloud storage services use deduplication for saving bandwidth and storage. An adversary can exploit side-channel information in several attack scenarios when deduplication takes place at the client side, leaking information on whether a specific plaintext exists in the cloud storage. Generalising existing security definitions, we introduce formal security games for a number of possible adversaries in this domain, and show that games representing all natural adversarial behaviors are in fact equivalent. These results allow users and practitioners alike to accurately assess the vulnerability of deployed systems to this real-world concern.
References
[1]
Frederik Armknecht, Colin Boyd, Gareth T. Davies, Kristian Gjøsteen, and Mohsen Toorani. 2017. Side Channels in Deduplication: Trade-offs between Leakage and Efficiency. In Proceedings of the 2017 ACM on Asia Conference on Computer and Communications Security, AsiaCCS 2017, Abu Dhabi, United Arab Emirates, April 2-6, 2017 ACM, 266--274.
[2]
Mihir Bellare, Sriram Keelveedhi, and Thomas Ristenpart. 2013. Message-Locked Encryption and Secure Deduplication. In Advances in Cryptology - EUROCRYPT 2013, 32nd Annual International Conference on the Theory and Applications of Cryptographic Techniques, Athens, Greece, May 26-30, 2013. Proceedings (Lecture Notes in Computer Science), Vol. 7881. Springer, 296--312.
[3]
Yitao Duan. 2014. Distributed Key Generation for Encrypted Deduplication: Achieving the Strongest Privacy. In Proceedings of the 6th edition of the ACM Workshop on Cloud Computing Security, CCSW '14, Scottsdale, Arizona, USA, November 7, 2014. ACM, 57--68.
[4]
Danny Harnik, Benny Pinkas, and Alexandra Shulman-Peleg. 2010. Side Channels in Cloud Services: Deduplication in Cloud Storage. IEEE Security & Privacy 8, 6 (2010), 40--47.
[5]
Hermine Hovhannisyan, Kejie Lu, Rongwei Yang, Wen Qi, Jianping Wang, and Mi Wen. 2015. A Novel Deduplication-Based Covert Channel in Cloud Storage Service. In 2015 IEEE Global Communications Conference, GLOBECOM 2015, San Diego, CA, USA, December 6-10, 2015. IEEE, 1--6.
[6]
Sriram Keelveedhi, Mihir Bellare, and Thomas Ristenpart. 2013. DupLESS: Server-Aided Encryption for Deduplicated Storage. In Proceedings of the 22th USENIX Security Symposium, Washington, DC, USA, August 14-16, 2013. USENIX Association, 179--194. https://www.usenix.org/conference/usenixsecurity13/technical-sessions/presentation/bellare
[7]
Mingqiang Li, Chuan Qin, Jingwei Li, and Patrick P. C. Lee. 2016. CDStore: Toward Reliable, Secure, and Cost-Efficient Cloud Storage via Convergent Dispersal. IEEE Internet Computing 20, 3 (2016), 45--53.
[8]
Jian Liu, N. Asokan, and Benny Pinkas. 2015. Secure Deduplication of Encrypted Data without Additional Independent Servers. In Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security, Denver, CO, USA, October 12-6, 2015. ACM, 874--885.
[9]
Jian Liu, N. Asokan, and Benny Pinkas. 2015. Secure Deduplication of Encrypted Data without Additional Independent Servers. IACR Cryptology ePrint Archive 2015 (2015), 455. http://eprint.iacr.org/2015/455
[10]
Jian Liu, Li Duan, Yong Li, and N. Asokan. 2018. Secure Deduplication of Encrypted Data: Refined Model and New Constructions. In Topics in Cryptology-CT-RSA 2018 - The Cryptographers' Track at the RSA Conference 2018, San Francisco, CA, USA, April 16-20, 2018, Proceedings. 374--393.
[11]
Martin Mulazzani, Sebastian Schrittwieser, Manuel Leithner, Markus Huber, and Edgar R. Weippl. 2011. Dark Clouds on the Horizon: Using Cloud Storage as Attack Vector and Online Slack Space. In 20th USENIX Security Symposium, San Francisco, CA, USA, August 8-12, 2011, Proceedings. USENIX Association. http://static.usenix.org/events/sec11/tech/full_papers/Mulazzani6-24-11.pdf
[12]
Tobias Pulls. 2011. (More) Side Channels in Cloud Storage - Linking Data to Users. In Privacy and Identity Management for Life - 7th IFIP WG 9.2, 9.6/11.7, 11.4, 11.6/PrimeLife International Summer School, Trento, Italy, September 5-9, 2011, Revised Selected Papers (IFIP Advances in Information and Communication Technology), Vol. 375. Springer, 102--115.
[13]
Young-joo Shin, Dongyoung Koo, and Junbeom Hur. 2017. A Survey of Secure Data Deduplication Schemes for Cloud Storage Systems. ACM Comput. Surv. 49, 4 (2017), 74:1--74:38.
[14]
Jan Stanek, Alessandro Sorniotti, Elli Androulaki, and Lukas Kencl. 2014. A Secure Data Deduplication Scheme for Cloud Storage. In Financial Cryptography and Data Security - 18th International Conference, FC 2014, Christ Church, Barbados, March 3-7, 2014, Revised Selected Papers (Lecture Notes in Computer Science), Vol. 8437. Springer, 99--118.
[15]
Mark W. Storer, Kevin M. Greenan, Darrell D. E. Long, and Ethan L. Miller. 2008. Secure data deduplication. In Proceedings of the 2008 ACM Workshop On Storage Security And Survivability, StorageSS 2008, Alexandria, VA, USA, October 31, 2008. ACM, 1--10.
Index Terms
- Definitions for Plaintext-Existence Hiding in Cloud Storage
Recommendations
On Information Leakage in Deduplicated Storage Systems
CCSW '16: Proceedings of the 2016 ACM on Cloud Computing Security WorkshopMost existing cloud storage providers rely on data deduplication in order to significantly save storage costs by storing duplicate data only once. While the literature has thoroughly analyzed client-side information leakage associated with the use of ...
Cloud Storage as the Infrastructure of Cloud Computing
ICICCI '10: Proceedings of the 2010 International Conference on Intelligent Computing and Cognitive InformaticsAs an emerging technology and business paradigm, Cloud Computing has taken commercial computing by storm. Cloud computing platforms provide easy access to a company’s high-performance computing and storage infrastructure through web services. With cloud ...
Side Channels in Deduplication: Trade-offs between Leakage and Efficiency
ASIA CCS '17: Proceedings of the 2017 ACM on Asia Conference on Computer and Communications SecurityDeduplication removes redundant copies of files or data blocks stored on the cloud. Client-side deduplication, where the client only uploads the file upon the request of the server, provides major storage and bandwidth savings, but introduces a number ...
Comments
Information & Contributors
Information
Published In
August 2018
603 pages
ISBN:9781450364485
DOI:10.1145/3230833
Copyright © 2018 ACM.
Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than the author(s) must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected].
In-Cooperation
- Universität Hamburg: Universität Hamburg
Publisher
Association for Computing Machinery
New York, NY, United States
Publication History
Published: 27 August 2018
Check for updates
Author Tags
Qualifiers
- Research-article
- Research
- Refereed limited
Funding Sources
- The Research Council of Norway
Conference
ARES 2018
ARES 2018: International Conference on Availability, Reliability and Security
August 27 - 30, 2018
Hamburg, Germany
Acceptance Rates
ARES '18 Paper Acceptance Rate 128 of 260 submissions, 49%;
Overall Acceptance Rate 228 of 451 submissions, 51%
Contributors
Other Metrics
Bibliometrics & Citations
Bibliometrics
Article Metrics
- View Citations1Total Citations
- 89Total Downloads
- Downloads (Last 12 months)2
- Downloads (Last 6 weeks)0
Reflects downloads up to 15 Oct 2024
Other Metrics
Citations
Cited By
View all- Yu C(2023)Counteracting Side Channels in Cross-User Client-Side Deduplicated Cloud StorageIEEE Internet of Things Journal10.1109/JIOT.2023.326479310:17(15604-15616)Online publication date: 1-Sep-2023
View Options
Get Access
Login options
Check if you have access through your login credentials or your institution to get full access on this article.
Sign in