Cited By
View all- Wu XLi JWang HLiu XWu WLi F(2024)A randomized encryption deduplication method against frequency attackJournal of Information Security and Applications10.1016/j.jisa.2024.10377483(103774)Online publication date: Jun-2024
Deduplication vs Privacy Tradeoffs in Cloud Storage
Pages 143 - 151
Abstract
Users often encrypt files they store on cloud storage services to ensure data privacy. Unfortunately, without additional mechanisms, encrypting files prevents the use of server-side deduplication as two identical files will be different when encrypted. Encrypted deduplication techniques combines file encryption and data deduplication. This combination usually requires some form of direct or indirect coordination between the different clients.
In this paper, we address the problem of reconciling the need to encrypt data with the advantages of deduplication. In particular, we study techniques that achieve this objective while avoiding frequency analysis attacks, i.e., attacks that infer the content of an encrypted file based on how frequently the file is stored and/or accessed. We propose a new protocol for assigning encryption keys to files that leverages the use of trusted execution environments to hide the frequencies of chunks from the adversary.
References
[1]
Mihir Bellare, Sriram Keelveedhi, and Thomas Ristenpart. 2013. Message-locked encryption and secure deduplication. In International Conference on the Theory and Applications of Cryptographic Techniques. Athens, Greece.
[2]
Jan Camenisch, Gregory Neven, and Abhi Shelat. 2007. Simulatable adaptive oblivious transfer. In International Conference on the Theory and Applications of Cryptographic Techniques. Barcelona, Spain.
[3]
Cláudio Correia, Miguel Correia, and Luís Rodrigues. 2020. Omega: a secure event ordering service for the edge. In IEEE/IFIP International Conference on Dependable Systems and Networks. Valencia, Spain.
[4]
Boxiang Dong, Ruilin Liu, and Wendy Hui Wang. 2014. PraDa: Privacy-preserving Data-Deduplication-as-a-Service. In International Conference on Conference on Information and Knowledge Management. Shanghai, China.
[5]
Dropbox. 2008. Retrieved 2022-10-14 from https://dropbox.com/
[6]
Morris Dworkin. 2010. SP 800-38E. Recommendation for Block Cipher Modes of Operation: The XTS-AES Mode for Confidentiality on Storage Devices. Retrieved 2022-10-14 from https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=904691
[7]
Muhammad El-Hindi, Tobias Ziegler, Matthias Heinrich, Adrian Lutsch, Zheguang Zhao, and Carsten Binnig. 2022. Benchmarking the Second Generation of Intel SGX Hardware. In International Conference on Management of Data. Philadelphia, PA, USA.
[8]
Google Drive. 2012. Retrieved 2022-10-14 from https://www.google.com/drive/
[9]
Mireya Jurado and Geoffrey Smith. 2019. Quantifying Information Leakage of Deterministic Encryption. In International Conference on Cloud Computing Security Workshop. London, United Kingdom.
[10]
Sriram Keelveedhi, Mihir Bellare, and Thomas Ristenpart. 2013. DupLESS: Server-aided encryption for deduplicated storage. In Security Symposium USENIX Security. Washington D.C., USA.
[11]
Jingwei Li, Zuoru Yang, Yanjing Ren, Patrick Lee, and Xiaosong Zhang. 2020. Balancing Storage Efficiency and Data Confidentiality with Tunable Encrypted Deduplication. In European Conference on Computer Systems. Heraklion, Greece.
[12]
Dutch Meyer and William Bolosky. 2012. A study of practical deduplication. ACM Transactions on Storage 7 (2012), 1--20.
[13]
Mariana Miranda, Tânia Esteves, Bernardo Portela, and João Paulo. 2021. S2Dedup: SGX-Enabled Secure Deduplication. In International Conference on Systems and Storage. Haifa, Israel.
[14]
Moni Naor and Omer Reingold. 2004. Number-theoretic constructions of efficient pseudo-random functions. Journal of the ACM (JACM) 51 (2004), 231--252.
[15]
Live Optics. 2022. Read and write ratio. Retrieved 2022-10-14 from https://support.liveoptics.com/hc/en-us/articles/229590547-Live-Optics-Basics-Read-Write-Ratio
[16]
Yanjing Ren, Jingwei Li, Zuoru Yang, Patrick PC Lee, and Xiaosong Zhang. 2021. Accelerating Encrypted Deduplication via SGX. In USENIX Annual Technical Conference. Remotely.
[17]
SGX101. 2019. Overview - SGX 101. Retrieved 2022-10-14 from http://sgx101.gitbook.io/sgx101/sgx-bootstrap/overview
[18]
SPDK. 2015. Spdk github. Retrieved 2022-10-14 from https://github.com/spdk/spdk
[19]
SPDK. 2017. Storage performance development kit. Retrieved 2022-10-14 from https://spdk.io/
[20]
Grant Wallace, Fred Douglis, Hangwei Qian, Philip Shilane, Stephen Smaldone, Mark Chamness, and Windsor Hsu. 2012. Characteristics of backup workloads in production systems. In International conference on File and Storage Technologies. San Jose, CA, USA.
[21]
Grant Wallace, Fred Douglis, Hangwei Qian, Philip Shilane, Stephen Smaldone, Mark Chamness, and Windsor Hsu. 2012. Characteristics of backup workloads in production systems. In USENIX Conference on File and Storage Technologies. San Jose, CA, USA.
[22]
Zuoru Yang, Jingwei Li, and Patrick PC Lee. 2022. Secure and Lightweight Deduplicated Storage via Shielded Deduplication-Before-Encryption. In USENIX Annual Technical Conference. Carlsbad, CA, USA.
Index Terms
- Deduplication vs Privacy Tradeoffs in Cloud Storage
Recommendations
Storage Deduplication by Virtual Large-Scale Disks
NBIS '12: Proceedings of the 2012 15th International Conference on Network-Based Information SystemsRecently, the demand of low cost large scale storages increases. We developed VLSD (Virtual Large Scale Disks) toolkit for constructing virtual disk based distributed storages, which aggregate free spaces of individual disks. VLSD realizes low-cost ...
Secure deduplication for multimedia data with user revocation in cloud storage
Increment of multimedia data motivates users to utilize cloud storage (CS) to exploit its massive size. For this extensible storage system, there are two desirable requirements: (1) the users should be able to ensure that their outsourced data is ...
Flash-Based Storage Deduplication Techniques: A Survey
Exponential growth of the amount of data stored worldwide together with high level of data redundancy motivates the active development of data deduplication techniques. The overall increasing popularity of solid-state drives (SSDs) as primary storage ...
Comments
Information & Contributors
Information
Published In
March 2023
1932 pages
ISBN:9781450395175
DOI:10.1145/3555776
- Conference Chairs:
- Jiman Hong,
- Maart Lanperne,
- Program Chairs:
- Juw Won Park,
- Tomas Cerny,
- Publication Chair:
- Hossain Shahriar
Copyright © 2023 Owner/Author(s).
This work is licensed under a Creative Commons Attribution International 4.0 License.
Sponsors
Publisher
Association for Computing Machinery
New York, NY, United States
Publication History
Published: 07 June 2023
Check for updates
Author Tags
Qualifiers
- Research-article
Funding Sources
- Fundação para a Ciência e a Tecnologia (FCT)
Conference
SAC '23
Sponsor:
Acceptance Rates
Overall Acceptance Rate 1,650 of 6,669 submissions, 25%
Contributors
Other Metrics
Bibliometrics & Citations
Bibliometrics
Article Metrics
- View Citations1Total Citations
- 181Total Downloads
- Downloads (Last 12 months)139
- Downloads (Last 6 weeks)22
Reflects downloads up to 16 Oct 2024
Other Metrics
Citations
Cited By
View all- Wu XLi JWang HLiu XWu WLi F(2024)A randomized encryption deduplication method against frequency attackJournal of Information Security and Applications10.1016/j.jisa.2024.10377483(103774)Online publication date: Jun-2024
View Options
Get Access
Login options
Check if you have access through your login credentials or your institution to get full access on this article.
Sign in