Abstract
Encrypting data on client-side before uploading it to a cloud storage is essential for protecting
users' privacy. However client-side encryption is at odds with the standard practice of deduplication.
Reconciling client-side encryption with cross-user deduplication is an active research topic. We
present the first secure cross-user deduplication scheme that supports client-side encryption {\em without
requiring any additional independent servers}. Interestingly, the scheme is based on using a PAKE (password
authenticated key exchange) protocol. We demonstrate that {\em our scheme provides better security
guarantees than previous efforts}. We show both the effectiveness and the efficiency of our scheme,
via simulations using realistic datasets and an implementation.
users' privacy. However client-side encryption is at odds with the standard practice of deduplication.
Reconciling client-side encryption with cross-user deduplication is an active research topic. We
present the first secure cross-user deduplication scheme that supports client-side encryption {\em without
requiring any additional independent servers}. Interestingly, the scheme is based on using a PAKE (password
authenticated key exchange) protocol. We demonstrate that {\em our scheme provides better security
guarantees than previous efforts}. We show both the effectiveness and the efficiency of our scheme,
via simulations using realistic datasets and an implementation.
| Original language | English |
|---|---|
| Title of host publication | 22nd ACM Conference on Computer and Communications Security (CCS), Denver, Colorado, US, October 12-16, 2015 |
| Publisher | ACM |
| Pages | 874-885 |
| ISBN (Print) | 978-1-4503-3832-5 |
| Publication status | Published - 2015 |
| MoE publication type | A4 Article in a conference publication |