You are looking at a specific version 20130625:075548 of this paper. See the latest version.

Paper 2012/511

Entangled Cloud Storage

Giuseppe Ateniese and Özgür Dagdelen and Ivan Damgard and Daniele Venturi

Abstract

Entangled cloud storage enables a set of clients to ``entangle'' their files into a single {\em clew} to be stored by a (potentially malicious) cloud provider. The entanglement makes it impossible to modify or delete significant part of the clew without affecting {\em all} files encoded in the clew. A clew keeps the files in it private but still lets each client recover his own data by interacting with the cloud provider; no cooperation from other clients is needed. At the same time, the cloud provider is discouraged from altering or overwriting any significant part of the clew as this will imply that none of the clients can recover their files. We provide theoretical foundations for entangled cloud storage, introducing the notion of an \emph{entangled encoding scheme} that guarantees strong security requirements capturing the properties above. We also give a concrete construction based on privacy-preserving polynomial interpolation, along with protocols for using the encoding scheme in practice. Protocols for cloud storage find application in the cloud setting, where clients store their files on a remote server and need to be ensured that the cloud provider will not delete their data illegitimately. Current solutions, e.g., based on Provable Data Possession and Proof of Retrievability, catch a malicious server ``after-the-fact'', meaning that the server needs to be challenged regularly to provide evidence that the clients' files are stored \emph{at a given time}. Entangled storage makes all clients equal and with the same rights: It makes it financially inconvenient for a cloud provider to alter specific files and exclude certain ``average" customers, since doing so would undermine all customers in the system, even those considered ``important" and, thus, profitable. Hence, entangled storage schemes offer security ``before-the-fact''.

Metadata
Available format(s)
PDF
Publication info
Published elsewhere. In Submission
Keywords
cloud storagemulti-party computation
Contact author(s)
oezguer dagdelen @ cased de
History
2016-03-10: last of 8 revisions
2012-09-03: received
See all versions
Short URL
https://ia.cr/2012/511
License
Creative Commons Attribution
CC BY
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.