Cryptology ePrint Archive: Report 2015/455

Secure Deduplication of Encrypted Data without Additional Independent Servers

Jian Liu and N.Asokan and Benny Pinkas

Abstract: Encrypting data on client-side before uploading it to a cloud storage is essential for protecting users' privacy. However client-side encryption is at odds with the standard practice of deduplication. Reconciling client-side encryption with cross-user deduplication is an active research topic. We present the first secure cross-user deduplication scheme that supports client-side encryption {\em without requiring any additional independent servers}. Interestingly, the scheme is based on using a PAKE (password authenticated key exchange) protocol. We demonstrate that {\em our scheme provides better security guarantees than previous efforts}. We show both the effectiveness and the efficiency of our scheme, via simulations using realistic datasets and an implementation.

Category / Keywords: applications

Date: received 13 May 2015, last revised 8 Oct 2015

Contact author: jian liu at aalto fi

Available format(s): PDF | BibTeX Citation

Version: 20151008:185619 (All versions of this report)

Short URL: ia.cr/2015/455

Discussion forum: Show discussion | Start new discussion