Paper 2015/455

Secure Deduplication of Encrypted Data without Additional Independent Servers

Jian Liu, N. Asokan, and Benny Pinkas


Encrypting data on client-side before uploading it to a cloud storage is essential for protecting users' privacy. However client-side encryption is at odds with the standard practice of deduplication. Reconciling client-side encryption with cross-user deduplication is an active research topic. We present the first secure cross-user deduplication scheme that supports client-side encryption {\em without requiring any additional independent servers}. Interestingly, the scheme is based on using a PAKE (password authenticated key exchange) protocol. We demonstrate that {\em our scheme provides better security guarantees than previous efforts}. We show both the effectiveness and the efficiency of our scheme, via simulations using realistic datasets and an implementation.

Available format(s)
Publication info
Preprint. MINOR revision.
Contact author(s)
jian liu @ aalto fi
2016-09-07: last of 7 revisions
2015-05-13: received
See all versions
Short URL
Creative Commons Attribution


      author = {Jian Liu and N. Asokan and Benny Pinkas},
      title = {Secure Deduplication of Encrypted Data without Additional Independent Servers},
      howpublished = {Cryptology ePrint Archive, Paper 2015/455},
      year = {2015},
      note = {\url{}},
      url = {}
Note: In order to protect the privacy of readers, does not use cookies or embedded third party content.