Cryptology ePrint Archive: Report 2018/748

Definitions for Plaintext-Existence Hiding in Cloud Storage

Colin Boyd and Gareth T. Davies and Kristian Gjøsteen and Håvard Raddum and Mohsen Toorani

Abstract: Cloud storage services use deduplication for saving bandwidth and storage. An adversary can exploit side-channel information in several attack scenarios when deduplication takes place at the client side, leaking information on whether a specific plaintext exists in the cloud storage. Generalising existing security definitions, we introduce formal security games for a number of possible adversaries in this domain, and show that games representing all natural adversarial behaviors are in fact equivalent. These results allow users and practitioners alike to accurately assess the vulnerability of deployed systems to this real-world concern.

Category / Keywords:

Original Publication (with minor differences): ARES-SECPID 2018
DOI:
10.1145/3230833.3234515

Date: received 14 Aug 2018, last revised 14 Aug 2018

Contact author: gareth davies at ntnu no

Available format(s): PDF | BibTeX Citation

Version: 20180817:113715 (All versions of this report)

Short URL: ia.cr/2018/748


[ Cryptology ePrint archive ]