Paper 2021/683

S2Dedup: SGX-enabled Secure Deduplication

Tânia Esteves, Mariana Miranda, João Paulo, and Bernardo Portela

Abstract

Secure deduplication allows removing duplicate content at third-party storage services while preserving the privacy of users’ data. However, current solutions are built with strict designs that cannot be adapted to storage service and applications with different security and performance requirements. We present S2Dedup, a trusted hardware-based privacy-preserving deduplication system designed to support multiple security schemes that enable different levels of performance, security guarantees and space savings. An in-depth evaluation shows these trade-offs for the distinct Intel SGX-based secure schemes supported by our prototype. Moreover, we propose a novel Epoch and Exact Frequency scheme that prevents frequency analysis leakage attacks present in current deterministic approaches for secure deduplication while maintaining similar performance and space savings to state-of-the-art approaches.

Metadata
Available format(s)
PDF
Category
Applications
Publication info
Published elsewhere. SYSTOR'21: 14th ACM International Systems & Storage Conference
DOI
10.1145/3456727.3463773
Keywords
SecurityDeduplicationTrusted HardwareDistributed Systems
Contact author(s)
blfportela @ gmail com
History
2021-05-28: received
Short URL
https://ia.cr/2021/683
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2021/683,
      author = {Tânia Esteves and Mariana Miranda and João Paulo and Bernardo Portela},
      title = {{S2Dedup}: {SGX}-enabled Secure Deduplication},
      howpublished = {Cryptology {ePrint} Archive, Paper 2021/683},
      year = {2021},
      doi = {10.1145/3456727.3463773},
      url = {https://eprint.iacr.org/2021/683}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.