Paper 2021/940

SecretStore: A Secrecy as a Service model to enable the Cloud Storage to store user's secret data

Ripon Patgiri, Malaya Dutta Borah, and Laiphrakpam Dolendro Singh

Abstract

Data secrecy is a major concern in many domains. Nowadays, the data are kept in tight security with high privacy. Users do not want to share their secret information with anyone; however, the users' confidential data are not protected from the administrators. Administrators can read the users' data. Why should any Administrator read users' data? To address this issue, we propose a new secrecy protocol to store data secretly, named Secret Cloud Storage, SecretStore for short, to enable Secrecy as a Service model over the Cloud Computing paradigm. This article demonstrates how to protect users' data from any unintended users, including the data administrators. Moreover, we introduce tight security using the client-side symmetric cryptography method. In addition, we devise a forgetful private key to generate or regenerate a private key to encrypt or decrypt based on a secret word. We also show how to strengthen the weak password. Finally, we demonstrate how to implement the Secrecy as a Service model in Cloud Storage using highly unpredictable private keys.

Note: Submitted to IEEE for possible publication

Metadata
Available format(s)
PDF
Category
Applications
Publication info
Preprint. MINOR revision.
Keywords
secret-key cryptographypublic-key cryptographypseudo-randomness
Contact author(s)
ripon @ cse nits ac in
History
2021-07-28: revised
2021-07-13: received
See all versions
Short URL
https://ia.cr/2021/940
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2021/940,
      author = {Ripon Patgiri and Malaya Dutta Borah and Laiphrakpam Dolendro Singh},
      title = {{SecretStore}: A Secrecy as a Service model to enable the Cloud Storage to store user's secret data},
      howpublished = {Cryptology {ePrint} Archive, Paper 2021/940},
      year = {2021},
      url = {https://eprint.iacr.org/2021/940}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.