Secure Cloud Storage with Joint Deduplication and Erasure Protection

Rasmus Vestergaard; Elena Pagnin; Rohon Kundu; Daniel E. Lucani

doi:10.1109/CLOUD55607.2022.00078

Secure Cloud Storage with Joint Deduplication and Erasure Protection

Rasmus Vestergaard, Elena Pagnin, Rohon Kundu, Daniel E. Lucani

Aarhus University

Research output: Chapter in Book/Report/Conference proceeding › Paper in conference proceeding › peer-review

Abstract

This work proposes a novel design for secure cloud storage systems using a third party to meet three seemingly opposing demands: reduce storage requirements on the cloud, protect against erasures (data loss), and maintain confidentiality of the data. More specifically, we achieve storage cost reductions using data deduplication without requiring system users to trust that the cloud operates honestly. We analyze the security of our scheme against honest-but-curious and covert adversaries that may collude with multiple parties and show that no novel sensitive information can be inferred, assuming random oracles and a high min-entropy data source. We also provide a mathematical analysis to characterize its potential for compression given the popularity of individual chunks of data and its overall erasure protection capabilities. In fact, we show that the storage cost of our scheme for a chunk with r replicas is O(log(r)/r), while deduplication without security or reliability considerations is O(1/r), i.e., our added cost for providing reliability and security is only O(log(r)). We provide a proof of concept implementation to simulate performance and verify our analytical results.

Original language	English
Title of host publication	2022 IEEE 15th International Conference on Cloud Computing (IEEE CLOUD 2022)
Publisher	IEEE - Institute of Electrical and Electronics Engineers Inc.
Pages	554-563
ISBN (Electronic)	978-1-6654-8137-3
ISBN (Print)	978-1-6654-8138-0
DOIs	https://doi.org/10.1109/CLOUD55607.2022.00078
Publication status	Published - 2022 Aug 22
Event	2022 IEEE 15th International Conference on Cloud Computing (CLOUD) - Barcelona, Spain, Barcelona, Spain Duration: 2022 Jul 11 → 2022 Jul 15 Conference number: 15 https://conferences.computer.org/cloud/2022/

Conference

Conference	2022 IEEE 15th International Conference on Cloud Computing (CLOUD)
Country/Territory	Spain
City	Barcelona
Period	2022/07/11 → 2022/07/15
Internet address	https://conferences.computer.org/cloud/2022/

Subject classification (UKÄ)

Computer Science

Access to Document

10.1109/CLOUD55607.2022.00078

SMARTY: Säkra mjukvaruuppdateringar för den smarta staden
Hell, M., Magnusson, B., Gehrmann, C., Paladi, N., Karlsson, L., Sönnerup, J., Johnsson, B. A., Hedin, G., Nordahl, M., Pagnin, E., Kundu, R. & Åkesson, A.
Swedish Foundation for Strategic Research, SSF
2018/03/01 → 2023/02/28
Project: Research

Cite this

@inproceedings{3027b2ef90eb4464afd698ecdc13d92e,

title = "Secure Cloud Storage with Joint Deduplication and Erasure Protection",

abstract = "This work proposes a novel design for secure cloud storage systems using a third party to meet three seemingly opposing demands: reduce storage requirements on the cloud, protect against erasures (data loss), and maintain confidentiality of the data. More specifically, we achieve storage cost reductions using data deduplication without requiring system users to trust that the cloud operates honestly. We analyze the security of our scheme against honest-but-curious and covert adversaries that may collude with multiple parties and show that no novel sensitive information can be inferred, assuming random oracles and a high min-entropy data source. We also provide a mathematical analysis to characterize its potential for compression given the popularity of individual chunks of data and its overall erasure protection capabilities. In fact, we show that the storage cost of our scheme for a chunk with r replicas is O(log(r)/r), while deduplication without security or reliability considerations is O(1/r), i.e., our added cost for providing reliability and security is only O(log(r)). We provide a proof of concept implementation to simulate performance and verify our analytical results.",

author = "Rasmus Vestergaard and Elena Pagnin and Rohon Kundu and Lucani, {Daniel E.}",

year = "2022",

month = aug,

day = "22",

doi = "10.1109/CLOUD55607.2022.00078",

language = "English",

isbn = "978-1-6654-8138-0",

pages = "554--563",

booktitle = "2022 IEEE 15th International Conference on Cloud Computing (IEEE CLOUD 2022)",

publisher = "IEEE - Institute of Electrical and Electronics Engineers Inc.",

address = "United States",

note = " 2022 IEEE 15th International Conference on Cloud Computing (CLOUD) ; Conference date: 11-07-2022 Through 15-07-2022",

url = "https://conferences.computer.org/cloud/2022/",

}

Vestergaard, R, Pagnin, E , Kundu, R & Lucani, DE 2022, Secure Cloud Storage with Joint Deduplication and Erasure Protection. in 2022 IEEE 15th International Conference on Cloud Computing (IEEE CLOUD 2022). IEEE - Institute of Electrical and Electronics Engineers Inc., pp. 554-563, 2022 IEEE 15th International Conference on Cloud Computing (CLOUD), Barcelona, Spain, 2022/07/11. https://doi.org/10.1109/CLOUD55607.2022.00078

Secure Cloud Storage with Joint Deduplication and Erasure Protection. / Vestergaard, Rasmus; Pagnin, Elena ; Kundu, Rohon et al.

2022 IEEE 15th International Conference on Cloud Computing (IEEE CLOUD 2022). IEEE - Institute of Electrical and Electronics Engineers Inc., 2022. p. 554-563.

Research output: Chapter in Book/Report/Conference proceeding › Paper in conference proceeding › peer-review

TY - GEN

T1 - Secure Cloud Storage with Joint Deduplication and Erasure Protection

AU - Vestergaard, Rasmus

AU - Pagnin, Elena

AU - Kundu, Rohon

AU - Lucani, Daniel E.

N1 - Conference code: 15

PY - 2022/8/22

Y1 - 2022/8/22

N2 - This work proposes a novel design for secure cloud storage systems using a third party to meet three seemingly opposing demands: reduce storage requirements on the cloud, protect against erasures (data loss), and maintain confidentiality of the data. More specifically, we achieve storage cost reductions using data deduplication without requiring system users to trust that the cloud operates honestly. We analyze the security of our scheme against honest-but-curious and covert adversaries that may collude with multiple parties and show that no novel sensitive information can be inferred, assuming random oracles and a high min-entropy data source. We also provide a mathematical analysis to characterize its potential for compression given the popularity of individual chunks of data and its overall erasure protection capabilities. In fact, we show that the storage cost of our scheme for a chunk with r replicas is O(log(r)/r), while deduplication without security or reliability considerations is O(1/r), i.e., our added cost for providing reliability and security is only O(log(r)). We provide a proof of concept implementation to simulate performance and verify our analytical results.

AB - This work proposes a novel design for secure cloud storage systems using a third party to meet three seemingly opposing demands: reduce storage requirements on the cloud, protect against erasures (data loss), and maintain confidentiality of the data. More specifically, we achieve storage cost reductions using data deduplication without requiring system users to trust that the cloud operates honestly. We analyze the security of our scheme against honest-but-curious and covert adversaries that may collude with multiple parties and show that no novel sensitive information can be inferred, assuming random oracles and a high min-entropy data source. We also provide a mathematical analysis to characterize its potential for compression given the popularity of individual chunks of data and its overall erasure protection capabilities. In fact, we show that the storage cost of our scheme for a chunk with r replicas is O(log(r)/r), while deduplication without security or reliability considerations is O(1/r), i.e., our added cost for providing reliability and security is only O(log(r)). We provide a proof of concept implementation to simulate performance and verify our analytical results.

U2 - 10.1109/CLOUD55607.2022.00078

DO - 10.1109/CLOUD55607.2022.00078

M3 - Paper in conference proceeding

SN - 978-1-6654-8138-0

SP - 554

EP - 563

BT - 2022 IEEE 15th International Conference on Cloud Computing (IEEE CLOUD 2022)

PB - IEEE - Institute of Electrical and Electronics Engineers Inc.

T2 - 2022 IEEE 15th International Conference on Cloud Computing (CLOUD)

Y2 - 11 July 2022 through 15 July 2022

ER -

Secure Cloud Storage with Joint Deduplication and Erasure Protection

Abstract

Conference

Subject classification (UKÄ)

Access to Document

Fingerprint

Projects

SMARTY: Säkra mjukvaruuppdateringar för den smarta staden

Cite this