Secure deduplication storage systems supporting keyword search

Data deduplication is an attractive technology to reduce storage space for increasing vast amount of duplicated and redundant data. In a cloud storage system with data deduplication, duplicate copies of data will be eliminated and only one copy will be kept in the storage. To protect the confidentia...

Descripción completa

Detalles Bibliográficos
Autores: Li, Jin, Chen, Xiaofeng, Xhafa Xhafa, Fatos|||0000-0001-6569-5497, Barolli, Leonard
Tipo de recurso: artículo
Fecha de publicación:2015
País:España
Institución:Universitat Politècnica de Catalunya (UPC)
Repositorio:UPCommons. Portal del coneixement obert de la UPC
Idioma:inglés
OAI Identifier:oai:upcommons.upc.edu:2117/79891
Acceso en línea:https://hdl.handle.net/2117/79891
https://dx.doi.org/10.1016/j.jcss.2014.12.026
Access Level:acceso abierto
Palabra clave:Cloud computing
Data encryption (Computer science)
Information organization
Information retrieval
data deduplication
outsourcing
privacy
keyword search
encrypted data
Computació en núvol
Informació -- Sistemes d'emmagatzematge i recuperació
Xifratge (Informàtica)
Àrees temàtiques de la UPC::Informàtica::Sistemes d'informació::Emmagatzematge i recuperació de la informació
Àrees temàtiques de la UPC::Informàtica::Arquitectura de computadors
Descripción
Sumario:Data deduplication is an attractive technology to reduce storage space for increasing vast amount of duplicated and redundant data. In a cloud storage system with data deduplication, duplicate copies of data will be eliminated and only one copy will be kept in the storage. To protect the confidentiality of sensitive data while supporting deduplication, the convergent encryption technique has been proposed to encrypt the data before outsourcing. However, the issue of keyword search over encrypted data in deduplication storage system has to be addressed for efficient data utilization. This paper firstly proposes two constructions which support secure keyword search in this scenario. In these constructions, the integrity of the data can be realized by just checking the convergent key, without other traditional integrity auditing mechanisms. Then, two extensions are presented to support fuzzy keyword search and block-level deduplication. Finally, security analysis is given.