VeriDedup: A Verifiable Cloud Data Deduplication Scheme with Integrity and Duplication Proof

dc.contributorAalto Universityen
dc.contributor.authorYu, Xixunen_US
dc.contributor.authorBai, Huien_US
dc.contributor.authorYan, Zhengen_US
dc.contributor.authorZhang, Ruien_US
dc.contributor.departmentDepartment of Communications and Networkingen
dc.contributor.groupauthorNetwork Security and Trusten
dc.contributor.organizationXidian Universityen_US
dc.contributor.organizationUniversity of Delawareen_US
dc.descriptionTallennetaan OA-artikkeli, kun julkaistu
dc.description.abstractData deduplication is a technique to eliminate duplicate data in order to save storage space and enlarge upload bandwidth, which has been applied by cloud storage systems. However, a cloud storage provider (CSP) may tamper user data or cheat users to pay unused storage for duplicate data that are only stored once. Although previous solutions adopt message-locked encryption along with Proof of Retrievability (PoR) to check the integrity of deduplicated encrypted data, they ignore proving the correctness of duplication check during data upload and require the same file to be derived into same verification tags, which suffers from brute-force attacks and restricts users from flexibly creating their own individual verification tags. In this paper, we propose a verifiable deduplication scheme called VeriDedup to address the above problems. It can guarantee the correctness of duplication check and support flexible tag generation for integrity check over encrypted data deduplication in an integrative way. Concretely, we propose a novel Tag-flexible Deduplication-supported Integrity Check Protocol (TDICP) based on Private Information Retrieval (PIR) by introducing a novel verification tag called noteset, which allows multiple users holding the same file to generate their individual verification tags and still supports tag deduplication at the CSP. Furthermore, we make the first attempt to guarantee the correctness of data duplication check by introducing a novel User Determined Duplication Check Protocol (UDDCP) based on Private Set Intersection (PSI), which can resist a CSP from providing a fake duplication check result to users. Security analysis shows the correctness and soundness of our scheme. Simulation studies based on real data show the efficacy and efficiency of our proposed scheme and its significant advantages over prior arts.en
dc.description.versionPeer revieweden
dc.identifier.citationYu, X, Bai, H, Yan, Z & Zhang, R 2023, ' VeriDedup: A Verifiable Cloud Data Deduplication Scheme with Integrity and Duplication Proof ', IEEE Transactions on Dependable and Secure Computing, vol. 20, no. 1, pp. 680-694 .
dc.identifier.otherPURE UUID: bd7908c6-2cef-4a5c-a1e6-ebe4547ce1c8en_US
dc.identifier.otherPURE ITEMURL:
dc.identifier.otherPURE LINK:
dc.identifier.otherPURE FILEURL:
dc.relation.ispartofseriesIEEE Transactions on Dependable and Secure Computingen
dc.relation.ispartofseriesVolume 20, issue 1en
dc.subject.keywordCloud computingen_US
dc.subject.keywordCloud Computingen_US
dc.subject.keywordData Deduplicationen_US
dc.subject.keywordData integrityen_US
dc.subject.keywordDuplication Checken_US
dc.subject.keywordElectronic mailen_US
dc.subject.keywordInformation retrievalen_US
dc.subject.keywordIntegrity Checken_US
dc.subject.keywordPrivate Information Retrievalen_US
dc.subject.keywordVerifiable Computationen_US
dc.titleVeriDedup: A Verifiable Cloud Data Deduplication Scheme with Integrity and Duplication Proofen
dc.typeA1 Alkuperäisartikkeli tieteellisessä aikakauslehdessäfi