Device-enhanced secure cloud storage with keyword searchable encryption and deduplication

We observe that server-aided message-locked encryption (MLE) and server-aided public key encryption with keyword search (PEKS) can be integrated into one cloud storage system to support both deduplication and keyword search over encrypted outsourced data. However, the system is confronted with a pot...

Full description

Saved in:
Bibliographic Details
Main Authors: JIANG, Changsong, XU, Chunxiang, YANG, Guomin
Format: text
Language:English
Published: Institutional Knowledge at Singapore Management University 2024
Subjects:
Online Access:https://ink.library.smu.edu.sg/sis_research/9796
Tags: Add Tag
No Tags, Be the first to tag this record!
Institution: Singapore Management University
Language: English
id sg-smu-ink.sis_research-10796
record_format dspace
spelling sg-smu-ink.sis_research-107962024-12-12T09:00:03Z Device-enhanced secure cloud storage with keyword searchable encryption and deduplication JIANG, Changsong XU, Chunxiang YANG, Guomin We observe that server-aided message-locked encryption (MLE) and server-aided public key encryption with keyword search (PEKS) can be integrated into one cloud storage system to support both deduplication and keyword search over encrypted outsourced data. However, the system is confronted with a potential key management problem: a user has to store her/his private key in all potential clients for data access, thereby leading to security concerns about key migration among different clients and key storage in multiple clients. To alleviate the problem, we present a device-aided private key recovery mechanism for public-key cryptosystems, which enables a user holding a personal device and a password to recover her/his private key in any client. Such recovery is accomplished with the combination of an oblivious protocol and short-authentication-string message authentication, which does not require any secure link between the device and a client while guaranteeing the security of the password and the private key. Based on the presented mechanism, we propose a device-enhanced secure cloud storage system with keyword searchable encryption and deduplication, dubbed DULCET. We analyze the security of DULCET and conduct a comprehensive performance evaluation, which shows that DULCET is secure and efficient. 2024-09-16T07:00:00Z text https://ink.library.smu.edu.sg/sis_research/9796 info:doi/10.1007/978-3-031-70903-6_20 Research Collection School Of Computing and Information Systems eng Institutional Knowledge at Singapore Management University Private key recovery mechanism Public-key cryptosystems DULCET PEKS Information Security
institution Singapore Management University
building SMU Libraries
continent Asia
country Singapore
Singapore
content_provider SMU Libraries
collection InK@SMU
language English
topic Private key recovery mechanism
Public-key cryptosystems
DULCET
PEKS
Information Security
spellingShingle Private key recovery mechanism
Public-key cryptosystems
DULCET
PEKS
Information Security
JIANG, Changsong
XU, Chunxiang
YANG, Guomin
Device-enhanced secure cloud storage with keyword searchable encryption and deduplication
description We observe that server-aided message-locked encryption (MLE) and server-aided public key encryption with keyword search (PEKS) can be integrated into one cloud storage system to support both deduplication and keyword search over encrypted outsourced data. However, the system is confronted with a potential key management problem: a user has to store her/his private key in all potential clients for data access, thereby leading to security concerns about key migration among different clients and key storage in multiple clients. To alleviate the problem, we present a device-aided private key recovery mechanism for public-key cryptosystems, which enables a user holding a personal device and a password to recover her/his private key in any client. Such recovery is accomplished with the combination of an oblivious protocol and short-authentication-string message authentication, which does not require any secure link between the device and a client while guaranteeing the security of the password and the private key. Based on the presented mechanism, we propose a device-enhanced secure cloud storage system with keyword searchable encryption and deduplication, dubbed DULCET. We analyze the security of DULCET and conduct a comprehensive performance evaluation, which shows that DULCET is secure and efficient.
format text
author JIANG, Changsong
XU, Chunxiang
YANG, Guomin
author_facet JIANG, Changsong
XU, Chunxiang
YANG, Guomin
author_sort JIANG, Changsong
title Device-enhanced secure cloud storage with keyword searchable encryption and deduplication
title_short Device-enhanced secure cloud storage with keyword searchable encryption and deduplication
title_full Device-enhanced secure cloud storage with keyword searchable encryption and deduplication
title_fullStr Device-enhanced secure cloud storage with keyword searchable encryption and deduplication
title_full_unstemmed Device-enhanced secure cloud storage with keyword searchable encryption and deduplication
title_sort device-enhanced secure cloud storage with keyword searchable encryption and deduplication
publisher Institutional Knowledge at Singapore Management University
publishDate 2024
url https://ink.library.smu.edu.sg/sis_research/9796
_version_ 1819113141321072640