Device-enhanced secure cloud storage with keyword searchable encryption and deduplication
We observe that server-aided message-locked encryption (MLE) and server-aided public key encryption with keyword search (PEKS) can be integrated into one cloud storage system to support both deduplication and keyword search over encrypted outsourced data. However, the system is confronted with a pot...
Saved in:
Main Authors: | , , |
---|---|
Format: | text |
Language: | English |
Published: |
Institutional Knowledge at Singapore Management University
2024
|
Subjects: | |
Online Access: | https://ink.library.smu.edu.sg/sis_research/9796 |
Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
Institution: | Singapore Management University |
Language: | English |
id |
sg-smu-ink.sis_research-10796 |
---|---|
record_format |
dspace |
spelling |
sg-smu-ink.sis_research-107962024-12-12T09:00:03Z Device-enhanced secure cloud storage with keyword searchable encryption and deduplication JIANG, Changsong XU, Chunxiang YANG, Guomin We observe that server-aided message-locked encryption (MLE) and server-aided public key encryption with keyword search (PEKS) can be integrated into one cloud storage system to support both deduplication and keyword search over encrypted outsourced data. However, the system is confronted with a potential key management problem: a user has to store her/his private key in all potential clients for data access, thereby leading to security concerns about key migration among different clients and key storage in multiple clients. To alleviate the problem, we present a device-aided private key recovery mechanism for public-key cryptosystems, which enables a user holding a personal device and a password to recover her/his private key in any client. Such recovery is accomplished with the combination of an oblivious protocol and short-authentication-string message authentication, which does not require any secure link between the device and a client while guaranteeing the security of the password and the private key. Based on the presented mechanism, we propose a device-enhanced secure cloud storage system with keyword searchable encryption and deduplication, dubbed DULCET. We analyze the security of DULCET and conduct a comprehensive performance evaluation, which shows that DULCET is secure and efficient. 2024-09-16T07:00:00Z text https://ink.library.smu.edu.sg/sis_research/9796 info:doi/10.1007/978-3-031-70903-6_20 Research Collection School Of Computing and Information Systems eng Institutional Knowledge at Singapore Management University Private key recovery mechanism Public-key cryptosystems DULCET PEKS Information Security |
institution |
Singapore Management University |
building |
SMU Libraries |
continent |
Asia |
country |
Singapore Singapore |
content_provider |
SMU Libraries |
collection |
InK@SMU |
language |
English |
topic |
Private key recovery mechanism Public-key cryptosystems DULCET PEKS Information Security |
spellingShingle |
Private key recovery mechanism Public-key cryptosystems DULCET PEKS Information Security JIANG, Changsong XU, Chunxiang YANG, Guomin Device-enhanced secure cloud storage with keyword searchable encryption and deduplication |
description |
We observe that server-aided message-locked encryption (MLE) and server-aided public key encryption with keyword search (PEKS) can be integrated into one cloud storage system to support both deduplication and keyword search over encrypted outsourced data. However, the system is confronted with a potential key management problem: a user has to store her/his private key in all potential clients for data access, thereby leading to security concerns about key migration among different clients and key storage in multiple clients. To alleviate the problem, we present a device-aided private key recovery mechanism for public-key cryptosystems, which enables a user holding a personal device and a password to recover her/his private key in any client. Such recovery is accomplished with the combination of an oblivious protocol and short-authentication-string message authentication, which does not require any secure link between the device and a client while guaranteeing the security of the password and the private key. Based on the presented mechanism, we propose a device-enhanced secure cloud storage system with keyword searchable encryption and deduplication, dubbed DULCET. We analyze the security of DULCET and conduct a comprehensive performance evaluation, which shows that DULCET is secure and efficient. |
format |
text |
author |
JIANG, Changsong XU, Chunxiang YANG, Guomin |
author_facet |
JIANG, Changsong XU, Chunxiang YANG, Guomin |
author_sort |
JIANG, Changsong |
title |
Device-enhanced secure cloud storage with keyword searchable encryption and deduplication |
title_short |
Device-enhanced secure cloud storage with keyword searchable encryption and deduplication |
title_full |
Device-enhanced secure cloud storage with keyword searchable encryption and deduplication |
title_fullStr |
Device-enhanced secure cloud storage with keyword searchable encryption and deduplication |
title_full_unstemmed |
Device-enhanced secure cloud storage with keyword searchable encryption and deduplication |
title_sort |
device-enhanced secure cloud storage with keyword searchable encryption and deduplication |
publisher |
Institutional Knowledge at Singapore Management University |
publishDate |
2024 |
url |
https://ink.library.smu.edu.sg/sis_research/9796 |
_version_ |
1819113141321072640 |