Bloom Filter Based Privacy Preserving Deduplication System

Deduplication is a data reduction technique which eliminates uploading and storing redundant data. Therefore, it is widely adopted in cloud storage services to reduce communication and storage overhead. However, deduplication can be used as a side channel to learn the existence of a particular data in cloud storage thereby raising significant privacy issues. The existing solutions delay deduplication process to hide information regarding the presence of data. These solutions increase communication overhead as the client needs to send data even if it is present on storage. In this paper, we present a novel privacy preserving deduplication approach using bloom filter. In our approach, bloom filter (containing blocks of data) is used as a deduplication identity. When a client sends an upload request, the server responds by sending a genuine bloom filter (if data exists) along with some dummy filters. Now, that client who genuinely owns the data, can learn the existence information by computing bloom filter of the data. Further, client does not need to send the data if it exists on storage. Security analysis proves that our approach provides privacy to data at deduplication system. We implement the approach and demonstrate that communication overhead is significantly less in our approach than the existing approaches.

[1]  Benny Pinkas,et al.  Secure Deduplication of Encrypted Data without Additional Independent Servers , 2015, CCS.

[2]  Vijay Laxmi,et al.  DroidOLytics: Robust Feature Signature for Repackaged Android Apps on Official and Third Party Android Markets , 2013, 2013 2nd International Conference on Advanced Computing, Networking and Security.

[3]  Jeremy Clark,et al.  Scantegrity: End-to-End Voter-Verifiable Optical- Scan Voting , 2008, IEEE Security & Privacy.

[4]  Jay Dave,et al.  Securing SQL with Access Control for Database as a Service Model , 2016, ICTCS.

[5]  Kwangjo Kim,et al.  Differentially private client-side data deduplication protocol for cloud storage services , 2015, Secur. Commun. Networks.

[6]  Alessandro Sorniotti,et al.  A Secure Data Deduplication Scheme for Cloud Storage , 2014, Financial Cryptography.

[7]  Vijay Kumar,et al.  Platform Neutral Sandbox for Analyzing Malware and Resource Hogger Apps , 2014, SecureComm.

[8]  Mihir Bellare,et al.  Message-Locked Encryption and Secure Deduplication , 2013, EUROCRYPT.

[9]  Vijay Laxmi,et al.  Secure Random Encryption for Deduplicated Storage , 2017, ICISS.

[10]  Christoph Neumann,et al.  Improving the Resistance to Side-Channel Attacks on Cloud Storage Services , 2012, 2012 5th International Conference on New Technologies, Mobility and Security (NTMS).

[11]  Vijay Laxmi,et al.  Secure and efficient proof of ownership for deduplicated cloud storage , 2017, SIN.

[12]  Refik Molva,et al.  PerfectDedup: Secure Data Deduplication , 2015, DPM/QASA@ESORICS.

[13]  Emmanuelle Anceaume,et al.  A Secure Two-Phase Data Deduplication Scheme , 2014, 2014 IEEE Intl Conf on High Performance Computing and Communications, 2014 IEEE 6th Intl Symp on Cyberspace Safety and Security, 2014 IEEE 11th Intl Conf on Embedded Software and Syst (HPCC,CSS,ICESS).

[14]  Lukas Kencl,et al.  Enhanced Secure Thresholded Data Deduplication Scheme for Cloud Storage , 2018, IEEE Transactions on Dependable and Secure Computing.

[15]  Vijay Laxmi,et al.  AndroSimilar: robust statistical feature signature for Android malware detection , 2013, SIN.

[16]  Mi Wen,et al.  A Novel Deduplication-Based Covert Channel in Cloud Storage Service , 2014, GLOBECOM 2014.

[17]  Marvin Theimer,et al.  Reclaiming space from duplicate files in a serverless distributed file system , 2002, Proceedings 22nd International Conference on Distributed Computing Systems.

[18]  Benny Pinkas,et al.  Side Channels in Cloud Services: Deduplication in Cloud Storage , 2010, IEEE Security & Privacy.

[19]  Tobias Pulls (More) Side Channels in Cloud Storage - Linking Data to Users , 2011, PrimeLife.

[20]  Muttukrishnan Rajarajan,et al.  Android Security: A Survey of Issues, Malware Penetration, and Defenses , 2015, IEEE Communications Surveys & Tutorials.

[21]  Muttukrishnan Rajarajan,et al.  Evaluation of Android Anti-malware Techniques against Dalvik Bytecode Obfuscation , 2014, 2014 IEEE 13th International Conference on Trust, Security and Privacy in Computing and Communications.

[22]  Dooho Choi,et al.  Privacy-preserving cross-user source-based data deduplication in cloud storage , 2012, 2012 International Conference on ICT Convergence (ICTC).

[23]  Burton H. Bloom,et al.  Space/time trade-offs in hash coding with allowable errors , 1970, CACM.