IACR News item: 13 May 2015
Jian Liu, N. Asokan, Benny Pinkas
ePrint Report
Encrypting data at client-side before uploading it to a cloud storage service is essential for protecting users\' privacy. However client-side encryption is at odds with the standard practice of deduplication. Reconciling client-side encryption with cross-user deduplication has been an active research topic. We present the first secure cross-user deduplication scheme that supports client-side encryption {\\em without requiring any additional independent servers}. Interestingly, the scheme is based on using a PAKE (password
authenticated key exchange) protocol. We
%prove the security of our scheme in the malicious model and
demonstrate that {\\em our scheme provides better security guarantees than previous efforts}.
We examine both the effectiveness and the efficiency of our scheme, via simulations using realistic datasets and a proof-of-concept implementation.
Additional news items may be found on the IACR news page.