SDS-Cloud: Secure Deduplication and Sharing Without Third-Party Authorities for Clouds
摘要
Deduplication and data sharing are two crucial technologies designed to enhance the storage and sharing efficiency of cloud service providers. However, existing encryption-based solutions face critical challenges that hinder their effectiveness. (1) Some existing encryption algorithms introduce randomness, which reduces deduplication efficiency and hampers data sharing. (2) Other algorithms attempt to balance deduplication and data sharing but rely on third-party authority servers. To address these challenges, we introduce the SDS-Cloud scheme, which reduces storage overhead for cloud services and promotes the sharing of data. This scheme operates independently of third-party authority servers for both deduplication and data sharing while defending against various types of attacks. Specifically, deduplication is achieved using an optimized message-locked encryption scheme. Unlike traditional message-locked encryption, which introduces randomness, our approach maintains deduplication efficiency while preventing brute-force dictionary attacks. Proxy re-encryption is employed to manage data access rights, enabling data sharing without granting the cloud service provider access to the actual data. Moreover, security analysis shows that the proposed scheme meets the required security standards. Furthermore, simulation experiments demonstrate that our scheme outperforms existing approaches in both repetitive data verification and permission management efficiency.