Abstract
Deduplication is a data reduction technique which eliminates uploading and storing redundant data. Therefore, it is widely adopted in cloud storage services to reduce communication and storage overhead. However, deduplication can be used as a side channel to learn the existence of a particular data in cloud storage thereby raising significant privacy issues. The existing solutions delay deduplication process to hide information regarding the presence of data. These solutions increase communication overhead as the client needs to send data even if it is present on storage. In this paper, we present a novel privacy preserving deduplication approach using bloom filter. In our approach, bloom filter (containing blocks of data) is used as a deduplication identity. When a client sends an upload request, the server responds by sending a genuine bloom filter (if data exists) along with some dummy filters. Now, that client who genuinely owns the data, can learn the existence information by computing bloom filter of the data. Further, client does not need to send the data if it exists on storage. Security analysis proves that our approach provides privacy to data at deduplication system. We implement the approach and demonstrate that communication overhead is significantly less in our approach than the existing approaches.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Bloom, B.H.: Space/time trade-offs in hash coding with allowable errors. Commun. ACM 13(7), 422–426 (1970)
Douceur, J.R., Adya, A., Bolosky, W.J., Simon, P., Theimer, M.: Reclaiming space from duplicate files in a serverless distributed file system. In: Proceedings of 22nd International Conference on Distributed Computing Systems, pp. 617–624. IEEE (2002)
Harnik, D., Pinkas, B., Shulman-Peleg, A.: Side channels in cloud services: deduplication in cloud storage. IEEE Secur. Privacy 6, 40–47 (2010)
Pulls, T.: (More) side channels in cloud storage. In: Camenisch, J., Crispo, B., Fischer-Hübner, S., Leenes, R., Russello, G. (eds.) Privacy and Identity 2011. IAICT, vol. 375, pp. 102–115. Springer, Heidelberg (2012). https://doi.org/10.1007/978-3-642-31668-5_8
Lee, S., Choi, D.: Privacy-preserving cross-user source-based data deduplication in cloud storage. In: 2012 International Conference on ICT Convergence (ICTC), pp. 329–330. IEEE, October 2012
Heen, O., Neumann, C., Montalvo, L., Defrance, S.: Improving the resistance to side-channel attacks on cloud storage services. In: 2012 5th International Conference on New Technologies, Mobility and Security (NTMS), pp. 1–5. IEEE, May 2012
Bellare, M., Keelveedhi, S., Ristenpart, T.: Message-locked encryption and secure deduplication. In: Johansson, T., Nguyen, P.Q. (eds.) EUROCRYPT 2013. LNCS, vol. 7881, pp. 296–312. Springer, Heidelberg (2013). https://doi.org/10.1007/978-3-642-38348-9_18
Faruki, P., Laxmi, V., Ganmoor, V., Gaur, M.S., Bharmal, A.: Droidolytics: robust feature signature for repackaged android apps on official and third party android markets. In: 2013 2nd International Conference on Advanced Computing, Networking and Security (ADCONS), pp. 247–252. IEEE, December 2013
Faruki, P., Ganmoor, V., Laxmi, V., Gaur, M.S., Bharmal, A.: AndroSimilar: robust statistical feature signature for Android malware detection. In: Proceedings of the 6th International Conference on Security of Information and Networks, pp. 152–159. ACM, November 2013
Stanek, J., Sorniotti, A., Androulaki, E., Kencl, L.: A secure data deduplication scheme for cloud storage. In: Christin, N., Safavi-Naini, R. (eds.) FC 2014. LNCS, vol. 8437, pp. 99–118. Springer, Heidelberg (2014). https://doi.org/10.1007/978-3-662-45472-5_8
Meye, P., Raipin, P., Tronel, F., Anceaume, E.: A secure two-phase data deduplication scheme. In: 2014 IEEE International Conference on High Performance Computing and Communications, 2014 IEEE 6th International Symposium on Cyberspace Safety and Security, 2014 IEEE 11th International Conference on Embedded Software and Syst (HPCC, CSS, ICESS), pp. 802–809. IEEE (2014)
Faruki, P., Kumar, V., Ammar, B., Gaur, M.S., Laxmi, V., Conti, M.: Platform neutral sandbox for analyzing malware and resource hogger apps. In: Tian, J., Jing, J., Srivatsa, M. (eds.) SecureComm 2014. LNICST, vol. 152, pp. 556–560. Springer, Cham (2015). https://doi.org/10.1007/978-3-319-23829-6_43
Dave, J.: Secure SQL with access control for database as a service model. Doctoral dissertation, Dhirubhai Ambani Institute of Information and Communication Technology (2014)
Faruki, P., Bharmal, A., Laxmi, V., Gaur, M.S., Conti, M., Rajarajan, M.: Evaluation of android anti-malware techniques against dalvik bytecode obfuscation. In: 2014 IEEE 13th International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom), pp. 414–421. IEEE, September 2014
Shin, Y., Kim, K.: Differentially private clientside data deduplication protocol for cloud storage services. Secur. Commun. Netw. 8(12), 2114–2123 (2015)
Liu, J., Asokan, N., Pinkas, B.: Secure deduplication of encrypted data without additional independent servers. In: Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security, pp. 874–885. ACM, October 2015
Hovhannisyan, H., Lu, K., Yang, R., Qi, W., Wang, J., Wen, M.: A novel deduplication-based covert channel in cloud storage service. In: 2015 IEEE Global Communications Conference (GLOBECOM), pp. 1–6. IEEE, December 2015
Puzio, P., Molva, R., Önen, M., Loureiro, S.: PerfectDedup: secure data deduplication. In: Garcia-Alfaro, J., Navarro-Arribas, G., Aldini, A., Martinelli, F., Suri, N. (eds.) DPM/QASA -2015. LNCS, vol. 9481, pp. 150–166. Springer, Cham (2016). https://doi.org/10.1007/978-3-319-29883-2_10
Faruki, P., et al.: Android security: a survey of issues, malware penetration, and defenses. IEEE Commun. Surv. Tutorials 17(2), 998–1022 (2015)
Stanek, J., Kencl, L.: Enhanced secure thresholded data deduplication scheme for cloud storage. IEEE Trans. Dependable Secure Comput. 15, 694–707 (2016)
Networking, C.V.: Cisco Global Cloud Index: Forecast and Methodology, 2016–2021. White paper. Cisco Public, San Jose (2016)
Dave, J., Das, M.L.: Securing SQL with access control for database as a service model. In: Proceedings of the Second International Conference on Information and Communication Technology for Competitive Strategies, p. 104. ACM, March 2016
Dave, J., Saharan, S., Faruki, P., Laxmi, V., Gaur, M.S.: Secure random encryption for deduplicated storage. In: Shyamasundar, R.K., Singh, V., Vaidya, J. (eds.) ICISS 2017. LNCS, vol. 10717, pp. 164–176. Springer, Cham (2017). https://doi.org/10.1007/978-3-319-72598-7_10
Dave, J., Faruki, P., Laxmi, V., Bezawada, B., Gaur, M.: Secure and efficient proof of ownership for deduplicated cloud storage. In: Proceedings of the 10th International Conference on Security of Information and Networks, pp. 19–26. ACM, October 2017
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2019 Springer Nature Singapore Pte Ltd.
About this paper
Cite this paper
Dave, J., Laxmi, V., Faruki, P., Gaur, M., Shah, B. (2019). Bloom Filter Based Privacy Preserving Deduplication System. In: Nandi, S., Jinwala, D., Singh, V., Laxmi, V., Gaur, M., Faruki, P. (eds) Security and Privacy. ISEA-ISAP 2019. Communications in Computer and Information Science, vol 939. Springer, Singapore. https://doi.org/10.1007/978-981-13-7561-3_2
Download citation
DOI: https://doi.org/10.1007/978-981-13-7561-3_2
Published:
Publisher Name: Springer, Singapore
Print ISBN: 978-981-13-7560-6
Online ISBN: 978-981-13-7561-3
eBook Packages: Computer ScienceComputer Science (R0)