重复数据删除存储系统中的信息泄漏问题

Proceedings of the 2016 ACM on Cloud Computing Security Workshop Pub Date : 2016-10-28 DOI:10.1145/2996429.2996432

H. Ritzdorf, Ghassan O. Karame, Claudio Soriente, Srdjan Capkun

{"title":"重复数据删除存储系统中的信息泄漏问题","authors":"H. Ritzdorf, Ghassan O. Karame, Claudio Soriente, Srdjan Capkun","doi":"10.1145/2996429.2996432","DOIUrl":null,"url":null,"abstract":"Most existing cloud storage providers rely on data deduplication in order to significantly save storage costs by storing duplicate data only once. While the literature has thoroughly analyzed client-side information leakage associated with the use of data deduplication techniques in the cloud, no previous work has analyzed the information leakage associated with access trace information information (e.g., object size and timing) that are available whenever a client uploads a file to a curious cloud provider. In this paper, we address this problem and analyze information leakage associated with data deduplication on a curious storage server. We show that even if the data is encrypted using a key not known by the storage server, the latter can still acquire considerable information about the stored files and even determine which files are stored. We validate our results both analytically and experimentally using a number of real storage datasets.","PeriodicalId":373063,"journal":{"name":"Proceedings of the 2016 ACM on Cloud Computing Security Workshop","volume":"37 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2016-10-28","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"13","resultStr":"{\"title\":\"On Information Leakage in Deduplicated Storage Systems\",\"authors\":\"H. Ritzdorf, Ghassan O. Karame, Claudio Soriente, Srdjan Capkun\",\"doi\":\"10.1145/2996429.2996432\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Most existing cloud storage providers rely on data deduplication in order to significantly save storage costs by storing duplicate data only once. While the literature has thoroughly analyzed client-side information leakage associated with the use of data deduplication techniques in the cloud, no previous work has analyzed the information leakage associated with access trace information information (e.g., object size and timing) that are available whenever a client uploads a file to a curious cloud provider. In this paper, we address this problem and analyze information leakage associated with data deduplication on a curious storage server. We show that even if the data is encrypted using a key not known by the storage server, the latter can still acquire considerable information about the stored files and even determine which files are stored. We validate our results both analytically and experimentally using a number of real storage datasets.\",\"PeriodicalId\":373063,\"journal\":{\"name\":\"Proceedings of the 2016 ACM on Cloud Computing Security Workshop\",\"volume\":\"37 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2016-10-28\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"13\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Proceedings of the 2016 ACM on Cloud Computing Security Workshop\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1145/2996429.2996432\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 2016 ACM on Cloud Computing Security Workshop","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/2996429.2996432","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 13

摘要

大多数现有的云存储提供商依赖于重复数据删除，以便通过只存储一次重复数据来显著节省存储成本。虽然文献已经彻底分析了与在云中使用重复数据删除技术相关的客户端信息泄漏，但以前没有工作分析过与访问跟踪信息(例如，对象大小和时间)相关的信息泄漏，这些信息在客户端将文件上传到好奇的云提供商时可用。在本文中，我们解决了这个问题，并分析了在一个奇怪的存储服务器上与重复数据删除相关的信息泄漏。我们表明，即使使用存储服务器不知道的密钥对数据进行加密，后者仍然可以获得关于存储文件的大量信息，甚至确定存储了哪些文件。我们使用一些真实的存储数据集对我们的结果进行了分析和实验验证。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

On Information Leakage in Deduplicated Storage Systems

Most existing cloud storage providers rely on data deduplication in order to significantly save storage costs by storing duplicate data only once. While the literature has thoroughly analyzed client-side information leakage associated with the use of data deduplication techniques in the cloud, no previous work has analyzed the information leakage associated with access trace information information (e.g., object size and timing) that are available whenever a client uploads a file to a curious cloud provider. In this paper, we address this problem and analyze information leakage associated with data deduplication on a curious storage server. We show that even if the data is encrypted using a key not known by the storage server, the latter can still acquire considerable information about the stored files and even determine which files are stored. We validate our results both analytically and experimentally using a number of real storage datasets.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Proceedings of the 2016 ACM on Cloud Computing Security Workshop

自引率

0.00%

发文量

期刊最新文献

Oblivious RAM as a Substrate for Cloud Storage -- The Leakage Challenge Ahead Data Analytics: Understanding Human Behavior based on Mobile Network Data Assured Deletion in the Cloud: Requirements, Challenges and Future Directions On Information Leakage in Deduplicated Storage Systems Executing Boolean Queries on an Encrypted Bitmap Index