Open Access Open Access  Restricted Access Subscription Access

Authorized Client-side Deduplication Using Access Policy-based Convergent Encryption

Taek-Young Youn,
Ku-Young Chang,
Kyung Hyune Rhee,
Sang Uk Shin,

Abstract


This paper proposes the method to provide efficient use of cloud storage while supporting secure data sharing in the cloud. In order to provide authorized deduplication, we use the convergent encryption scheme and apply an access privilege to generate a convergent key. Because of this, the user without proper privileges will not be able to generate the convergent key and thus cannot access the shared data. To verify the ownership of the file in the client-side deduplication procedure, we also propose a new proofs of ownership protocol based on an existing Merkle Tree-based protocol. Our scheme provides an adequate trade-off between security and storage space efficiency. By executing the deduplication for users with the same privilege, the effect of deduplication can be reduced. However, in view of the data sharing, our approach has as advantage in the sense that only authorized users can access the files encrypted based on privileges allowed to the users. The proposed scheme is very suitable for the hybrid cloud model considering both the data security and the storage efficiency.


Citation Format:
Taek-Young Youn, Ku-Young Chang, Kyung Hyune Rhee, Sang Uk Shin, "Authorized Client-side Deduplication Using Access Policy-based Convergent Encryption," Journal of Internet Technology, vol. 19, no. 4 , pp. 1229-1240, Jul. 2018.

Full Text:

PDF

Refbacks

  • There are currently no refbacks.





Published by Executive Committee, Taiwan Academic Network, Ministry of Education, Taipei, Taiwan, R.O.C
JIT Editorial Office, Library and Information Center, National Dong Hwa University
No. 1, Sec. 2, Da Hsueh Rd. Shoufeng, Hualien 97401, Taiwan, R.O.C.
Tel: +886-3-931-7017  E-mail: jit.editorial@gmail.com