Bifrost : A Secure, Scalable and Efficient File Sharing System Based on Dual Deduplication
(2022) 11th IEEE International Conference on Cloud Networking, CloudNet 2022 p.203-210- Abstract
We consider the problem of sharing sensitive files across users while relying on a common, untrusted third-party, e.g., a Cloud Storage Provider (CSP). Although users can rely on a secure peer-to-peer (P2P) channel for file sharing, this introduces potential delay on the data transfer and requires the sender to remain connected while the transfer process occurs. Instead, users can upload information about the file on a common CSP and share only the essential information that enables the receiver to recover the original file. However, using encryption to protect the uploaded information from the untrusted cloud hinders deduplication capabilities, which is undesirable for CSPs. This paper introduces Bifrost, an innovative file sharing... (More)
We consider the problem of sharing sensitive files across users while relying on a common, untrusted third-party, e.g., a Cloud Storage Provider (CSP). Although users can rely on a secure peer-to-peer (P2P) channel for file sharing, this introduces potential delay on the data transfer and requires the sender to remain connected while the transfer process occurs. Instead, users can upload information about the file on a common CSP and share only the essential information that enables the receiver to recover the original file. However, using encryption to protect the uploaded information from the untrusted cloud hinders deduplication capabilities, which is undesirable for CSPs. This paper introduces Bifrost, an innovative file sharing method inspired by recent results on dual deduplication. Bifrost achieves secure file sharing using an untrusted cloud, and simultaneously guarantees that (1) the CSP can efficiently deduplicate outsourced data; (2) the secure P2P channel is used only to transmit short, but crucial information; (3) users can check for data integrity, i.e., detect if the CSP alters the outsourced data; and (4) only the sender and the intended receiver can recover the sensitive file, i.e., the cloud or no malicious adversary can infer useful information about the shared file. We analyze compression and bandwidth performance using a proof-of-concept implementation. Our experiments show that secure file sharing can be achieved by sending as little as 640 bits on the P2P channel, irrespective of file size, while the CSP that aids the sharing can enjoy a deduplication rate of 86.9 %.
(Less)
- author
- Sehat, Hadi LU ; Lucani, Daniel E. and Pagnin, Elena LU
- organization
- publishing date
- 2022
- type
- Chapter in Book/Report/Conference proceeding
- publication status
- published
- subject
- host publication
- Proceedings of the 2022 IEEE Conference on Cloud Networking 2022, CloudNet 2022
- editor
- Secci, Stefano ; Durairajan, Ramakrishnan ; Linguaglossa, Leonardo ; Kamiyama, Noriaki ; Nogueira, Michele and Rovedakis, Stephane
- pages
- 8 pages
- publisher
- IEEE - Institute of Electrical and Electronics Engineers Inc.
- conference name
- 11th IEEE International Conference on Cloud Networking, CloudNet 2022
- conference location
- Paris, France
- conference dates
- 2022-11-07 - 2022-11-10
- external identifiers
-
- scopus:85146111480
- ISBN
- 9781665486279
- DOI
- 10.1109/CloudNet55617.2022.9978810
- language
- English
- LU publication?
- yes
- id
- a31880a0-5041-4c87-8c06-7567fd09e003
- date added to LUP
- 2023-02-16 11:37:41
- date last changed
- 2023-02-16 11:37:41
@inproceedings{a31880a0-5041-4c87-8c06-7567fd09e003, abstract = {{<p>We consider the problem of sharing sensitive files across users while relying on a common, untrusted third-party, e.g., a Cloud Storage Provider (CSP). Although users can rely on a secure peer-to-peer (P2P) channel for file sharing, this introduces potential delay on the data transfer and requires the sender to remain connected while the transfer process occurs. Instead, users can upload information about the file on a common CSP and share only the essential information that enables the receiver to recover the original file. However, using encryption to protect the uploaded information from the untrusted cloud hinders deduplication capabilities, which is undesirable for CSPs. This paper introduces Bifrost, an innovative file sharing method inspired by recent results on dual deduplication. Bifrost achieves secure file sharing using an untrusted cloud, and simultaneously guarantees that (1) the CSP can efficiently deduplicate outsourced data; (2) the secure P2P channel is used only to transmit short, but crucial information; (3) users can check for data integrity, i.e., detect if the CSP alters the outsourced data; and (4) only the sender and the intended receiver can recover the sensitive file, i.e., the cloud or no malicious adversary can infer useful information about the shared file. We analyze compression and bandwidth performance using a proof-of-concept implementation. Our experiments show that secure file sharing can be achieved by sending as little as 640 bits on the P2P channel, irrespective of file size, while the CSP that aids the sharing can enjoy a deduplication rate of 86.9 %.</p>}}, author = {{Sehat, Hadi and Lucani, Daniel E. and Pagnin, Elena}}, booktitle = {{Proceedings of the 2022 IEEE Conference on Cloud Networking 2022, CloudNet 2022}}, editor = {{Secci, Stefano and Durairajan, Ramakrishnan and Linguaglossa, Leonardo and Kamiyama, Noriaki and Nogueira, Michele and Rovedakis, Stephane}}, isbn = {{9781665486279}}, language = {{eng}}, pages = {{203--210}}, publisher = {{IEEE - Institute of Electrical and Electronics Engineers Inc.}}, title = {{Bifrost : A Secure, Scalable and Efficient File Sharing System Based on Dual Deduplication}}, url = {{http://dx.doi.org/10.1109/CloudNet55617.2022.9978810}}, doi = {{10.1109/CloudNet55617.2022.9978810}}, year = {{2022}}, }