Publication Type

Journal Article

Version

publishedVersion

Publication Date

5-2022

Abstract

Message-Locked Encryption (MLE) is a useful tool to enable deduplication over encrypted data in cloud storage. It can significantly improve the cloud service quality by eliminating redundancy to save storage resources, and hence user cost, and also providing defense against different types of attacks, such as duplicate faking attack and brute-force attack. A typical MLE scheme only focuses on deduplication. On the other hand, supporting search operations on stored content is another essential requirement for cloud storage. In this article, we present a message-locked searchable encryption (MLSE) scheme in a dual-server setting, which achieves simultaneously the desirable features of supporting deduplication and enabling users to perform search operations over encrypted data. In addition, it supports both multi-keyword and negative keyword searches. We formulate the security notions of MLSE and prove our scheme satisfies all the security requirements. Moreover, we provide an interesting extension of our construction to support Proof of Storage (PoS). Compared with the existing solutions, MLSE achieves better functionalities and efficiency, and hence enables more versatile and efficient cloud storage service.

Keywords

Message-locked encryption, searchable encryption, deduplication, proof of ownership, proof of storage

Discipline

Data Storage Systems | Information Security

Research Areas

Information Systems and Management

Publication

IEEE Transactions on Services Computing

Volume

15

Issue

3

First Page

1664

Last Page

1677

ISSN

1939-1374

Identifier

10.1109/TSC.2020.3006532

Publisher

Institute of Electrical and Electronics Engineers

Additional URL

http://doi.org/10.1109/TSC.2020.3006532

Download

Share

COinS