(2014) Brief Announcement: Towards Security and Privacy for Outsourced Data in the Multi-party Setting.
Abstract
Cloud storage has rapidly acquired popularity among users, constituting a seamless solution for the backup, synchronization, and sharing of large amounts of data. This technology, however, puts user data in the direct control of cloud service providers, which raises increasing security and privacy concerns related to the integrity of outsourced data, the accidental or intentional leakage of sensitive information, the profiling of user activities and so on. We present GORAM, a cryptographic system that protects the secrecy and integrity of the data outsourced to an untrusted server and guarantees the anonymity and unlinkability of consecutive accesses to such data. GORAM allows the database owner to share outsourced data with other clients, selectively granting them read and write permissions. GORAM is the first system to achieve such a wide range of security and privacy properties for outsourced storage. Technically, GORAM builds on a combination of ORAM to conceal data accesses, attribute-based encryption to rule the access to outsourced data, and zero-knowledge proofs to prove read and write permissions in a privacy-preserving manner. We implemented GORAM and conducted an experimental evaluation to demonstrate its feasibility.
Item Type: | Conference or Workshop Item (A Paper) (Paper) |
---|---|
Additional Information: | pub_id: 155 Bibtex: MaMaReSc:2014:BATowardsSecurity URL date: None |
Uncontrolled Keywords: | cloud storage,GORAM,oblivious ram,ORAM,privacy-enhancing technologies |
Divisions: | Nico Döttling (Cryptographic Algorithms, CA) Secure and Privacy-preserving Systems (SPS) |
Conference: | PODC ACM Symposium on Principles of Distributed Computing |
Depositing User: | Sebastian Weisgerber |
Date Deposited: | 26 Jul 2017 10:28 |
Last Modified: | 18 Jul 2019 12:08 |
Primary Research Area: | NRA1: Trustworthy Information Processing |
URI: | https://publications.cispa.saarland/id/eprint/198 |
Actions
Actions (login required)
View Item |