Invention Grant
US08528085B1 Method and system for preventing de-duplication side-channel attacks in cloud storage systems
有权
防止云存储系统中重复数据删除侧信道攻击的方法和系统
- Patent Title: Method and system for preventing de-duplication side-channel attacks in cloud storage systems
- Patent Title (中): 防止云存储系统中重复数据删除侧信道攻击的方法和系统
-
Application No.: US13338413Application Date: 2011-12-28
-
Publication No.: US08528085B1Publication Date: 2013-09-03
- Inventor: Ari Juels
- Applicant: Ari Juels
- Applicant Address: US MA Hopkinton
- Assignee: EMC Corporation
- Current Assignee: EMC Corporation
- Current Assignee Address: US MA Hopkinton
- Agency: Dergosits & Noah LLP
- Agent Todd A. Noah
- Main IPC: G06F11/00
- IPC: G06F11/00 ; G06F12/14 ; G06F12/16 ; G06F7/00 ; G06F17/30 ; G08B23/00
Abstract:
An index-based proof-of-responsibility method and system for preventing side-channel attacks in data deduplication systems is described. A storage server computer creates a secret index referencing a specific random block in a file stored in a central data store. The server stores the hash value of the file along with the block referenced by the index. When a client computer submits a deduplication request regarding the file, server challenges the client to produce the block referenced by the index. If the proper file block is returned, the client has proven ownership of the file, and the request is granted. The server refreshes the index and associated challenge block after processing each request by a client computer.
Information query
