Attribute-based encryption (ABE) has been widely used in cloud computing where a data provider outsources his/her encrypted data to a cloud service provider, and can share the data with users possessing specific credentials (or attributes). However, the standard ABE system does not support secure deduplication, which is crucial for eliminating duplicate copies of identical data in order to save storage space and network bandwidth.
In this Project, we present an attribute-based storage system with secure deduplication in a hybrid cloud setting, where a private cloud is responsible for duplicate detection and a public cloud manages the storage. Compared with the prior data deduplication systems, our system has two advantages.
Firstly, it can be used to confidentially share data with users by specifying access policies rather than sharing decryption keys.
Secondly, it achieves the standard notion of semantic security for data confidentiality while existing systems only achieve it by defining a weaker security notion.
In addition, we put forth a methodology to modify a ciphertext over one access policy into ciphertexts of the same plaintext but under other access policies without revealing the underlying plaintext.
Attribute-Based Encryption. Sahai and Waters introduced the notion of attribute-based encryption (ABE), and then formulated key-policy ABE (KP-ABE) and ciphertext-policy ABE (CP-ABE) as two complimentary forms of ABE. The first KP-ABE construction given realized the monotonic access structures, the first KP-ABE system supporting the expression of non-monotone formulas was presented to enable more viable access policies and the first large class KP-ABE system was presented by in the standard model proposed the first CP-ABE construction, but it is secure under the generic group model.
A CP-ABE system under more advanced access structures is proposed based on the number theoretic assumption. In order to overcome the limitation that the size of the attribute space is polynomially bounded in the security parameter and the attributes are fixed ahead, built a large universe CP-ABE system under the prime-order group
- Existing system supports only the AND access structures.
- The standard ABE system fails to achieve secure deduplication.
Firstly, the system is the first that achieves the standard notion of semantic security for data confidentiality in attribute-based deduplication systems by resorting to the hybrid cloud architecture.
Secondly, we put forth a methodology to modify a ciphertext over one access policy into ciphertexts of the same plaintext but under any other access policies without revealing the underlying plaintext. This technique might be of independent interest in addition to the application in the proposed storage system.
Thirdly, we propose an approach based on two cryptographic primitives, including a zero-knowledge proof of knowledge and a commitment scheme to achieve data consistency in the system.
1. A Secure system framework supporting secure deduplication while strongly protecting the video confidentiality.
2. It is resistant to the adversaries in the bounded leakage setting, and the adversaries launching bruteforce attacks over predictable videos.
- In this project we are using DES algorithm for Encryption.
- HMAC Algorithm to find the Duplication.
System : Pentium IV 2.4 GHz.
Hard Disk : 40 GB.
Monitor : 15 VGA Colour.
Mouse : Logitech.
Ram : 1 GB.
Operating system : Windows XP/7/8.
Coding Language : JAVA/J2EE
IDE : Eclipse
Database : MYSQL
Y. Zheng, X. Yuan, X. Wang, J. Jiang, C. Wang, and X. Gui, “Enabling encrypted cloud media center with secure deduplication,” in Proc. of ACM ASIACCS, 2015.