Paper 2008/186

Privacy-Preserving Audit and Extraction of Digital Contents

Mehul A. Shah, Ram Swaminathan, and Mary Baker

Abstract

A growing number of online services, such as Google, Yahoo!, and Amazon, are starting to charge users for their storage. Customers often use these services to store valuable data such as email, family photos and videos, and disk backups. Today, a customer must entirely trust such external services to maintain the integrity of hosted data and return it intact. Unfortunately, no service is infallible. To make storage services accountable for data loss, we present protocols that allow a third-party auditor to periodically verify the data stored by a service and assist in returning the data intact to the customer. Most importantly, our protocols are privacy-preserving, in that they never reveal the data contents to the auditor. Our solution removes the burden of verification from the customer, alleviates both the customer’s and storage service’s fear of data leakage, and provides a method for independent arbitration of data retention contracts.

Metadata
Available format(s)
PDF
Category
Applications
Publication info
Published elsewhere. Also available as HPL Technical Report No. HPL-2008-32
Keywords
storageauditingextractionretrievabilitydigital preservationprivacy
Contact author(s)
mehul shah @ hp com
History
2008-04-29: received
Short URL
https://ia.cr/2008/186
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2008/186,
      author = {Mehul A.  Shah and Ram Swaminathan and Mary Baker},
      title = {Privacy-Preserving Audit and Extraction of Digital Contents},
      howpublished = {Cryptology ePrint Archive, Paper 2008/186},
      year = {2008},
      note = {\url{https://eprint.iacr.org/2008/186}},
      url = {https://eprint.iacr.org/2008/186}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.