Definitions for Plaintext-Existence Hiding in Cloud Storage
Original version
ARES 2018 Proceedings of the 13th International Conference on Availability, Reliability and Security 10.1145/3230833.3234515Abstract
Cloud storage services use deduplication for saving bandwidth and storage. An adversary can exploit side-channel information in several attack scenarios when deduplication takes place at the client side, leaking information on whether a specific plaintext exists in the cloud storage. Generalising existing security definitions, we introduce formal security games for a number of possible adversaries in this domain, and show that games representing all natural adversarial behaviors are in fact equivalent. These results allow users and practitioners alike to accurately assess the vulnerability of deployed systems to this real-world concern.