Decentralized storage architectures are emerging as valid complementary solutions to cloud-based storage services. InterPlanetary File System (IPFS) is one of the most well-known distributed file storage protocols with wide adoption, good performance, and a variety of applications built over it. However, IPFS does not natively support data confidentiality and its decentralized nature limits the ability of data owners to maintain control on their resources and to force their deletion. We propose Mix-IPFS, an approach that allows data owners to maintain control on their resources uploaded to IPFS, guaranteeing their confidentiality and supporting secure deletion. Mix-IPFS is based on AONT encryption, which has the nice property of preventing decryption if the whole ciphertext is not available. Data owners can permanently delete a resource by making a small portion of its encrypted representation unavailable. Our solution uses a virtual file system to guarantee transparency to data owners (i.e., they can operate on plaintext resources). The experimental evaluation shows that the overhead of our approach is negligible (less than 2% for both upload and access operations).
Supporting Data Owner Control in IPFS Networks / M. Abbadini, M. Beretta, S. DE CAPITANI DI VIMERCATI, D. Facchinetti, S. Foresti, G. Oldani, S. Paraboschi, M. Rossi, P. Samarati (IEEE INTERNATIONAL CONFERENCE ON COMMUNICATIONS). - In: ICC 2024 - IEEE International Conference on Communications / [a cura di] M. Valenti, D. Reed, M. Torres. - [s.l] : IEEE, 2024 Jun. - ISBN 978-1-7281-9054-9. - pp. 3298-3303 (( convegno International Conference on Communications tenutosi a Denver nel 2024 [10.1109/ICC51166.2024.10623119].
Supporting Data Owner Control in IPFS Networks
S. DE CAPITANI DI VIMERCATI;S. Foresti;P. SamaratiUltimo
2024
Abstract
Decentralized storage architectures are emerging as valid complementary solutions to cloud-based storage services. InterPlanetary File System (IPFS) is one of the most well-known distributed file storage protocols with wide adoption, good performance, and a variety of applications built over it. However, IPFS does not natively support data confidentiality and its decentralized nature limits the ability of data owners to maintain control on their resources and to force their deletion. We propose Mix-IPFS, an approach that allows data owners to maintain control on their resources uploaded to IPFS, guaranteeing their confidentiality and supporting secure deletion. Mix-IPFS is based on AONT encryption, which has the nice property of preventing decryption if the whole ciphertext is not available. Data owners can permanently delete a resource by making a small portion of its encrypted representation unavailable. Our solution uses a virtual file system to guarantee transparency to data owners (i.e., they can operate on plaintext resources). The experimental evaluation shows that the overhead of our approach is negligible (less than 2% for both upload and access operations).
| File | Dimensione | Formato | |
|---|---|---|---|
|
abdffoprs-icc24.pdf
accesso aperto
Tipologia:
Post-print, accepted manuscript ecc. (versione accettata dall'editore)
Dimensione
485.89 kB
Formato
Adobe PDF
|
485.89 kB | Adobe PDF | Visualizza/Apri |
|
Supporting_Data_Owner_Control_in_IPFS_Networks.pdf
accesso riservato
Tipologia:
Publisher's version/PDF
Dimensione
488.35 kB
Formato
Adobe PDF
|
488.35 kB | Adobe PDF | Visualizza/Apri Richiedi una copia |
Pubblicazioni consigliate
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
