Ownership authentication and key transmission method without losing entropy in ciphertext duplication elimination scene

Abstract

The invention provides an ownership authentication and key transmission method without losing entropy in a ciphertext duplication elimination scene and is used for solving the problem that the ownership authentication security is low in the prior art and realizing key secure transmission in the ciphertext duplication elimination scene. The method comprises the realization steps that a first file uploader preprocesses a file and uploads a preprocessing result to a server; a follow-up uploader and the server carry out file ownership authentication interaction, if the file ownership authentication is successful, the server marks the follow-up uploader as a file owner and informs the follow-up uploader to delete a local file, thereby realizing client ciphertext duplication elimination, otherwise, the file ownership authentication is unsuccessful; and the file owner with successful file ownership authentication can access a file ciphertext of the server. According to the method, the file ownership authentication security is ensured, the file encryption key secure transmission is effectively realized, the user data privacy is protected, the operation quantity for ciphertext duplication elimination interaction is reduced, and the method can be used for carrying out duplication elimination on client ciphertext data in cloud storage.

Description

technical field [0001] The invention belongs to the technical field of information security, and relates to an ownership authentication and key transfer method, in particular to an ownership authentication and key transfer method without loss of entropy in a ciphertext deduplication scenario, which can be used in cloud storage services for clients Scenarios where encrypted file data is deduplicated. Background technique [0002] With the increasing application of cloud storage services, in order to save network bandwidth and storage resources, more and more enterprises and individuals begin to use cloud storage servers to store local file data. Among them, before the user uploads the file to the cloud storage server, in order to ensure data privacy and security, the user will choose to encrypt the file before uploading. This makes it impossible for different users who have the same file to upload their own encrypted data to deduplicate the cloud storage server, resulting in...

AI Technical Summary

Problems solved by technology

However, the patent divides the file data into blocks, and the ownership authentication process is based on the file data blocks. The server needs to challenge a certain number of file data blocks for zero-knowledge verification to realize the ownership authentication. This method can only complete the ownership authentication under certain probability conditions. The ownership authentication of all file data cannot be guaranteed. At the same time, file key distribution is carried out with the help of key distribution assistants. In the specific implementation process, higher security assumptions are required.

[0004] The above are some commonly used methods in client-side ciphertext deduplication scenarios. Among the known client-side ciphertext deduplication methods, the m

Images