Abstract: According to research findings, data deduplication is a highly effective data compression method used in cloud storage to eliminate duplicate instances of recurring data, thereby conserving storage space and bandwidth. To ensure the confidentiality of sensitive data while enabling deduplication, a convergent encryption approach has been developed for encrypting data before outsourcing. Our study represents the first explicit effort to address the concept of authorized data deduplication, aiming to enhance data security. Unlike traditional deduplication systems that solely focus on the data itself, our analysis takes into account the varying privileges of users during duplicate checks. Furthermore, we propose several innovative deduplication architectures that facilitate authorized duplicate checks in a hybrid cloud setup. Based on our research and security analysis, this approach aligns with the most secure practices defined in the proposed security model.To validate our proposal, we implement a prototype of the authorized duplicate check mechanism and conduct testbed tests. The results demonstrate that our method introduces minimal overhead compared to standard operations.

Keywords: deduplication, convergent encryption, privileges, data compression, cloud storage.

| DOI: 10.17148/IARJSET.2023.10795