Secure Client-Side Deduplication Scheme for Cloud with Dual Trusted Execution Environment

Abstract

Data deduplication is the process that eliminates excessive redundant data in a dataset to improve storage and bandwidth utilization by significantly reducing the storage costs and increasing capacity. Therefore, a novel client-side secured dual-TEE (Trusted Execution Environment) based deduplication model (Dual-TEE) in the cloud is introduced. The proposed system prototype includes system setup, Data outsourcing, Proof of ownership (PoW) protocol initialize, and Data update. The traditional deduplication approach had a single TEE, which was prone to man-in-middle attacks and there has a high chance for authentication compromise. As a solution to this, dual TEE is implied in this research work, such that, the cryptosystem improves its ability to resist attacks. Moreover, a privilege set is assigned to each of the cloud users and the deduplication can be performed if and only if the correct privilege is with the cloud users. Further, dual TEE model attains a low value of 0.55179 for KPA analysis which is 7.088%, 7.5%, 1.83% better than the existing models like POW, POSD, and 3R-PoOR for file size 20. Hence, from the result, it is evident that the proposed Dual TEE secured model is secure to sustain data deduplication.