PDF logo Chunking attacks on file backup services using content-defined chunking

by Boris Alexeev, Colin Percival, and Yan X Zhang

Abstract

Systems such as file backup services often use content-defined chunking (CDC) algorithms, especially those based on rolling hash techniques, to split files into chunks in a way that allows for data deduplication. These chunking algorithms often depend on per-user parameters in an attempt to avoid leaking information about the data being stored. We present attacks to extract these chunking parameters and discuss protocol-agnostic attacks and loss of security once the parameters are breached (including when these parameters are not setup at all, which is often available as an option). Our parameter-extraction attacks themselves are protocol-specific but their ideas are generalizable to many potential CDC schemes.

Approximate citation

Boris Alexeev, Colin Percival, and Yan X Zhang
Chunking attacks on file backup services using content-defined chunking

Useful links

PDF logoDirect PDF link
IACR icon Cryptology ePrint Archive (IACR) version