Shin, SeongHanKobara, KazukuniImai, HidekiWulf, ChristopherLucks, StefanYau, Po-Wah2019-08-262019-08-2620053-88579-403-9https://dl.gi.de/handle/20.500.12116/24847A more realistic threat on cryptographic techniques (than breaking the underlying computational problems) is exposure of stored secrets that may be secret keys, private keys, password verification data and/or password-encrypted keys. In this paper we propose a secure network storage system (NSS) that provides not only a higher level of security against exposure of stored secrets but also information privacy with respect to the servers involved. The assumption of the NSS protocol is that a client remembers his password and stores an additional secret on insecure devices. We also analyzed its security of the NSS protocol, followed by some discussions whether the assumption is reasonable or not.enText/Conference Paper1617-5468