具有紧凑标签的基于身份匿名云审计方案

doi:10.11959/j.issn.2096-109x.2022087

Abstract

Abstract:

Cloud storage has the advantages of high efficiency and scalability.Users can save local storage cost and share data with others through cloud storage technology.However, when data is uploaded to cloud servers, its owner also loses the physical control, and hence there needs a corresponding mechanism to ensure the integrity of data stored in the cloud.The Provable Data Possession (PDP) mechanism allows users or a Third-Party Auditor (TPA) appointed by the user to verify data integrity.In practice, data is usually maintained by multiple users.Users may reveal their identities while making an integrity verification request in traditional auditing processes.Anonymous cloud auditing ensures anonymity of users against the TPA during auditing.Currently, in identity-based systems, anonymous cloud auditing schemes usually resort to identity-based ring signature or group signature schemes.As a result, the size of a tag is related to the number of users, which makes it not compact and causes high storage cost.In order to solve this issue, a general construction of identity-based anonymous cloud auditing scheme was proposed.With a signature scheme and an anonymous cloud auditing scheme, a concrete identity-based anonymous cloud auditing scheme based on the general construction was proposed.It combined theBLS signature and an anonymous cloud auditing scheme with compact tags.The main advantage of this solution is that the tags are compact, which can significantly reduce storage cost and improve storage efficiency.Furthermore, the uncheatability and anonymity of the scheme are proved.

Key words: cloud auditing, privacy protection, anonymous, identity-based system, compact tags

CLC Number:

TP393

Chenxin LU, Bing CHEN, Ning DING, Liquan CHEN, Ge WU. Identity-based anonymous cloud auditing scheme with compact tags[J]. Chinese Journal of Network and Information Security, 2022, 8(6): 156-168.

Figures/Tables 4

方案	标签大小	挑战计算开销	应答计算开销	验证计算开销
文献[13]方案	$\| \| G \| \|$	(n+1)E	(c+2)BP+cE	(c+2)E+BP
文献[22]方案	$\| \| Z_{p} \| \| + n \| \| G \| \|$	\	\	2nBP+nH+nG
本文方案	$\| \| G \| \|$	2BP+(n+1)E	(c+2)BP+cE	(c+2)E+BP
注：文献[22]主要采用基于身份的环签名技术和承诺方案实现审计，因此主要的开销在标签的大小和验证标签的计算上，挑战和应答过程并未进行说明，表中用“\”表示；本文的构造中，单独的标签由 3 个元素构成，但每个标签均含有公共部分pk _j和σ_j，故针对大量的数据标签而言，每个数据块的平均存储成本可近似认为一个群元素。

References 22

[1]	BHAJANTRI L B , MUJAWAR T . A survey of cloud computing security challenges,issues and their countermeasures[C]// 2019 Third International Conference on I-SMAC (IoT in Social,Mobile,Analytics and Cloud). 2019: 376-380.
[2]	GUDEME J R , PASUPULETI S , KANDUKURI R . Certificateless privacy preserving public auditing for dynamic shared data with group user revocation in cloud storage[J]. Journal of Parallel and Distributed Computing, 2021,(156): 163-175.
[3]	RABANINEJAD R , RAJABZADEH ASAAR M , AHMADIAN ATTARI M ,et al. An identity-based online/offline secure cloud storage auditing scheme[J]. Cluster Computing:The Journal of Networks,Software Tools and Applications, 2020,23(2): 55-68.
[4]	DESWARTE Y , QUISQUATER J J , SA?DANE A . Remote integrity checking[C]// Integrity and Internal Control in Information Systems VI-IICIS 2003. 2003: 1-11.
[5]	ATENIESE G , BURNS R , CURTMOLA R ,et al. Provable data possession at untrusted stores[C]// 14th ACM Conference:Computer＆ Communications Security. 2007: 598-609.
[6]	BOYANG W , BAOCHUN L , HUI L . Oruta:privacy-preserving public auditing for shared data in the cloud[J]. IEEE Transactions on Cloud Computing, 2014,2(1): 43-56.
[7]	FENG Y , MU Y , YANG G ,et al. A new public remote integrity checking scheme with user privacy[C]// 20th Australasian Conference on Information Security and Privacy (ACISP 2015). 2015: 377-394.
[8]	BOYANG W , HUI L , MING L . Privacy-preserving public auditing for shared cloud data supporting group dynamics[C]// 2013 IEEE International Conference on Communications-ICC. 2013: 1946-1950.
[9]	BONEH D , GENTRY C , LYNN B ,et al. Aggregate and verifiably encrypted signatures from bilinear Maps[C]// Advances in Cryptology—EUROCRYPT 2003. 2003: 416-432.
[10]	RIVEST R L , SHAMIR A , TAUMAN Y . How to leak a secret[C]// Advances in Cryptology— ASIACRYPT 2001. 2001: 552-565.
[11]	FERRARA A L , GREEN M , HOHENBERGER S ,et al. Practical short signature batch verification[C]// Topics in Cryptology–CT-RSA 2009. 2009: 309-324.
[12]	BONEH D , BOYEN X , SHACHAM H . Short group signatures[C]// Advances in Cryptology–CRYPTO 2004. 2004: 41-55.
[13]	WU G , MU Y , SUSILO W ,et al. Privacy-preserving cloud auditing with multiple uploaders[C]// Information Security Practice and Experience-ISPEC 2016. 2016: 224-237.
[14]	SHACHAM H , WATERS B . Compact proofs of retrievability[J]. Journal of Cryptology, 2013,26(3): 442-83.
[15]	SHAMIR A . Identity-based cryptosystems and signature schemes[C]// Advances in Cryptology—CRYPTO 1984. 1984: 47-53.
[16]	YU Y , AU M H , ATENIESE G ,et al. Identity-based remote data integrity checking with perfect data privacy preserving for cloud storage[J]. IEEE Transactions on Information Forensics and Security, 2017,12(4): 767-78.
[17]	ZHANG Y , YU J , HAO R ,et al. Enabling efficient user revocation in identity-based cloud storage auditing for shared big data[J]. IEEE Transactions on Dependable and Secure Computing, 2020,17(3): 608-619.
[18]	WENTING S , JING Q , JIA Y ,et al. Enabling identity-based integrity auditing and data sharing with sensitive information hiding for secure cloud storage[J]. IEEE Transactions on Information Forensics and Security, 2019,14(2): 331-46.
[19]	BELLARE M , NAMPREMPRE C , NEVEN G . Security proofs for identity-based identification and signature schemes[J]. Journal of Cryptology, 2009,22(1): 1-61.
[20]	GALINDO D , HERRANZ J , KILTZ E . On the generic construction of identity-based signatures with additional properties[C]// Advances in Cryptology–ASIACRYPT 2006. 2006: 178-193.
[21]	BONEH D , LYNN B , SHACHAM H . Short signatures from the Weil pairing[J]. Pairings and Their Use in Cryptology, 2004,17(4): 297-319.
[22]	SINGH S , THOKCHOM S . Public integrity auditing for shared dynamic cloud data[C]// 6th International Conference on Smart Computing and Communications (ICSCC), 2018: 698-708.

Metrics

Recommended 0

No Suggested Reading articles found!

符号	意义
\|\|G\|\|	群中元素二进制长度
\|\|Z_p\|\|	整数集合中二进制长度
BP	双线性对计算开销
E	指数计算开销
H	哈希计算开销

Identity-based anonymous cloud auditing scheme with compact tags

RichHTML

PDF下载

Knowledge

Abstract

Cite this article

share this article

Figures/Tables 4

References 22

Related Articles 15

Metrics

Recommended 0

[1]	Jianlong XU, Jian LIN, Yusen LI, Zhi XIONG. Distributed user privacy preserving adjustable personalized QoS prediction model for cloud services [J]. Chinese Journal of Network and Information Security, 2023, 9(2): 70-80.
[2]	Zhe SUN, Hong NING, Lihua YIN, Binxing FANG. Preliminary study on the construction of a data privacy protection course based on a teaching-in-practice range [J]. Chinese Journal of Network and Information Security, 2023, 9(1): 178-188.
[3]	Xue BAI, Baodong QIN, Rui GUO, Dong ZHENG. Two-party cooperative blind signature based on SM2 [J]. Chinese Journal of Network and Information Security, 2022, 8(6): 39-51.
[4]	Min XIAO, Tao YAO, Yuanni LIU, Yonghong HUANG. Dynamic and efficient vehicular cloud management scheme with privacy protection [J]. Chinese Journal of Network and Information Security, 2022, 8(6): 70-83.
[5]	Shengzhi MING, Jianming ZHU, Zhiyuan SUI, Xian ZHANG. Online medical privacy protection strategy under information value-added mechanism [J]. Chinese Journal of Network and Information Security, 2022, 8(6): 169-177.
[6]	Xian ZHANG, Jianming ZHU, Zhiyuan SUI, Shengzhi MING. Analysis on anonymity and regulation of digital currency transactions based on game theory [J]. Chinese Journal of Network and Information Security, 2022, 8(5): 150-157.
[7]	Feng LIU, Jie YANG, Jiayin QI. Survey on blockchain privacy protection techniques in cryptography [J]. Chinese Journal of Network and Information Security, 2022, 8(4): 29-44.
[8]	Lin JIN, Youliang TIAN. Multi-authority attribute hidden for electronic medical record sharing scheme based on blockchain [J]. Chinese Journal of Network and Information Security, 2022, 8(4): 66-76.
[9]	Weicheng ZHANG, Hongquan WEI, Shuxin LIU, Liming PU. Fast handover authentication scheme in 5G mobile edge computing scenarios [J]. Chinese Journal of Network and Information Security, 2022, 8(3): 154-168.
[10]	Zhensheng GAO, Lifeng CAO, Xuehui DU. Research progress of access control based on blockchain [J]. Chinese Journal of Network and Information Security, 2021, 7(6): 68-87.
[11]	Chuanxin ZHOU, Yi SUN, Degang WANG, Huawei GE. Survey of federated learning research [J]. Chinese Journal of Network and Information Security, 2021, 7(5): 77-92.
[12]	Rongna XIE, Xiaonan FAN, Lin YUAN, Zichen GUO, Jiayu ZHU, Guozhen SHI. Research on extended access control mechanism in online social network [J]. Chinese Journal of Network and Information Security, 2021, 7(5): 123-131.
[13]	Zhanhui YUAN, Zhi YANG, Hongqi ZHANG, Shuyuan JIN, Xuehui DU. Android complex information flow analysis method based on communicating sequential process [J]. Chinese Journal of Network and Information Security, 2021, 7(5): 156-168.
[14]	Yueyang YE, Xinglan ZHANG. Research on anonymous identity authentication technology in Fabric [J]. Chinese Journal of Network and Information Security, 2021, 7(3): 134-140.
[15]	Kui REN, Quanrun MENG, Shoukun YAN, Zhan QIN. Survey of artificial intelligence data security and privacy protection [J]. Chinese Journal of Network and Information Security, 2021, 7(1): 1-10.