具有可信约束的分布式存储因果一致性模型

doi:10.11959/j.issn.1000-436x.2021091

通信学报 ›› 2021, Vol. 42 ›› Issue (6): 145-157.doi: 10.11959/j.issn.1000-436x.2021091

具有可信约束的分布式存储因果一致性模型

田俊峰¹^,², 张俊涛¹^,², 王彦骉¹^,²

¹ 河北大学网络空间安全与计算机学院，河北保定 071002
² 河北省高可信信息系统重点实验室，河北保定 071002

修回日期:2021-03-24 出版日期:2021-06-25 发布日期:2021-06-01
作者简介:田俊峰（1965− ），男，河北保定人，博士，河北大学教授、博士生导师，主要研究方向为信息安全与分布式计算
张俊涛（1995− ），男，河北保定人，河北大学硕士生，主要研究方向为信息安全与数据一致性
王彦骉（1994− ），男，河北邢台人，河北大学硕士生，主要研究方向为信息安全与数据一致性
基金资助:
国家自然科学基金资助项目(61802106);河北省自然科学基金资助项目(F2016201244)

Distributed storage causal consistency model with trusted constraint

Junfeng TIAN¹^,², Juntao ZHANG¹^,², Yanbiao WANG¹^,²

¹ School of Cyber Security and Computer, Hebei University, Baoding 071002, China
² Key Laboratory on High Trusted Information System in Hebei Province, Baoding 071002, China

Revised:2021-03-24 Online:2021-06-25 Published:2021-06-01
Supported by:
The National Natural Science Foundation of China(61802106);The Natural Science Foundation of Hebei Province(F2016201244)

摘要/Abstract

摘要：

目前，关于分布式存储因果一致性的研究领域中鲜有考虑安全风险的成熟方案。在混合逻辑时钟和HashGraph的基础上，结合可信云平台中的可信云联盟技术，提出了具有可信约束的分布式存储因果一致性模型（CCT模型）。CCT模型在客户端、服务端分别设计了身份认证和一致性数据可信校验机制，并对云存储集群中数据副本之间同步数据的过程进行了安全约束。通过仿真实验验证，CCT模型在造成了较小性能开销的前提下，能对客户端和服务端中身份签名伪造、非法第三方等安全风险进行识别并验证，为系统提供可信约束。

关键词: 分布式存储, 因果一致性, 可信约束, 混合逻辑时钟, HashGraph

Abstract:

At present, there are few mature solutions to consider security risks in the research field of distributed storage causal consistency.On the basis of hybrid logic clock and HashGraph, combined with trusted cloud alliance technology in trusted cloud platform, a distributed storage causal consistency model (CCT model) with trust constraints was proposed.The CCT model designed identity authentication and consistent data trust verification mechanism on the client side and the server side respectively, and imposed security constraints on the process of data synchronization between data replicas in the cloud storage cluster.Through the simulation experiment, CCT model can identify and verify the identity signature forgery, illegal third party and other security risks in the client and server, and provide the trusted constraint for the system on the premise of causing small performance cost.

Key words: distributed storage, causal consistency, trusted constraint, hybrid logical clock, HashGraph

中图分类号:

TP309

田俊峰, 张俊涛, 王彦骉. 具有可信约束的分布式存储因果一致性模型[J]. 通信学报, 2021, 42(6): 145-157.

Junfeng TIAN, Juntao ZHANG, Yanbiao WANG. Distributed storage causal consistency model with trusted constraint[J]. Journal on Communications, 2021, 42(6): 145-157.

图/表 8

图1

图2

图3

图4

图5

图6

图7

图8

参考文献 22

[1]	崔勇, 宋健, 缪葱葱 ,等. 移动云计算研究进展与趋势[J]. 计算机学报, 2017,40(2): 273-295.
	CUI Y , SONG J , MIAO C C ,et al. Mobile cloud computing research progress and trends[J]. Chinese Journal of Computers, 2017,40(2): 273-295.
[2]	BALEGAS V , CHENG L , NAJAFZADEH M . Geo-replication:fast if possible,consistent if necessary[J]. IEEE Data Engineering Bulletin,Special Issue on Data Consistency Across Research Communities, 2016,39(1): 6-12.
[3]	DECANDIA G , HASTORUN D , JAMPANI M ,et al. Dynamo[J]. ACM SIGOPS Operating Systems Review, 2007,41(6): 205-220.
[4]	DIDONA D , SPIROVSKA K , ZWAENEPOEL W . Okapi:causally consistent geo-replication made faster,cheaper and more available[J]. arXiv Preprint,arXiv:1702.04263, 2017.
[5]	KULKARNI S S , DEMIRBAS M , MADAPPA D ,et al. Logical physical clocks[M]. Cham: Springer International Publishing, 2014: 17-32.
[6]	ROOHITAVAF M , DEMIRBAS M , KULKARNI S . CausalSpartan:causal consistency for distributed data stores using hybrid logical clocks[C]// 2017 IEEE 36th Symposium on Reliable Distributed Systems. Piscataway:IEEE Press, 2017: 184-193.
[7]	BRAVO M , RODRIGUES L , PETER V R . Saturn:a distributed metadata service for causal consistency[C]// Proceedings of the Twelfth European Conference on Computer Systems. New York:ACM Press, 2017: 111-126.
[8]	张玉清, 王晓菲, 刘雪峰 ,等. 云计算环境安全综述[J]. 软件学报, 2016,27(6): 1328-1348.
	ZHANG Y Q , WANG X F , LIU X F ,et al. Survey on cloud computing security[J]. Journal of Software, 2016,27(6): 1328-1348.
[9]	张晓丽, 杨家海, 孙晓晴 ,等. 分布式云的研究进展综述[J]. 软件学报, 2018,29(7): 2116-2132.
	ZHANG X L , YANG J H , SUN X Q ,et al. Survey of geo-distributed cloud research progress[J]. Journal of Software, 2018,29(7): 2116-2132.
[10]	MAHALAKSHMI B , SUSEENDRAN G . An analysis of cloud computing issues on data integrity,privacy and its current solutions[M]. Singapore: Springer Singapore, 2018: 467-482.
[11]	杨小东, 安发英, 杨平 ,等. 云环境下基于代理重签名的跨域身份认证方案[J]. 计算机学报, 2019,42(4): 756-771.
	YANG X D , AN F Y , YANG P ,et al. Cross-domain authentication scheme based on proxy Re-signature in cloud environment[J]. Chinese Journal of Computers, 2019,42(4): 756-771.
[12]	KUMAR P R , RAJ P H , JELCIANA P . Exploring data security issues and solutions in cloud computing[J]. Procedia Computer Science, 2018,125: 691-697.
[13]	沈昌祥, 公备 . 基于国产密码体系的可信计算体系框架[J]. 密码学报, 2015,2(5): 381-389.
	SHEN C X , GONG B . The innovation of trusted computing based on the domestic cryptography[J]. Journal of Cryptologic Research, 2015,2(5): 381-389.
[14]	何欣枫, 田俊峰, 刘凡鸣 . 可信云平台技术综述[J]. 通信学报, 2019,40(2): 154-163.
	HE X F , TIAN J F , LIU F M . Survey on trusted cloud platform technology[J]. Journal on Communications, 2019,40(2): 154-163.
[15]	刘川意, 王国峰, 林杰 ,等. 可信的云计算运行环境构建和审计[J]. 计算机学报, 2016,39(2): 339-350.
	LIU C Y , WANG G F , LIN J ,et al. Practical construction and audit for trusted cloud execution environment[J]. Chinese Journal of Computers, 2016,39(2): 339-350.
[16]	田俊峰, 李天乐 . 基于TPA云联盟的数据完整性验证模型[J]. 通信学报, 2018,39(8): 113-124.
	TIAN J F , LI T L . Data integrity verification based on model cloud federation of TPA[J]. Journal on Communications, 2018,39(8): 113-124.
[17]	ROOHITAVAF M , KULKARNI S . DKVF:a framework for rapid prototyping and evaluating distributed key-value stores[C]// ASE 2018:Proceedings of the 33rd ACM/IEEE International Conference on Automated Software Engineering. New York:ACM Press, 2018: 912-915.
[18]	田俊峰, 王彦骉, 何欣枫 ,等. 数据因果一致性研究综述[J]. 通信学报, 2020,41(3): 154-167.
	TIAN J F , WANG Y B , HE X F ,et al. Survey on the causal consistency of data[J]. Journal on Communications, 2020,41(3): 154-167.
[19]	SPIROVSKA K , DIDONA D , ZWAENEPOEL W . PaRiS:causally consistent transactions with non-blocking reads and partial replication[J]. arXiv Preprint,arXiv:1902.09327, 2019.
[20]	田俊峰, 常方舒 . 基于 TPM 联盟的可信云平台管理模型[J]. 通信学报, 2016,37(2): 1-10.
	TIAN J F , CHANG F S . Trusted cloud platform management model based on TPM alliance[J]. Journal on Communications, 2016,37(2): 1-10.
[21]	刘明达, 拾以娟, 陈左宁 . 基于区块链的分布式可信网络连接架构[J]. 软件学报, 2019,30(8): 2314-2336.
	LIU M D , SHI Y J , CHEN Z N . Distributed trusted network connection architecture based on blockchain[J]. Journal of Software, 2019,30(8): 2314-2336.
[22]	DU J Q , IORGULESCU C , ROY A ,et al. GentleRain:cheap and scalable causal consistency with physical clocks[C]// Proceedings of the ACM Symposium on Cloud Computing. New York:ACM Press, 2014: 1-13.

具有可信约束的分布式存储因果一致性模型

Distributed storage causal consistency model with trusted constraint

在线阅读

PDF下载

可视化

摘要/Abstract

引用本文

使用本文

图/表 8

参考文献 22

相关文章 6

Metrics

推荐阅读 0

[1]	田俊峰, 杨乾宇, Jitian Xiao. 基于偏向稳定的分布式审计因果一致性模型[J]. 通信学报, 2023, 44(3): 164-177.
[2]	刘光军, 郭网媚, 熊金波, 刘西蒙, 董长宇. 适用于再生编码分布式存储的轻量型隐私保护审计方案[J]. 通信学报, 2021, 42(7): 220-230.
[3]	田俊峰,杨万贺,庞亚南,张俊涛. 基于共享图和部分复制策略的分布式存储因果一致性模型[J]. 通信学报, 2020, 41(5): 48-58.
[4]	田俊峰,王彦骉,何欣枫,张俊涛,杨万贺,庞亚南. 数据因果一致性研究综述[J]. 通信学报, 2020, 41(3): 154-167.
[5]	李军，劳凤丹，邹仁明. 校园网云盘系统构建研究[J]. 通信学报, 2013, 34(Z2): 25-137.
[6]	李军,劳凤丹,邹仁明. 校园网云盘系统构建研究[J]. 通信学报, 2013, 34(Z2): 133-137.