支持身份认证的数据持有性证明方案

doi:10.11959/j.issn.1000-436x.2016203

Abstract

Abstract:

To satisfy the requirements of identity authentication and data possession proven in the cloud application scenarios,a provable data possession scheme with authentication was proposed.Based on data tag signature and randomness reusing,the proposed scheme could accomplish several issues with three interactions,including the possession proof of cloud data,the mutual authentication between user and cloud computing server,the session key agreement and confirmation.Compared to the simple combination of authentication key agreement and provable data possession schemes,the proposed scheme has less computation and interactions,and better provable securities.In the random oracle model,the security proof of the proposed scheme is given under the computational Diffie-Hellman assumption.

Key words: authentication, data possession, cloud computing, provable security, random oracle

Hao-xing LI,Feng-hua LI,Cheng-gen SONG,Ya-long YAN. Provable data possession scheme with authentication[J]. Journal on Communications, 2016, 37(10): 117-127.

Figures/Tables 6

References 20

[1]	BUYYA R , YEO C S , VENUGOPAL S ,et al. Cloud computing and emerging IT platforms:vision,hype,and reality for delivering computing as the 5th utility[J]. Future Generation Computer Systems, 2009,25(6): 599-616.
[2]	WU J , SHEN Q , WANG T ,et al. Recent advances in cloud security[J]. Journal of Computers, 2014,5(10): 2156-2163.
[3]	ATENIESE G , BURNS R , CURTMOLA R ,et al. Provable data possession at untrusted stores[C]// Proceedings of the 14th ACM Conference on Computer and Communications Security. ACM, 2007: 598-609.
[4]	BOWERS K D , JUELS A , OPREA A . Proofs of retrievability:theory and implementation[C]// ACM Cloud Computing Security Workshop,CCSW 2009. Chicago,Il,USA, 2009: 43-54.
[5]	CHOUDHURY A J , KUMAR P , SAIN M ,et al. A strong user authentication framework for cloud computing[C]// IEEE Asia-Pacific Services Computing Conference. Jeju,Korea, 2011: 110-115.
[6]	LIU C , CHEN J , YANG L T ,et al. Authorized public auditing of dynamic big data storage on cloud with efficient verifiable fine-grained updates[J]. IEEE Transactions on Parallel ＆ Distributed Systems, 2014,25(9): 2234-2244.
[7]	GRITTI C , SUSILO W , PLANTARD T . Efficient dynamic provable data possession with public verifiability and data privacy[M]// Information Security and Privacy. Springer International Publishing, 2015: 395-412.
[8]	WANG B , LI B , LI H . Panda:public auditing for shared data with efficient user revocation in the cloud[J]. IEEE Transactions on Services Computing, 2015(1): 92-106.
[9]	SHEN S T , ZENG W G . Delegable provable data possession for remote data in the clouds[M]// Information and Communications Security. Springer Berlin Heidelberg, 2011: 93-111.
[10]	WANG H . Proxy provable data possession in public clouds[J]. IEEE Transactions on Services Computing, 2013,6(4): 551-559.
[11]	RUAN H M , LEI C L . Fine-grained audit privilege control for integrity audit on cloud storage[C]// 2014 Ninth Asia Joint Conference on Information Security (ASIA JCIS). IEEE, 2014: 156-163.
[12]	XU J , CHEN W , JI S ,et al. A novel preserving client privacy and designate verifier auditing scheme for cloud storage[J]. International Journal of Security and Its Applications, 2015,9(1): 295-304.
[13]	NIMMY K , SETHUMADHAVAN M . Novel mutual authentication protocol for cloud computing using secret sharing and steganography[C]// Applications of Digital Information and Web Technologies. IEEE, 2014: 101-106.
[14]	HAO Z , ZHONG S , YU N ,et al. A time-bound ticket-based mutual authentication scheme for cloud computing[J]. International Journal of Computers Communications ＆ Control, 2011,(VI2): 227-235.
[15]	HUANG J J , JUANG W S , FAN C I ,et al. Robust and privacy protection authentication in cloud computing[J]. International Journal of Innovative Computing,Information and Control, 2013,9(11): 4247-4261.
[16]	NAGARAJU S , PARTHIBAN L . SecAuthn:provably secure multifactor authentication for the cloud computing systems[J]. Indian Journal of Science and Technology, 2016,9(9).
[17]	HAHN C , KWON H , KIM D ,et al. Enhanced authentication for outsourced educational contents through provable block possession[J]. Multimedia Tools ＆ Applications, 2015,23: 1-20.
[18]	CREMERS C , FELTZ M . Beyond eCK:perfect forward secrecy under actor compromise and ephemeral-key reveal[J]. Designs,Codes and Cryptography, 2015,74(1): 183-218.
[19]	KRAWCZYK H , . HMQV:a high-performance secure Diffie-Hellman protocol[C]// Advances in Cryptology–CRYPTO 2005. Springer Berlin Heidelberg, 2005: 546-566.
[20]	SCOTT M , . MIRACL-multiprecision integer and rational arithmetic C/C++ library(1988-2007)[EB/OL]. .

Metrics

Recommended 0

No Suggested Reading articles found!

方案	类型		运算量		存储损耗		通信损耗		交互次数
方案	类型	P	U	S	U	S	U	S	交互次数
SIG(NAXOS)^[18]方案	AKA	2e	3e+1sig+3h+1ver	3e+1sig+3h+1ver	O(1)	O(1)	O(1)	O(1)	2
HMQV^[19]方案	AKA	2e	2e+2h	2e+2h	O(1)	O(1)	O(1)	O(1)	2
S-PDP^[3]方案	PDP	2e+1h	(n+3)e+(n+1)h+(2n+3)f	(n+1)e+(n+1)h+2nf	O(1)	O(n)	O(1)	O(1)	2
PPDP^[10]方案	PDP	2e+1h	2p+(n+1)e+2nf	ne+2nf	O(1)	O(n)	O(1)	O(1)	2
Hahn^[17]方案	PDP	1e+(2n-1)h	(n+1)e+(3n+2)h+(n+2)f	(3n+2)e+(3n+3)h+(n+1)f	O(n)	O(n)	O(log n)	O(1)	3
本文方案	PDP+AKA	1e+1h	5e+1E+3h+(n+1)f	(n+4)e+4h+1E+1f	O(1)	O(n)	O(n)	O(1)	3

基础运算	平均消耗时间
1 024位DH(17位幂)	0.82 ms
1 024位DH(1 024位幂)	11.69 ms
1 024位DH(160位幂)	1.36 ms
AES加/解密	2.07 μs/16 byte
SHA1	4.35 μs /64 byte
伪随机数生成算法	0.33 μs /20 byte

Provable data possession scheme with authentication

RichHTML

PDF

Knowledge

Abstract

Cite this article

share this article

Figures/Tables 6

References 20

Related Articles 15

Metrics

Recommended 0

[1]	Ling MA, Qiliang FAN, Ting XU, Guanchen GUO, Shenglin ZHANG, Yongqian SUN, Yuzhi ZHANG. Scheduling framework based on reinforcement learning in online-offline colocated cloud environment [J]. Journal on Communications, 2023, 44(6): 90-102.
[2]	Haibo ZHANG, Kai LAN, Zhou CHEN, Ruyan WANG, Can ZOU, Mingyue WANG. Ring-based efficient batch authentication and group key agreement protocol with anonymity in Internet of vehicles [J]. Journal on Communications, 2023, 44(6): 103-116.
[3]	Xuejiao LIU, Qiang ZHONG, Yingjie XIA. Efficient authentication scheme for cross-trust domain of IoV based on double-layer shard blockchain [J]. Journal on Communications, 2023, 44(5): 213-223.
[4]	Yingjie XIA, Siyu ZHU, Xuejiao LIU. Research on efficient cross trust-domain group authentication with conditional privacy of vehicle platoon under blockchian architecture [J]. Journal on Communications, 2023, 44(4): 111-123.
[5]	Shengbao WANG, Xin ZHOU, Kang WEN, Bosen WENG. Tripartite authenticated key exchange protocol for smart grid [J]. Journal on Communications, 2023, 44(2): 210-218.
[6]	Youliang TIAN, Maoqing TIAN, Hongfeng GAO, Miao HE, Jinbo XIONG. Cooperation-based location authentication scheme for crowdsensing applications [J]. Journal on Communications, 2022, 43(9): 121-133.
[7]	Xia FENG, Kaiping CUI, Qingqing XIE, Liangmin WANG. Distributed anonymous authentication scheme based on the blockchain in VANET [J]. Journal on Communications, 2022, 43(9): 134-147.
[8]	Zhenyu WANG, Yang GUO, Shaoqing LI, Shen HOU, Ding DENG. Design of efficient anonymous identity authentication protocol for lightweight IoT devices [J]. Journal on Communications, 2022, 43(7): 49-61.
[9]	Ziyuan WANG, Ruizhong DU. Certificateless public key cryptography based provable data possession scheme in edge environment [J]. Journal on Communications, 2022, 43(7): 62-72.
[10]	Zhu WANG, Siqi YANG, Fenghua LI, Kui GENG, Tingting PENG, Mengyao SHI. Efficient and provably-secure certificateless sequential aggregate signature scheme [J]. Journal on Communications, 2022, 43(5): 58-67.
[11]	Huanhuan LIAN, Huiying HOU, Yunlei ZHAO. Post-quantum verifier-based three-party password authenticated key exchange protocol [J]. Journal on Communications, 2022, 43(4): 95-106.
[12]	Yinghui ZHANG, Lingyun HU, Yixin LI, Jianting NING, Dong ZHENG. Secure and efficient batch authentication scheme based on dynamic revocation mechanism in space information network [J]. Journal on Communications, 2022, 43(4): 164-176.
[13]	Jin CAO, Qiuyu BU, Yuanyuan YANG, Hui LI, Qiao LIU, Maode MA. Enhanced Beidou user equipment access authentication protocol based on location key [J]. Journal on Communications, 2022, 43(11): 80-89.
[14]	Haibo ZHANG, Zhou CHEN, Hongwu HUANG, Xiaofan HE. Intra-group mutual authentication key agreement protocol based on Chinese remainder theorem in VANET system [J]. Journal on Communications, 2022, 43(1): 182-193.
[15]	Zhiqiang YAO, Zhirong ZHU, Guohua YE. Achieving resist against DHCP man-in-the-middle attack scheme based on key agreement [J]. Journal on Communications, 2021, 42(8): 103-110.