基于收敛加密的云安全去重与完整性审计系统

doi:10.11959/j.issn.1000-436x.2017269

Abstract

Abstract:

Cloud storage applications quickly become the best choice of the personal user and enterprise storage with its convenience,scalability and other advantages,secure deduplication and integrity auditing are key issues for cloud storage.At first,convergent key encapsulation/decoupling algorithm based on blind signature was set up,which could securely store key and enable it to deduplicate.Besides,a BLS signature algorithm based on convergence key was provided and use TTP to store public key and proxy audit which enables signature and pubic key deduplication and reduces client storage and computing overhead.Finally,cloud-based secure deduplicaion and integrity audit system was designed and implemented.It offered user with data privacy protection,deduplication authentication,audit authentication services and lowered client and cloud computation overhead.

Key words: deduplication, convergent key, key management, proxy audit

CLC Number:

TP393

Xiao-yong GUO,An-min FU,Bo-yu KUANG,Wei-jia DING. Secure deduplication and integrity audit system based on convergent encryption for cloud storage[J]. Journal on Communications, 2017, 38(Z2): 156-163.

Figures/Tables 5

References 19

[1]	GANTZ B J , REINSEL D . Big data,bigger digital shadows,and biggest growth in the far east executive summary:a universe of opportunities and challenges[C]// Idc. 2007: 1-16.
[2]	HALEVI S , HARNIK D , PINKAS B ,et al. Proofs of ownership in remote storage systems[C]// The 18th ACM conference on Computer and communications security. 2011: 491-500.
[3]	杨超, 纪倩, 熊思纯 ,等. 新的云存储文件去重复删除方法[J]. 通信学报, 2017,38(3): 25-33.
	YANG C , JI Q , XIONG S . New method for file deduplication in cloud storage[J]. Journal on Communications, 2017,37(3): 25-33.
[4]	LI J , CHEN X F , LI M Q ,et al. Secure deduplication with efficient and reliable convergent key management[J]. IEEE Trans on Parallel and Distributed Systems, 2014,25(6): 1615-1625.
[5]	DOUCEUR J R , ADYA A , BOLOSKY W J ,et al. Reclaiming space from duplicate files in a serverless distributed file system[C]// 22nd International Conference on Distributed Computing Systems, 2002: 617-624.
[6]	熊金波, 张媛媛, 李凤华 ,等. 云环境中数据安全去重研究进展[J]. 通信学报, 2016,37(11): 169-180.
	XIONG J B , ZHANG Y Y , LI F H ,et al. Research progress on secure data deduplication in cloud[J]. Journal on Communications, 2016,31(1 1): 169-180.
[7]	CHEN R , MU Y , YANG G ,et al. BL-MLE:block-level message-locked encryption for secure large file deduplication[J]. IEEE Trans actions on Information Forensics and Security, 2015,10(12): 2643-2652.
[8]	BELLARE M , KEELVEEDHI S , RISTENPART T . Message-locked encryption and secure deduplication[C]// Annual International Conference on the Theory and Applications of Cryptographic Techniques. 2013: 296-312.
[9]	ATENIESE G , BURNS R , CURTMOLA R ,et al. Provable data possession at untrusted stores[C]// The 14th ACM conference on Computer and communications security. 2007: 598-609.
[10]	黄龙霞, 张功萱, 付安民 . 基于层次树的动态群组隐私保护公开审计方案[J]. 计算机研究与发展, 2016,53(10): 2334-2342.
	HUANG L X , ZHANG G X , FU A M . Privacy-preserving public auditing for dynamic group based on hierarchical tree[J]. Journal of Computer Research and Development, 2016,53(10): 2334-2342.
[11]	LI Y , FU A , YU Y ,et al. IPOR:an efficient IDA-based proof of retrievability scheme for cloud storage systems[C]// 2017 IEEE International Conference on Communications (ICC). 2017: 1-6.
[12]	FU A , YU S , ZHANG Y ,et al. NPP:a new privacy-aware public auditing scheme for cloud data sharing with group users[J]. IEEE Transactions on Big Data, 2017
[13]	付安民, 秦宁元, 宋建业 ,等. 云端多管理者群组共享数据中具有隐私保护的公开审计方案[J]. 计算机研究与发展, 2015,52(10): 2353-2362.
	FU A M , QIN N Y , SONG J Y . Privacy-preserving public auditing for multiple managers shared data in the cloud[J][J]. Journal of Computer Research and Development, 2015,52(10): 2353-2362.
[14]	HUANG L , ZHANG G , FU A . Certificateless public verification scheme with privacy-preserving and message recovery for dynamic group[C]// The Australasian Computer Science Week Multiconference. 2017:76.
[15]	YUAN J , YU S . Secure and constant cost public cloud storage auditingwith deduplication[C]// 2013 IEEE Conference on Communications and Network Security (CNS). 2013: 145-153.
[16]	LI J , LI J , XIE D ,et al. Secure auditing and deduplicating data in cloud[J]. IEEE Transactions on Computers, 2016,65(8): 2386-2396.
[17]	LIU X , SUN W , LOU W ,et al. One-tag checker:message-locked integrity auditing on encrypted cloud deduplication storage[J]. IEEE International Conference on Computer Communications, 2017.
[18]	SHACHAM H , WATERS B . Compact proofs of retrievability[C]// Asiacrypt. 2008: 90-107.
[19]	BOLDYREVA A , . Threshold signatures,multi signatures and blind signatures based on the gap-Diffie-Hellman-group signature scheme[C]// International Workshop on Public Key Crypto graphy. 2003: 31-46.

Metrics

Recommended 0

No Suggested Reading articles found!

方案	数据隐私	密钥管理	密钥去重	标签去重	拥有权证明	公开审计
文献[4]方案	9	9	9
文献[16]方案			9	9	9	9
文献[17]方案	9			9	9	9
本文	9	9	9	9	9	9

Secure deduplication and integrity audit system based on convergent encryption for cloud storage

RichHTML

PDF

Knowledge

Abstract

Cite this article

share this article

Figures/Tables 5

References 19

Related Articles 15

Metrics

Recommended 0

[1]	Wei JIN, Fenghua LI, Mingjie YU, Yunchuan GUO, Ziyan ZHOU, Liang FANG. HDFS-oriented cryptographic key resource control mechanism [J]. Journal on Communications, 2022, 43(9): 27-41.
[2]	Guanxiong HA, Qiaowen JIA, Hang CHEN, Chunfu JIA. Data popularity-based encrypted deduplication scheme without third-party servers [J]. Journal on Communications, 2022, 43(8): 17-29.
[3]	Zuobin YING, Yuanping SI, Jianfeng MA, Ximeng LIU. Blockchain-based distributed EHR fine-grained traceability scheme [J]. Journal on Communications, 2021, 42(5): 205-215.
[4]	Chunfu JIA, Guanxiong HA, Shaoqiang WU, Hang CHEN, Ruiqi LI. AONT-and-NTRU-based rekeying scheme for encrypted deduplication [J]. Journal on Communications, 2021, 42(10): 67-80.
[5]	Xin TANG,Linna ZHOU,Weijie SHAN,Dan LIU. Threshold re-encryption based secure deduplication method for cloud data with resistance against side channel attack [J]. Journal on Communications, 2020, 41(6): 98-111.
[6]	Chunfu JIA,Guanxiong HA,Ruiqi LI. Data access control policy of encrypted deduplication system [J]. Journal on Communications, 2020, 41(5): 72-83.
[7]	LI Xuejun,ZHANG Dan,LI Hui. Efficient revocable attribute-based encryption scheme [J]. Journal on Communications, 2019, 40(6): 32-39.
[8]	Xiangsong ZHANG,Chen LI,Zhenhua LIU. Key-exposure resilient integrity auditing scheme with encrypted data deduplication [J]. Journal on Communications, 2019, 40(4): 95-106.
[9]	Wei JIN,Mingjie YU,Fenghua LI,Zhengkun YANG,Kui GENG. High-performance and high-concurrency encryption scheme for Hadoop platform [J]. Journal on Communications, 2019, 40(12): 29-40.
[10]	Jinbo XIONG,Yuanyuan ZHANG,Youliang TIAN,Zuobin YING,Qi LI,Rong MA. Cloud data secure deduplication scheme via role-based symmetric encryption [J]. Journal on Communications, 2018, 39(5): 59-73.
[11]	Jin-bo XIONG,Su-ping LI,Yuan-yuan ZHANG,Xuan LI,EA-yong Y,Zhi-qiang YAO. PoSW:novel secure deduplication scheme for collaborative cloud applications [J]. Journal on Communications, 2017, 38(7): 18-27.
[12]	Chao YANG,Qian JI,Si-chun XIONG,Mao-zhen LIU,Jian-feng MA,Qi JIANG,Lin BAI. New method for file deduplication in cloud storage [J]. Journal on Communications, 2017, 38(3): 25-33.
[13]	Jin-bo XIONG,Feng-hua LI,Yan-chao WANG,Jian-feng MA,Zhi-qiang YAO. Research progress on cloud data assured deletion based on cryptography [J]. Journal on Communications, 2016, 37(8): 167-184.
[14]	Jin-bo XIONG,Yuan-yuan ZHANG,Feng-hua LI,Su-ping LI,Jun REN,Zhi-qiang YAO. Research progress on secure data deduplication in cloud [J]. Journal on Communications, 2016, 37(11): 169-180.
[15]	Yue CHEN,Chao-ling LI,Ju-long LAN,Kai-chun JIN,Zhong-hui WANG. Secure sensitive data deduplication schemes based on deterministic/probabilistic proof of file ownership [J]. Journal on Communications, 2015, 36(9): 1-12.