抗密钥泄露的支持密态数据去重的完整性审计方案

doi:10.11959/j.issn.1000-436x.2019076

Abstract

Abstract:

For the problems of key-exposure,encrypted data duplication and integrity auditing in cloud data storage,a public auditing scheme was proposed to support key update and encrypted data deduplication.Utilizing Bloom filters,the proposed scheme could achieve client-side deduplication,and guaranteed that the key exposure in one time period didn’t effect the users’ private key in other time periods.The proposed scheme could solve the conflict between key-exposure resilient and encrypted data deduplication in public auditing scheme for the first time.Security analysis indicates that the proposed scheme is strong key-exposure resilient,confidentiality,detectability,and unforgeability of authentication tags and tokens under the computation Diffie-Hellman hardness assumption in the random oracle model.

Key words: cloud storage, integrity auditing, key-exposure resilient, encrypted data, client-side deduplication

CLC Number:

TN309

Xiangsong ZHANG,Chen LI,Zhenhua LIU. Key-exposure resilient integrity auditing scheme with encrypted data deduplication[J]. Journal on Communications, 2019, 40(4): 95-106.

Figures/Tables 4

References 19

[1]	谭霜, 贾焰, 韩伟红 . 云存储中的数据完整性证明研究及进展[J]. 计算机学报, 2015,38(1): 164-177.
	TAN S , JIA Y , HAN W H . Research and development of provable data integrity in cloud storage[J]. Chinese Journal of Computers, 2015,38(1): 164-177.
[2]	WANG Q , WANG C , LI J ,et al. Enabling public verifiability and data dynamics for storage security in cloud computing[C]// The 14th European Symposium on Research in Computer Security. 2009: 355-370.
[3]	冯登国, 张敏, 张妍 ,等. 云计算安全研究[J]. 软件学报, 2011,22(1): 71-83.
	FENG D G , ZHANG M , ZHANG Y ,et al. Study on cloud computing security[J]. Journal of Software, 2011,22(1): 71-83.
[4]	ATENIESE G , BURNS R , CURTMOLA R ,et al. Provable data possession at untrusted stores[C]// The ACM Conference on Computer and Communications Security. ACM, 2007: 598-609.
[5]	JUELS A , KALISKI B S . Pors:proofs of retrievability for large files[C]// The 14th ACM Conference on Computer and Communications Security. ACM, 2007: 584-597.
[6]	熊金波, 张媛媛, 李凤华 ,等. 云环境中数据安全去重研究进展[J]. 通信学报, 2016,37(11): 169-180.
	XIONG J B , ZHANG Y Y , LI F H ,et al. Research progress on secure data deduplication in cloud[J]. Journal on Communications, 2016,37(11): 169-180.
[7]	熊金波, 张媛媛, 田有亮 ,等. 基于角色对称加密的云数据安全去重[J]. 通信学报, 2018,39(5): 59-73.
	XIONG J B , ZHANG Y Y , TIAN Y L ,et al. Cloud data secure deduplication scheme via role-based symmetric encryption[J]. Journal on Communications, 2018,39(5): 59-73.
[8]	郭晓勇, 付安民, 况博裕 ,等. 基于收敛加密的云安全去重与完整性审计系统[J]. 通信学报, 2017,38(Z2): 156-163.
	GUO X Y , FU A M , KUANG B Y ,et al. Secure deduplication and integrity audit system based on convergent encryption for cloud storage[J]. Journal on Communications, 2017,38(Z2): 156-163.
[9]	熊金波, 李素萍, 张媛媛 ,等. 共享所有权证明:协作云数据安全去重新方法[J]. 通信学报, 2017,38(7): 18-27.
	XIONG J B , LI S P , ZHANG Y Y ,et al. PoSW:novel secure deduplication scheme for collaborative cloud applications[J]. Journal on Communications, 2017,38(7): 18-27.
[10]	杨超, 纪倩, 熊思纯 ,等. 新的云存储文件去重复删除方法[J]. 通信学报, 2017,38(3): 25-33.
	YANG C , JI Q , XIONG S C ,et al. New method for file deduplication in cloud storage[J]. Journal on Communications, 2017,38(3): 25-33.
[11]	YUAN J , YU S . Secure and constant cost public cloud storage auditing with deduplication[C]// The 1st IEEE Conference on Communications and Network Security. IEEE, 2013: 145-153.
[12]	LI J , LI J , XIE D ,et al. Secure auditing and deduplicating data in cloud[J]. IEEE Transactions on Computers, 2016,65(8): 2386-2396.
[13]	KIRAZ M S . Solving the secure storage dilemma:an efficient scheme for secure deduplication with privacy-preserving public auditing[J]. IACR Cryptology ePrint Archive, 2016:696.
[14]	YU J , REN K , WANG C ,et al. Enabling cloud storage auditing with key-exposure resistance[J]. IEEE Transactions on Information Forensics and Security, 2017,10(6): 1167-1179.
[15]	YU J , WANG H . Strong key-exposure resilient auditing for secure cloud storage[J]. IEEE Transactions on Information Forensics and Security, 2017,12(8): 1931-1940.
[16]	CHATTERJEE S , SARKAR P . Identity-based encryption[M]. Boston: Springer Science ＆ Business MediaPress, 2011: 29-48.
[17]	BLOOM B H . Space/time trade-offs in hash coding with allowable errors[J]. Communications of the ACM, 1970,13(7): 422-426.
[18]	BLASCO J , PIETRO R D , ORFILA A ,et al. A tunable proof of ownership scheme for deduplication using Bloom filters[C]// The IEEE Conference on Communications and Network Security. IEEE, 2014: 481-489.
[19]	WANG C , CHOW S S , WANG Q ,et al. Privacy-preserving publicauditing for secure cloud storage[J]. IEEE Transactions on Computers, 2013,62(2): 362-375.

Metrics

Recommended 0

No Suggested Reading articles found!

算法	云服务器中存储文件副本	云服务器中没有存储文件副本
密钥生成算法	2exp	2exp
更新消息生成算法	2hash+exp+2pair	2hash+exp+2pair
文件上传算法	(l+1)hash+l prf	( 4)hash (2 2)exp (2 1)mul+sig+prf n n n+ + + ++
响应值生成算法	sexp+(s-1)mul+smul	sexp+(s-1)mul+smul
响应值验证算法	( 2)exp ( 2)mul 3pair s s+ ++ +	( 2)exp ( 2)mul 3pair s s+ ++ +

Key-exposure resilient integrity auditing scheme with encrypted data deduplication

RichHTML

PDF

Knowledge

Abstract

Cite this article

share this article

Figures/Tables 4

References 19

Related Articles 15

Metrics

Recommended 0

[1]	Guanxiong HA, Qiaowen JIA, Hang CHEN, Chunfu JIA. Data popularity-based encrypted deduplication scheme without third-party servers [J]. Journal on Communications, 2022, 43(8): 17-29.
[2]	Tao FENG, Fanqi KONG, Chunyan LIU, Rong MA, Albettar Maher. Dual verifiable cloud storage scheme based on blockchain [J]. Journal on Communications, 2021, 42(12): 192-201.
[3]	Chunfu JIA, Guanxiong HA, Shaoqiang WU, Hang CHEN, Ruiqi LI. AONT-and-NTRU-based rekeying scheme for encrypted deduplication [J]. Journal on Communications, 2021, 42(10): 67-80.
[4]	Yang LIU, Jun LI, Wenyun CHEN, Mugen PENG. Research on endogenous security data sharing mechanism of F-RAN for 6G [J]. Journal on Communications, 2021, 42(1): 67-78.
[5]	Junfeng TIAN,Yanbiao WANG,Xinfeng HE,Juntao ZHANG,Wanhe YANG,Ya’nan PANG. Survey on the causal consistency of data [J]. Journal on Communications, 2020, 41(3): 154-167.
[6]	Wenlong KE,Yong WANG,Miao YE,Junqi CHEN. Priority differentiated multicast flow scheduling method in Ceph cloud storage network [J]. Journal on Communications, 2020, 41(11): 40-51.
[7]	Lei SUN,Zhiyuan ZHAO,Jianhua WANG,Zhiqiang ZHU. Attribute-based encryption scheme supporting attribute revocation in cloud storage environment [J]. Journal on Communications, 2019, 40(5): 47-56.
[8]	Miaomiao TIAN,Chuang GAO,Jie CHEN. Identity-based cloud storage integrity checking from lattices [J]. Journal on Communications, 2019, 40(4): 128-139.
[9]	Junfeng TIAN,Mengjia CHAI,Liuling QI. Provable data possession scheme based on public verification and private verification [J]. Journal on Communications, 2019, 40(3): 48-59.
[10]	Ruizhong DU,Pengliang SHI,Xinfeng HE. Cloud data assured deletion scheme based on overwrite verification [J]. Journal on Communications, 2019, 40(1): 130-140.
[11]	Guofeng WANG,Chuanyi LIU,Peiyi HAN,Hezhong PAN,Binxing FANG. Research on technology of data encryption and search based on access broker [J]. Journal on Communications, 2018, 39(7): 1-14.
[12]	Xincheng YAN,Yue CHEN,Hongyong JIA,Yanru CHEN,Xinyue ZHANG. Secure data sharing scheme supporting efficient synchronous evolution for ciphertext and key [J]. Journal on Communications, 2018, 39(5): 123-133.
[13]	Yue CHEN,Longjiang WANG,Xincheng YAN,Xinyue ZHANG. Mimic storage scheme based on regenerated code [J]. Journal on Communications, 2018, 39(4): 21-34.
[14]	Shaohui WANG,Xiaoxiao PAN,Zhiwei WANG,Fu XIAO,Ruchuan WANG. Analysis and improvement on identity-based cloud data integrity verification scheme [J]. Journal on Communications, 2018, 39(11): 98-105.
[15]	Bin WANG,Wei-min LI,Jin-fang SHENG,Si-nuo XIAO. TCCL:secure and efficient development of desktop cloud structure [J]. Journal on Communications, 2017, 38(Z1): 9-18.