公有云中身份基多源IoT终端数据PDP方案

doi:10.11959/j.issn.1000-436x.2021077

Abstract

Abstract:

To solve the problem of multi-source IoT data integrity verification, identity-based provable data possession for multi-source IoT terminal in public cloud (ID-MPDP) was proposed.Firstly, the formal definitions of system model and security model of ID-MPDP were given.Then, the specific ID-MPDP scheme was designed by using RSA.Finally, the performance analysis and security analysis of ID-MPDP were given.Through performance analysis and security analysis, ID-MPDP was provably secure, efficient and convertible.It has the following advantages, such as it can be used for the integrity checking for multi-source IoT terminal data, it has lower block expansion rate, it eliminates the certification management cost by using the identity-based public key cryptography and it is convertible.

Key words: cloud computing, identity-based public-key cryptography, provable data possession, IoT

CLC Number:

TP393

Huaqun WANG, Zhe LIU, Debiao HE, Jiguo LI. Identity-based provable data possession scheme for multi-source IoT terminal data in public cloud[J]. Journal on Communications, 2021, 42(7): 52-60.

Figures/Tables 5

符号	说明
p ,q	2个相同比特大小的大素数
n	n=pq
φ (n)	$ϕ (n) = (p - 1) (q - 1)$
$Z_{n}^{*}$	模n乘法群
${QR}_{n}$	模n二次剩余群
主公钥mpk	$n, e, e^{'}$
主私钥msk	d
f	伪随机函数
π	伪随机置换
H ₁,H₂,H₃	密码哈希函数
$({ID}_{i}, x_{{ID}_{i}})$	用户身份和私钥
n₁	数据所有者集合U 的基数
$\hat{n}$	块的数量
$F = (F_{1}, \dots, F_{\hat{n}})$	存储的文件F 被分为 $\hat{n}$ 个块
Tj	对应于Fj的标签

方案	TagBlock	CheckProof	PKI	基于身份	可转换性	多所有者
文献[14]方案	$5 n_{1} Exp + 3 n_{1} Mul + n_{1} Sig$	$n_{1} (c +2)Exp+ c n_{1} Mul+ n_{1} VeriCert$	需要	部分	否	否
文献[15]方案	$6 n_{1} Exp + n_{1} Mul + n_{1} Sig$	$4 n_{1} Exp + n_{1} Mul + n_{1} VeriCert$	需要	部分	否	否
本文方案	$4 n_{1} Exp + (n_{1} + n_{1}^{2}) Mul$	$(n_{1} + c + 2) Exp + (n_{1} + c) Mul$	不需要	是	是	是

方案	标签大小（数据所有者→PCS）	挑战大小（验证者→PCS）	响应大小（PCS→验证者）
文献[14]方案	$n_{1} (3 n + 2 \| Sig \|)$	$n_{1} (\hat{n} + 2 n)$	$n_{1} (3 n + 2 \| Sig \| +\| μ \|)$
文献[15]方案	$n_{1} (2 n + \| Sig \|)$	$n_{1} (\hat{n} + 2 n)$	$n_{1} (2 n + \| μ \|)$
本文方案	2n	$\hat{n} + 2 n$	3n

References 15

[1]	ATENIESE G , BURNS R , CURTMOLA R ,et al. Provable data possession at untrusted stores[C]// Proceedings of the 14th ACM Conference on Computer and Communications Security. New York:ACM Press, 2007: 598-607.
[2]	JUELS A , KALISKI B S J . PoRs:proofs of retrievability for large files[C]// Proceedings of the 14th ACM Conference on Computer and Communications Security. New York:ACM Press, 2007: 584-597.
[3]	SHACHAM H , WATERS B . Compact proofs of retrievability[J]. Journal of Cryptology, 2013,26: 442-483.
[4]	WANG H Q , WANG Q H , HE D B . Blockchain-based private provable data possession[J]. IEEE Transactions on Dependable and Secure Computing, 2019,PP(99): 1.
[5]	LI Y N , YU Y , CHEN R N ,et al. IntegrityChain:provable data possession for decentralized storage[J]. IEEE Journal on Selected Areas in Communications, 2020,38(36): 1205-1217.
[6]	CHEN R N , LI Y N , YU Y ,et al. Blockchain-based dynamic provable data possession for smart cities[J]. IEEE Internet of Things Journal, 2020,7(35): 4143-4154.
[7]	NI J B , ZHANG K , YU Y ,et al. Identity-based provable data possession from RSA assumption for secure cloud storage[J]. IEEE Transactions on Dependable and Secure Computing, 2020,PP(99): 1.
[8]	WANG H Q , WU Q H , QIN B ,et al. Identity-based remote data possession checking in public clouds[J]. IET Information Security, 2014,8(32): 114-121.
[9]	GUO W , ZHANG H , QIN S J ,et al. Outsourced dynamic provable data possession with batch update for secure cloud storage[J]. Future Generation Computer Systems, 2019,95: 309-322.
[10]	ZHOU L , FU A M , YANG G M ,et al. Efficient certificateless multi-copy integrity auditing scheme supporting data dynamics[J]. IEEE Transactions on Dependable and Secure Computing, 2020,PP(99): 1.
[11]	WANG H Q , HE D B , FU A M ,et al. Provable data possession with outsourced data transfer[J]. IEEE Transactions on Services Computing, 2019,PP(99): 1.
[12]	WANG H Q , HE D B , YU J ,et al. Incentive and unconditionally anonymous identity-based public provable data possession[J]. IEEE Transactions on Services Computing, 2019,12(35): 824-835.
[13]	裴定一, 祝跃飞 . 算法数论[M].第2版. 北京: 科学出版社, 2015.
	PEI D Y , ZHU Y F . Algorithmic number theory.second edition[M]. Beijing: Science Press, 2015.
[14]	YU Y , XUE L , AU M H ,et al. Cloud data integrity checking with an identity-based auditing mechanism from RSA[J]. Future Generation Computer Systems, 2016,62: 85-91.
[15]	ZHANG J H , LI P Y , SUN Z ,et al. ID-based data integrity auditing scheme from RSA with resisting key exposure[C]// Provable Security. Berlin:Springer, 2016: 83-100.

Metrics

Recommended 0

No Suggested Reading articles found!

Identity-based provable data possession scheme for multi-source IoT terminal data in public cloud

RichHTML

PDF

Knowledge

Abstract

Cite this article

share this article

Figures/Tables 5

References 15

Related Articles 15

Metrics

Recommended 0

[1]	Ling MA, Qiliang FAN, Ting XU, Guanchen GUO, Shenglin ZHANG, Yongqian SUN, Yuzhi ZHANG. Scheduling framework based on reinforcement learning in online-offline colocated cloud environment [J]. Journal on Communications, 2023, 44(6): 90-102.
[2]	Jian SHU, Jiawei SHI, Linlan LIU, Al-Kali Manar. Topology prediction for opportunistic network based on spatiotemporal convolution [J]. Journal on Communications, 2023, 44(3): 145-156.
[3]	Ziyuan WANG, Ruizhong DU. Certificateless public key cryptography based provable data possession scheme in edge environment [J]. Journal on Communications, 2022, 43(7): 62-72.
[4]	Xiaoxi ZHANG, Yongjun XU. Survey on backscatter communication for zero-power IoT [J]. Journal on Communications, 2022, 43(11): 199-212.
[5]	Youheng DONG, Geng ZHAO, Yingjie MA. Two-dimensional pseudo-random coupled map lattices system based on partitioned elementary cellular automata and its dynamic properties [J]. Journal on Communications, 2022, 43(1): 71-82.
[6]	Xiaoyan LIANG, Ruizhong DU. Semantic representation and interval roughness analysis of IoT CapBAC rules [J]. Journal on Communications, 2021, 42(9): 43-53.
[7]	Yiyu YANG, Wei ZHOU, Shangru ZHAO, Cong LIU, Yuhui ZHANG, He WANG, Wenjie WANG, Yuqing ZHANG. Survey of IoT security research: threats, detection and defense [J]. Journal on Communications, 2021, 42(8): 188-205.
[8]	Jianhong ZHANG, Menglong WU, Jing WANG, Pei LIU, Zhengtao JIANG, Changgen PENG. Secure and verifiable multi-keyword searchable encryption scheme in cloud [J]. Journal on Communications, 2021, 42(4): 139-149.
[9]	Ruiqi LI, Chunfu JIA, Yafei WANG. Multi-key homomorphic proxy re-encryption scheme based on NTRU and its application [J]. Journal on Communications, 2021, 42(3): 11-22.
[10]	Zhenyu ZHOU, Zehan JIA, Haijun LIAO, Xiongwen ZHAO, Lei ZHANG. Context-aware learning-based access control method for power IoT [J]. Journal on Communications, 2021, 42(3): 150-159.
[11]	Xiangmao CHANG, Jun ZHAN, Zhiwei WANG. Low-cost group-based identity security authentication protocol for NB-IoT nodes [J]. Journal on Communications, 2021, 42(12): 152-162.
[12]	Jiawei ZHANG, Jianfeng MA, Zhuo MA, Teng LI. Time-based and privacy protection revocable and traceable data sharing scheme in cloud computing [J]. Journal on Communications, 2021, 42(10): 81-94.
[13]	Wenjuan WANG, Xuehui DU, Dibin SHAN. Construction method of attack scenario in cloud environment based on dynamic probabilistic attack graph [J]. Journal on Communications, 2021, 42(1): 1-17.
[14]	Guolin SUN,Ruijie OU,Guisong LIU. Deep reinforcement learning-based resource reservation algorithm for emergency Internet-of-things slice [J]. Journal on Communications, 2020, 41(9): 8-20.
[15]	Youliang TIAN,Qin LUO. Verifiable multi-keyword search scheme based on improved Merkle-Tree authentication method [J]. Journal on Communications, 2020, 41(9): 118-129.