Efficient Remote Data Possession Checking in Critical Information Infrastructures

Sebé, Francesc; Domingo‐Ferrer, Josep; Martínez-Ballesté, Antoni; Deswarte, Yves; Quisquater, J.-J.

doi:10.1109/tkde.2007.190647

Cited by 250 publications

(120 citation statements)

References 5 publications

Supporting

Mentioning

120

Contrasting

Order By: Relevance

“…To circumvent the problem of exponentiating the entire file, Sebé et al [11] presented a scheme to remotely verify data integrity by first fragmenting the file into blocks, fingerprinting each file block, and then using an RSA-based hash function on the blocks. Thus, the data file F is divided into a set of m blocks: F = {b 1 , b 2 , .…”

Section: Provable Static Data Possessionmentioning

confidence: 99%

See 1 more Smart Citation

Provable Data Possession in Single Cloud Server: A Survey, Classification and Comparative Study

Barsoum¹

2015

IJCA

View full text Add to dashboard Cite

Storage-as-a-Service (SaaS) offered by cloud service providers is a paid facility that enables organizations to outsource their data to be stored on remote servers. Thus, SaaS reduces the maintenance cost and mitigates the burden of large local data storage at the organization's end. However, the fact that data owners no longer physically possess their sensitive data raises new challenges to the tasks of data confidentiality and integrity in cloud computing systems. Many researchers have focused on the problem of provable data possession (PDP), and proposed different schemes to audit data on remote storage sites. In this paper, we investigate the concept of PDP and provide an extensive survey for different PDP schemes on a single cloud server. Moreover, the paper discusses the design principles for various PDP constructions, highlights some limitations, and present a comparative analysis for numerous PDP models. We classify PDP schemes into protocols for static data, and models that support outsourcing of dynamic data.

show abstract

Section: Provable Static Data Possessionmentioning

confidence: 99%

“…Their scheme does not require the exponentiation of the entire file. Figure 4 demonstrates the protocol of Sebé et al [11].…”

Section: Provable Static Data Possessionmentioning

confidence: 99%

Provable Data Possession in Single Cloud Server: A Survey, Classification and Comparative Study

Barsoum¹

2015

IJCA

View full text Add to dashboard Cite

show abstract

“…Their construction is based on Sebé et al's protocol [24] and the homomorphic verifiable tag technique due to Ateniese et al [6]. While it can be shown that the challenge-response protocol "does not leak any information of the data to TPA", it does not prevent the verifier from learning information about the data from the meta-data.…”

Section: Analysis Of Hao Et Al's Rdic Protocolmentioning

confidence: 99%

“…Sebé et al [24] proposed a data possession checking protocol which achieves many desirable properties such as unlimited number of verifications, low communication cost, blockless verification, and security against a malicious server. However, this scheme does not support public verifiability nor guarantees data privacy.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Enhanced privacy of a remote data integrity-checking protocol for secure cloud storage

et al. 2014

Int. J. Inf. Secur.

View full text Add to dashboard Cite

Remote data integrity checking (RDIC) enables a server to prove to an auditor the integrity of a stored file. It is a useful technology for remote storage such as cloud storage. The auditor could be a party other than the data owner; hence, an RDIC proof is based usually on publicly available information. To capture the need of data privacy against an untrusted auditor, Hao et al. formally defined "privacy against third party verifiers" as one of the security requirements and proposed a protocol satisfying this definition. However, we observe that all existing protocols with public verifiability supporting data update, including Hao et al.'s proposal, require the data owner to publish some meta-data related to the stored data. We show that the auditor can tell whether or not a client has stored a specific file and link various parts of those files based solely on the published metadata in Hao et al.'s protocol. In other words, the notion "privacy against third party verifiers" is not sufficient in protecting data privacy, and hence, we introduce "zero-knowledge privacy" to ensure the third party verifier learns nothing about the client's data from all available information. We enhance the privacy of Hao et al.'s protocol, develop a prototype to evaluate the performance and perform experiment to demonstrate the practicality of our proposal. 2014 Springer-Verlag Berlin Heidelberg. Abstract Remote data integrity checking (RDIC) enables a server to prove to an auditor the integrity of a stored file. It is a useful technology for remote storage such as cloud storage. The auditor could be a party other than the data owner; hence an RDIC proof is based usually on publicly available information. To capture the need of data privacy against an untrusted auditor, Hao et al. formally defined "privacy against third party verifiers" as one of the security requirements and proposed a protocol satisfying this definition. However, we observe that all existing protocols with public verifiability supporting data update, including Hao et al.'s proposal, require the data owner to publish some metadata related to the stored data. We show that the audi- In other words, the notion "privacy against third party verifiers" is not sufficient in protecting data privacy and hence we introduce "zero-knowledge privacy" to ensure the third party verifier learns nothing about the client's data from all available information. We enhance the privacy of Hao et al.'s protocol, develop a prototype to evaluate the performance and perform experiment to demonstrate the practicality of our proposal.

show abstract

Secure Distributed Data Storage in Cloud Computing

Chen

Feng

et al. 2011

Cloud Computing

View full text Add to dashboard Cite

Efficient Remote Data Possession Checking in Critical Information Infrastructures

Cited by 250 publications

References 5 publications

Provable Data Possession in Single Cloud Server: A Survey, Classification and Comparative Study

Provable Data Possession in Single Cloud Server: A Survey, Classification and Comparative Study

Enhanced privacy of a remote data integrity-checking protocol for secure cloud storage

Secure Distributed Data Storage in Cloud Computing

Contact Info

Product

Resources

About