New public auditing protocol based on homomorphic tags for secure cloud storage

Zhang, Jindan; Wang, Baocang; Ogiela, Marek R.; Wang, Xu An; Sangaiah, Arun Kumar

doi:10.1002/cpe.5600

Cited by 9 publications

(6 citation statements)

References 34 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…HE with different approaches have been utilized to address the DIV problem. Classical auditing methods on single data copy had a broad resonance in addressing this problem, which represented by provable data possession (PDP) techniques [15], [16], [17], [18], [19], [20] and proving the possibility of retrieval (POR) techniques [21], [22], [23], [24], [25], [26], [27]. However, these methods are ineffective in the case of data loss or corruption on the servers.…”

Section: Related Workmentioning

confidence: 99%

Verifiable Homomorphic Encrypted Computations for Cloud Computing

Awadallah¹,

Samsudin²,

Almazrooie³

2021

IJACSA

View full text Add to dashboard Cite

Section: Related Workmentioning

confidence: 99%

Verifiable Homomorphic Encrypted Computations for Cloud Computing

Awadallah¹,

Samsudin²,

Almazrooie³

2021

IJACSA

View full text Add to dashboard Cite

“…To be exact, the fairness of the verification makes both parties questionable. To handle this, it is necessary to conduct public verification 1–37 …”

Section: Introductionmentioning

confidence: 99%

“…18 And to be more practical, dynamic support for public auditing schemes are greatly developed by the researchers. [3][4][5][6][7][8][9][10][11][12][13][14][15][17][18][19][20]23,[26][27][28][29] Under cloud storage environment, due to the large number of cloud storage users, accordingly, there are also many users who deputes audits.…”

mentioning

confidence: 99%

Enable data privacy, dynamics, and batch in public auditing scheme for cloud storage system

Yuan

Zhang

et al. 2021

Concurrency and Computation

View full text Add to dashboard Cite

With the popularity of cloud computing, cloud storage technology has also been widely used. Among them, data integrity verification is a hot research topic. At present, the realization of public auditing has become the development trend of integrity verification. Most existing public auditing schemes rarely consider some indispensable functions at the same time. Thus, in this article, we propose a comprehensive public auditing scheme (PDBPA) that can simultaneously support data privacy protection, data dynamics, and multi-user batch auditing. To guarantee privacy protection during the audit process, our PDBPA design a new method of constructing audit proof, which combines random masking techniques and bilinear properties of bilinear pairing. Not only can it ensure that TPA performs audits correctly, but it can also prevent it from exploring the user's sensitive data. In addition, by utilizing the modified dynamic hash table, which is a novel and small two-dimensional data structure, data dynamics can be effectively achieved. Furthermore, we provide a detailed process for the third-party auditors to perform batch audits for multiple users. Moreover, we give the detailed and rigorous security analysis in defending against forgery attack, replace attack, and replay attack. Performance evaluations demonstrate that our PDBPA scheme is effective and feasible. K E Y W O R D Sbatch auditing, cloud computing, data dynamics, data privacy protection, public auditing, security cloud storage INTRODUCTIONWith the advent of the information era, more and more people choose to outsource their data to cloud storage servers to save local storage space. Cloud server provider (CSP) supplies users with large-capacity, high-performance storage services, and users only need to determine service type according to own needs. However, because users have lost physical control of outsourced data, people have doubts about the security and integrity of data on the cloud. For example, untrustworthy CSP may deliberately discard data that users do not frequently access to save storage space; or lose user data due to their own mistakes but choose to conceal clients to maintain their reputation. Thus, it is a hard challenge whether the cloud storage system and its provider can meet the user's security requirements for data storage. To secure this, designing the data integrity checking scheme that can verify the integrity of outsourced data and resist malicious CSP has become a research hotspot for scholars.The traditional remote data integrity checking schemes require the user to download all the data blocks that have been uploaded to the CSP to the local, and then perform the verification, which is neither practical nor advisable. In fact, this is the method adopted by the private verification and has two gaps: (a) It will inevitably bring huge costs to the data owner (DO), especially when the DO possess the device with tight storage space

show abstract

“…To address these issues, the public auditing solution was proposed. Zhang et al 9 designed a new public auditing protocol using the homomorphic tags for secure cloud storage, the protocol is to ensure the outsourced data to be kept secure and check the outsourced data's integrity.…”

Section: Introductionmentioning

confidence: 99%

An efficient certificateless public auditing scheme in cloud storage

Gao

Fei

Qin³

2020

Concurrency and Computation

View full text Add to dashboard Cite

Cloud storage is a mode of online storage in which data are stored on multiple virtual servers usually hosted by third parties. Cloud service providers manage and operate data storage as services. The major concern in cloud storage is the integrity of outsourced data. Many public auditing schemes which authorize the third party auditor (TPA) to check the integrity of outsourced data have been proposed. However, most of them are based on traditional public key cryptosystems. This paper proposes an efficient certificateless public auditing Scheme (CL-PAS) in cloud storage. In the process of challenge and auditing, CL-PAS ensures that malicious cloud servers cannot forge auditing evidences to deceive TPA to pass the verification, and prevents curious TPA from recovering original data from auditing evidences. So it strengthens privacy preserving. Security analysis shows that CL-PAS scheme meets the predetermined security requirements. The simulation and performance analysis results show that, compared with similar schemes, CL-PAS scheme has the higher efficiency. K E Y W O R D S certificateless, cloud storage, data integrity, privacy preserving, public auditing 1 INTRODUCTION Cloud storage is one of the most widely used cloud computing services. Individuals and businesses outsource their data to the cloud and then access the outsourced data anywhere by network, thus saving local storage overhead and improving the flexibility of using data. 1-3 However, as users lose the direct control over the data, the data stored in cloud will face many internal and external security attacks, and any failure in the cloud can lead to data leakage and loss. For example, cloud service providers (CSP) may deceive users for their own benefits so that some of the outsourced data have been destroyed by internal or external attacks. In order to save the storage space, CSP may delete the data that users do not often use, and do not inform the data owner that the data had been deleted. To solve these problems, cloud storage integrity detection scheme is proposed to guarantee that users can detect whether their data are completely stored in the cloud before downloading actual data. 4 Ateniese et al 5 proposed a typical provable data possession (PDP) 5 mechanism based on RSA homomorphic validation tag technology. In the mechanism, a file firstly is divided into several data blocks, each of which has corresponding homomorphic tags. Then, a certain number of data blocks are randomly sampled and data integrity verification is carried out by verifying homomorphic tags. Finally, the data integrity is judged according to the validity of proof information. However, this scheme does not support dynamic data verification. Juels et al 6 proposed the mechanism of proofs of retrievability (POR). The POR camouflages stored data blocks with an encryption technology and hides a certain number of sentinels in data blocks, so that the integrity of outsourced data can be judged by verifying the validity of sentinel data blocks. If the data file is found to be d...

show abstract

New public auditing protocol based on homomorphic tags for secure cloud storage

Cited by 9 publications

References 34 publications

Verifiable Homomorphic Encrypted Computations for Cloud Computing

Verifiable Homomorphic Encrypted Computations for Cloud Computing

Enable data privacy, dynamics, and batch in public auditing scheme for cloud storage system

An efficient certificateless public auditing scheme in cloud storage

Contact Info

Product

Resources

About