On Indistinguishability in Remote Data Integrity Checking

Fan, Xinyu; Yang, Guomin; Mu, Yi; Yu, Yong

doi:10.1093/comjnl/bxt137

Cited by 32 publications

(11 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…It also supports secure user revocation. Against the auditor in auditing integrity Yu et al [28], Yu et al [27] and Fan et al [15] considered in distinguishability/ privacy on outsourced data. Zhang and Dong's publicly verifiable data outsourcing scheme [29] is proved with tight security reduction in IDbased setting.…”

Section: A Related Workmentioning

confidence: 99%

Outsourcing Data based on Key Exchange and File Encryption with Integrity Check

P¹

2018

IJRASET

View full text Add to dashboard Cite

Cloud computing is a developing innovation and it gives different services to clients. The most attractive service of cloud computing is Data outsourcing. By Data Outsourcing the data owners can have any size of data on the cloud server and clients can retrieve data from cloud server when required. Cloud storage system provides facilitative file storage and sharing services for distributed clients. To address controllable outsourcing, integrity and origin auditing concerns on outsourced files, proposes an Identity Based Data Outsourcing (IBDO) scheme outfitted with attractive highlights worthwhile over existing systems in securing outsourced data. First, IBDO scheme allows a user to authorize devoted intermediaries that means dedicated proxies to upload data to the cloud storage server on her behalf, e.g., an organization may approve a few workers (proxies) to transfer documents to the organization's cloud account in a controlled way. In IBDO framework, to designate outsourcing rights to a proxy, the administrator signs a committed warrant for the proxy. The warrant may indicate who can outsource which sort of documents during what time in the interest of the data owner. The proxies are authorized and identified with their recognizable identities, which takes out complicated certificate management in usual secure distributed computing systems. The key exchange between administrator and users are done by ECDH (Elliptical Curve Diffie Hellman) algorithm. Second, IBDO scheme facilitates comprehensive auditing, that is, IBDO scheme not just allows regular integrity auditing as in existing schemes for securing outsourced data, yet in addition permits to audit the information on data origin, type, and consistence of outsourced files. The security of the files are also ensured in this system by encrypting the files using AES (Advanced Encryption Standard) algorithm.

show abstract

Section: A Related Workmentioning

confidence: 99%

Outsourcing Data based on Key Exchange and File Encryption with Integrity Check

P¹

2018

IJRASET

View full text Add to dashboard Cite

show abstract

“…Second Data Privacy Model. This model is given in [12], and follows the one proposed in [11,30]. Observe that such model is based on indistinguishability.…”

Section: Definition Of Dpdp Scheme With Pv and Dpmentioning

confidence: 99%

Dynamic Provable Data Possession Protocols with Public Verifiability and Data Privacy

Gritti

Chen

Susilo

et al. 2017

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Cloud storage services have become accessible and used by everyone. Nevertheless, stored data are dependable on the behavior of the cloud servers, and losses and damages often occur. One solution is to regularly audit the cloud servers in order to check the integrity of the stored data. The Dynamic Provable Data Possession scheme with Public Verifiability and Data Privacy presented in ACISP'15 is a straightforward design of such solution. However, this scheme is threatened by several attacks. In this paper, we carefully recall the definition of this scheme as well as explain how its security is dramatically menaced. Moreover, we proposed two new constructions for Dynamic Provable Data Possession scheme with Public Verifiability and Data Privacy based on the scheme presented in ACISP'15, one using Index Hash Tables and one based on Merkle Hash Trees. We show that the two schemes are secure and privacy-preserving in the random oracle model.Correctness. We require that a DPDP with PV and DP is correct if for (pk, sk) ← KeyGen(λ), T m ← TagGen(pk, sk, m), (F ′ , E ′ , ν ′ ) ← PerfOp (pk, F, E, inf o), ν ← GenProof(pk, F, chal, Σ), then 1 ← CheckOp(pk, ν ′ ) and 1 ← CheckProof (pk, chal, ν). N.B. The set of ranks is [1, n] at the first upload; it then becomes (0, n + 1) ∩ Q after operations as in the construction in [12]. Security and Privacy ModelsSecurity Model against the Server This model against the server is given in [12], and follows the one proposed in [1,7].We consider a DPDP with PV and DP as defined above. Let a data possession game between a challenger B and an adversary A (acting as the server) be as follows: ⋄ Setup. B runs (pk, sk) ← KeyGen(λ) such that pk is given to A while sk is kept secret. ⋄ Adaptive Queries. First, A is given access to a tag generation oracle O T G . A chooses blocks m i and gives them to B, for i ∈ [1, n]. B runs TagGen(pk, sk, m i ) → T m i and gives them to

show abstract

“…The scheme proposed by Shacham et al [5] cannot protect data privacy either. Although many other public auditing solutions have been proposed [6][7][8][9][10][11][12] that preserves privacy during the integrity audition, some schemes [6,8,9] only prevent the data leakage, rather than provide rigorous privacy guarantee. The solutions proposed by Wang et al and Worku et al [6,9] fail to achieve reliable data protection under their security models.…”

Section: Introductionmentioning

confidence: 99%

An Effective Integrity Verification Scheme of Cloud Data Based on BLS Signature

Luo

Zhou

Lin

et al. 2018

Security and Communication Networks

View full text Add to dashboard Cite

Cloud storage services allow users to outsource their data remotely to save their local storage space and enable them to manage resources on demand. However, once users outsourced their data to the remote cloud platform, they lose the physical control of the data. How to ensure the integrity of outsourced data is the major concern of cloud users and also is the main challenge in the cloud service deployment. Limited by the communication and computation overheads, traditional hash-based integrity verification solutions in the stand-alone systems cannot be directly adopted in remote cloud storing environment. In this paper, we improve the previous privacy preserving model and propose an effective integrity verification scheme of cloud data based on BLS signature (EoCo), which ensures public audition and data privacy preserving. In addition, EoCo also supports batch auditing operations. We conducted theoretical analysis of our scheme, demonstrated its correctness and security properties, and evaluated the system performance as well.

show abstract

On Indistinguishability in Remote Data Integrity Checking

Cited by 32 publications

References 11 publications

Outsourcing Data based on Key Exchange and File Encryption with Integrity Check

Outsourcing Data based on Key Exchange and File Encryption with Integrity Check

Dynamic Provable Data Possession Protocols with Public Verifiability and Data Privacy

An Effective Integrity Verification Scheme of Cloud Data Based on BLS Signature

Contact Info

Product

Resources

About