Dynamic Group-Oriented Provable Data Possession in the Cloud

He, Kun; Chen, Jing; Yuan, Quan; Ji, Shouling; He, Debiao; Du, Ruxu

doi:10.1109/tdsc.2019.2925800

Cited by 29 publications

(16 citation statements)

References 35 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Sookhak et al [9] investigated the realization of data dynamics with the aid of a novel structure -divide and conquer tables. With the help of the authenticated structure named blockless Merkle tree, He et al [10] proposed a dynamic group-oriented PDP scheme which can realize full dynamics. Considering that the traditional scheme is only applicable to audits where there is no dispute over data possession, combined with blockchain technology, Xu et al [11] provided a fairly arbitrable data auditing protocol.…”

Section: Related Workmentioning

confidence: 99%

Remote Data Possession Checking Scheme with Supporting Efficient Group User Authority Management for Shared Cloud Data

Yuan

Zhang

et al. 2021

Preprint

View full text Add to dashboard Cite

Under the shared big data environment, most of the existing data auditing schemes rarely consider the authorization management of group users. Meanwhile, how to deal with the shared data integrity is a problem that needs to be pondered. Thus, in this paper, we propose a novel remote data checking possession scheme which achieves group authority management while completing the public auditing. To perform authority management work, we introduce a trusted entity – group manager. We formalize a new algebraic structure operator named authorization invisible authenticator (AIA). Meanwhile, we provide two versions of AIA scheme: basic AIA scheme and standard AIA scheme. The standard AIA scheme is constructed based on the basic AIA scheme and user information table (UIT), with advanced security and wider applicable scenarios. By virtue of standard AIA scheme, the group manager can perfectly and easily carry out authority management, including enrolling, revoking, updating. On the basis of the above, we further design a public auditing scheme for non-revoked users’ shared data. The scheme is based on identity-based encryption (IBE), which greatly reduce the necessary certificate management cost. Furthermore, the detailed security analysis and performance evaluation demonstrate that the scheme is safe and feasible.

show abstract

Section: Related Workmentioning

confidence: 99%

Remote Data Possession Checking Scheme with Supporting Efficient Group User Authority Management for Shared Cloud Data

Yuan

Zhang

et al. 2021

Preprint

View full text Add to dashboard Cite

show abstract

“…In order to guarantee the integrity of data stored in the cloud, a number of cloud storage auditing schemes [2], [13], [15], [19], [22], [23], [32], [38] were proposed. Ateniese et al [2] firstly proposed a notion of ''Provable Data Possession'' (PDP) and designed a publicly verifiable PDP scheme by utilizing homomorphic authenticators and random sample technique.…”

Section: ) Cloud Storage Auditingmentioning

confidence: 99%

Lightweight Cloud Storage Auditing With Deduplication Supporting Strong Privacy Protection

Shen

Hao

2020

IEEE Access

View full text Add to dashboard Cite

The cloud storage auditing with deduplication is able to verify the integrity of data stored in the cloud while the cloud needs to keep only a single copy of duplicated file. To the best of our knowledge, all of the existing cloud storage auditing schemes with deduplication are vulnerable to brute-force dictionary attacks, which incurs the leakage of user privacy. In this paper, we focus on a new aspect of being against brute-force dictionary attacks on cloud storage auditing. We propose a cloud storage auditing scheme with deduplication supporting strong privacy protection, in which the privacy of user's file would not be disclosed to the cloud and other parties when this user's file is predictable or from a small space. In the proposed scheme, we design a novel method to generate the file index for duplicate check, and use a new strategy to generate the key for file encryption. In addition, the user only needs to perform lightweight computation to generate data authenticators, verify cloud data integrity, and retrieve the file from the cloud. The security proof and the performance evaluation demonstrate that the proposed scheme achieves desirable security and efficiency. INDEX TERMS Cloud storage auditing, deduplication, strong privacy protection, data security, cloud storage.

show abstract

“…A good number of RDIC protocols have also been proposed by the researchers for auditing group shared data [10, 13-25, 32, 35-37, 39]. Some of these schemes, such as [10,42], are dependent on the traditional public key infrastructure (PKI)-based system where a trusted certification authority (CA) is responsible for managing and distributing public key certificates of all the users and the certificate revocation lists (CRLs). Although PKI-based security protocols serve excellent in traditional networks such as the Internet, they are inefficient in a ubiquitous network like FOG-CPS.…”

Section: Introductionmentioning

confidence: 99%

Certificateless Reliable and Privacy-Preserving Auditing of Group Shared Data for FOG-CPSs

Burra

Maity

2022

Security and Communication Networks

View full text Add to dashboard Cite

FOG-enabled cyber-physical systems (FOG-CPSs) open new security challenges as the local edge devices are easier to compromise than a traditional cloud server. Remote data integrity checking (RDIC) plays an important role in safeguarding against data corruption from a storage server. Certificateless cryptography (CLPKC)-based RDIC schemes do not suffer from the drawbacks of the public key infrastructure (PKI)-based RDIC protocols. Most of the CLPKC-based RDIC schemes proposed in the literature deal with personal data. However, in a FOG-CPS, it is also important to audit a data file shared by a group of edge devices. Most of the existing group shared data auditing schemes lack mechanisms to defend against a semi-trusted data auditor applicable for a FOG-CPS scenario. In order to address these issues, in this paper, we propose a novel CLPKC-based group shared data auditing protocol tailored to the specific security requirements of a FOG-CPS. Besides, we perform a detailed cryptanalysis of two existing CLPKC-based privacy-preserving group shared data auditing schemes. The formal security analysis of our proposed protocol establishes metadata and data integrity proof unforgeability and claimed zero-knowledge privacy and reliability properties through rigorous proofs in the random oracle model setting. Performance evaluations establish the efficiency of our proposed protocol.

show abstract

Dynamic Group-Oriented Provable Data Possession in the Cloud

Cited by 29 publications

References 35 publications

Remote Data Possession Checking Scheme with Supporting Efficient Group User Authority Management for Shared Cloud Data

Remote Data Possession Checking Scheme with Supporting Efficient Group User Authority Management for Shared Cloud Data

Lightweight Cloud Storage Auditing With Deduplication Supporting Strong Privacy Protection

Certificateless Reliable and Privacy-Preserving Auditing of Group Shared Data for FOG-CPSs

Contact Info

Product

Resources

About