Efficient Privacy-Preserving Certificateless Public Auditing of Data in Cloud Storage

Yan, Hao; Liu, Yanan; Zhang, Zheng; Wang, Qian

doi:10.1155/2021/6639634

Cited by 6 publications

(6 citation statements)

References 43 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Both integrity-proof generation and verification must also efficiently aggregate information of different group users. The schemes in [23], [24], [25], [26], [28], [30], [31], [32], [40], and [41] support shared group data auditing. While we primarily focus on CLC-based shared group data auditing schemes considering the benefits of CLC over PKI and IBC.…”

Section: B Related Workmentioning

confidence: 99%

“…While we primarily focus on CLC-based shared group data auditing schemes considering the benefits of CLC over PKI and IBC. The CLC-based shared group data auditing schemes in [28], [30], [31], [32], and [40] are for conventional cloud computing scenarios. Hence, these schemes cannot be applied directly to shared group data auditing in fog computing scenarios, considering the distinctive properties of fog networks as mentioned below.…”

Section: B Related Workmentioning

confidence: 99%

“…While the user trusts and assumes the confidentiality of data files at the cloud server, there is still concern about remote data file integrity. Numerous schemes in the literature [2], [3], [4], [5], [7], [9], [10], [11], [12], [14], [15], [16], [17], [18], [19], [23], [24], [25], [26], [28], [29], [30], [31], [32], [40], [41], [42] provide remote data integrity checking (RDIC) mechanisms that allow the user to verify the integrity of the remote data file. An RDIC scheme contains two main components: The first is called the preprocessing component, and the second is called the auditing component.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

A Distributed and Decentralized Certificateless Framework for Reliable Shared Data Auditing for FOG-CPS Networks

Burra

Maity

2023

IEEE Access

View full text Add to dashboard Cite

FOG computing enhances communication efficiency by processing data at the network's edge. In many critical infrastructure (CI) networks, user entities outsource data to the FOG server, but the reliability of the data is a concern. To avoid incorrect decision-making due to corrupt data, a data auditing process is mandatory. Further, a group of user entities in a CI network generate data onto a common file and outsource the file to the FOG server. Auditing such shared group data creates additional complexities. Existing shared group data auditing schemes using public key infrastructure (PKI) or identity-based cryptography (IBC) face challenges such as certificate management or key escrow problems respectively. While, certificateless cryptography (CLC) offers better security and efficiency, but many CLC-based shared group data auditing schemes lack protection against key generation center compromise. The key generation process in many of the existing shared group data auditing schemes is centralized and does not support flexible user entity admission. This paper proposes a distributed and decentralized cryptography approach to enhance the security of key generation for group members. The scheme offers flexible user admission, allowing for full or semi-membership. The proposed scheme provides efficient and secure shared group data auditing against public key replacement, metadata forgery, and integrity attacks, as shown by performance evaluation and security analysis.

show abstract

Section: B Related Workmentioning

confidence: 99%

Section: B Related Workmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

A Distributed and Decentralized Certificateless Framework for Reliable Shared Data Auditing for FOG-CPS Networks

Burra

Maity

2023

IEEE Access

View full text Add to dashboard Cite

show abstract

“…To handle user groups, most of the auditing schemes uses group and ring signature techniques that suffers from large tag size resulting in increased communication and verification cost as well as storage space. Yan et al [99] proposed certificateless PDP in a workgroup that preserves privacy with respect to data uploader as well as group user. This scheme experience reduction in verification time but cost of tag generation is linearly increasing with number of tags.…”

Section: ) Lightweight and Privacy_preserving Public Auditing Using Iomentioning

confidence: 99%

Towards Lightweight Provable Data Possession for Cloud Storage Using Indistinguishability Obfuscation

Chaudhari

Swain

2022

IEEE Access

View full text Add to dashboard Cite

Cloud Computing has proved to be a boon for many individuals and organizations who cannot afford infrastructure and maintenance cost of resources. But the untrusted nature of Cloud Server (CS) brings many challenges related to security and trust. Public auditing is one process that enables users to delegate the integrity verification of outsourced data to external party such as Third-Party Auditor (TPA). Provable Data Possession (PDP) is one approach of auditing that can verify the integrity using cryptographic algorithms. Many PDP schemes are based on bilinear pairing and homomorphic authenticators that involves complex computations that leads to increased verification time. The lightweight auditing processes is a need today using modern cryptographic techniques. Indistinguishability Obfuscation (IO) is one of the modern but weaker primitive that, if used with one-way functions, provide multiple cryptographic constructs. Sahai and Waters proposed construction of cryptographic constructs using IO. Zhang et al. proposed lightweight public auditing scheme using these IO. But still there are many goals to achieve such as group support, collusion handling, privacy-preserving etc. using IO. In this paper, we are trying to explore these issues and lists future research directions in this field. INDEX TERMSPublic Auditing, Provable Data Possession, Homomorphic verifiable Tags, Indistinguishability Obfuscation. I. INTRODUCTION Evolution in the field of computer technology and Internetbased services open up the era of Cloud Computing. Highspeed processors with improved service computing architecture led to the development of large data centers.Flexible and increased network bandwidth enables a client to access or subscribe to data and services from remote data centers. This improved computing architecture helps many organizations or individuals to expand their businesses without any investment in infrastructure and maintenance costs. This paradigm mainly provides services in computing and storage. Multiple computing resources are easily assigned and released to cloud users based on their needs. Cloud datastore is one of the widely used services among cloud users. Cloud users can easily store and share information on cloud storage. Although it provides a promising platform, this paradigm has brought many security and performance issues with it. The main concern is that of integrity verification of outsourced data at remote

show abstract

“…Ji et al introduced an improved version of [10] by increasing the flexibility and optimizing the efficiency [8]. Recently, many researchers proposed some PDP schemes to support data privacy [11,14,17,25].…”

Section: Related Workmentioning

confidence: 99%

A collusion-resistant certificateless provable data possession scheme for shared data with user revocation

Yang

Han

et al. 2022

Preprint

View full text Add to dashboard Cite

Cloud storage service can provide a lot convenience for users to collect, store and share data within a group. However, there are some secure issues, one of which is that the cloud server may cheat users for a good reputation when the data is lost. A classical solution to deal with it is provable data possession (PDP) protocols. Most of PDP protocols are relied on either the public key infrastructure or identity-based cryptography. However, certificate management and key escrow issues place a significant burden on this. Furthermore, revoking the group's illegal users is a critical issue for PDP schemes. To address these problems, we put forward a certificateless PDP scheme for shared data with user revocation. Our proposed scheme not only achieves efficient user revocation but also withstands collusion attack. We also give a formal proof of security of our proposed scheme without random oracle model. Experimental results and analysis show that our scheme is quite effective in data auditing, verification, and user revocation.

show abstract

Efficient Privacy-Preserving Certificateless Public Auditing of Data in Cloud Storage

Cited by 6 publications

References 43 publications

A Distributed and Decentralized Certificateless Framework for Reliable Shared Data Auditing for FOG-CPS Networks

A Distributed and Decentralized Certificateless Framework for Reliable Shared Data Auditing for FOG-CPS Networks

Towards Lightweight Provable Data Possession for Cloud Storage Using Indistinguishability Obfuscation

A collusion-resistant certificateless provable data possession scheme for shared data with user revocation

Contact Info

Product

Resources

About