OPoR: Enabling Proof of Retrievability in Cloud Computing with Resource-Constrained Devices

Jin, Li; Tan, Xiao; Chen, Xiaofeng; Wong, Duncan S.; Xhafa, Fatos

doi:10.1109/tcc.2014.2366148

Cited by 73 publications

(26 citation statements)

References 27 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…To relieve the user's computation burden of authenticator generation, Guan et al [27] constructed a data integrity auditing scheme using indistinguishability obfuscation technique, which reduces the overhead for generating data authenticators. Li et al [28] proposed a data integrity auditing scheme which contains a cloud storage server and a cloud audit server. In this scheme, the cloud audit server helps user to generate data authenticators before uploading data to the cloud storage server.…”

Section: A Related Workmentioning

confidence: 99%

Data Integrity Auditing without Private Key Storage for Secure Cloud Storage

Shen

Qin

et al. 2021

IEEE Trans. Cloud Comput.

View full text Add to dashboard Cite

Using cloud storage services, users can store their data in the cloud to avoid the expenditure of local data storage and maintenance. To ensure the integrity of the data stored in the cloud, many data integrity auditing schemes have been proposed. In most, if not all, of the existing schemes, a user needs to employ his private key to generate the data authenticators for realizing the data integrity auditing. Thus, the user has to possess a hardware token (e.g. USB token, smart card) to store his private key and memorize a password to activate this private key. If this hardware token is lost or this password is forgotten, most of the current data integrity auditing schemes would be unable to work. In order to overcome this problem, we propose a new paradigm called data integrity auditing without private key storage and design such a scheme. In this scheme, we use biometric data (e.g. iris scan, fingerprint) as the user's fuzzy private key to avoid using the hardware token. Meanwhile, the scheme can still effectively complete the data integrity auditing. We utilize a linear sketch with coding and error correction processes to confirm the identity of the user. In addition, we design a new signature scheme which not only supports blockless verifiability, but also is compatible with the linear sketch. The security proof and the performance analysis show that our proposed scheme achieves desirable security and efficiency.

show abstract

Section: A Related Workmentioning

confidence: 99%

Data Integrity Auditing without Private Key Storage for Secure Cloud Storage

Shen

Qin

et al. 2021

IEEE Trans. Cloud Comput.

View full text Add to dashboard Cite

show abstract

“…Article [9] provides an associate economical verification theme for guaranteeing remote information integrity in cloud storage. The projected theme is established secure against reset attacks within the reinforced security model whereas supporting economical public verifiability and dynamic information operations at the same time projected a dynamic version of the previous PDP theme.…”

Section: Public Auditing Of Resource-constrained Devicesmentioning

confidence: 99%

Survey on Evidence of Retrievability Schemes of Cloud Storage Services for Resource-Strained Devices

2015

IJSR

View full text Add to dashboard Cite

Cloud computing moves the application programming and databases to the concentrated vast server farms, where the administration of the information and administrations may not be completely reliable. Cloud storage service is the cloud administrations which can give an enormous storage space to solve the bottleneck of the storage space of local end clients. On the other hand, cloud storage administration may have information security because the clients' information is not stored in their own storage. To diminish the computational expense at client side amid the trustworthiness confirmation of their information, the idea of public verifiability has been proposed. Then again, the challenge is that the computational weight is excessively enormous for the clients with resourceconstrained devices to compute the public verification tags of file blocks. In this paper, author will concentrate on data integrity in the cloud storage administration. Public auditability is a model of outsourcing information uprightness check, which can accomplish productivity and security and survey on different resource-constrained devices for retrievability in cloud computing and compare them. In this way, review the past researches of data integrity based on public auditability which incorporates gathering the essential prerequisites and assessment measurements, giving the agent ways to deal with dissect security and effectiveness.

show abstract

“…If each data access requester must obtain the decryption key from the data owner whose PHI is to be read, this method will restrict accessibility, because the data owner might be offline. In terms of data integrity, the auditability concept [12], [13], [18] is gradually maturing. Considering the large quantity of outsourced PHI and the limited resources of an individual patient, the data owner can delegate an independent Third Party Auditor (TPA) to perform data integrity verification periodically without maintaining a local copy of data files.…”

Section: Introductionmentioning

confidence: 99%

“…Considering the large quantity of outsourced PHI and the limited resources of an individual patient, the data owner can delegate an independent Third Party Auditor (TPA) to perform data integrity verification periodically without maintaining a local copy of data files. Some studies [11], [14], [15], [16], [17], [18] have investigated the confidentiality issue in cloud storage, whereas others have focused on data auditing [12], [13], [16]. However, most existing PHI systems [14], [15], [17], [18] are not suitable for lightweight IoT devices because of the heavy cost of cryptographic computation.…”

Section: Introductionmentioning

confidence: 99%

Cloud-Based Fine-Grained Health Information Access Control Framework for LightweightIoT Devices with Dynamic Auditing andAttribute Revocation

Yeh

Chiang

Tsai

et al. 2018

IEEE Trans. Cloud Comput.

View full text Add to dashboard Cite

The eHealth trend has spread globally. Internet of Things (IoT) devices for medical service and pervasive Personal Health Information (PHI) systems play important roles in the eHealth environment. A cloud-based PHI system appears promising but raises privacy and information security concerns. We propose a cloud-based fine-grained health information access control framework for lightweight IoT devices with data dynamics auditing and attribute revocation functions. Only symmetric cryptography is required for IoT devices, such as wireless body sensors. A variant of ciphertext-policy attribute-based encryption, dual encryption, and Merkle hash trees are used to support fine-grained access control, efficient dynamic data auditing, batch auditing, and attribute revocation. Moreover, the proposed scheme also defines and handles the cloud reciprocity problem wherein cloud service providers can help each other avoid fines resulting from data loss. Security analysis and performance comparisons show that the proposed scheme is an excellent candidate for a cloud-based PHI system.

show abstract

OPoR: Enabling Proof of Retrievability in Cloud Computing with Resource-Constrained Devices

Cited by 73 publications

References 27 publications

Data Integrity Auditing without Private Key Storage for Secure Cloud Storage

Data Integrity Auditing without Private Key Storage for Secure Cloud Storage

Survey on Evidence of Retrievability Schemes of Cloud Storage Services for Resource-Strained Devices

Cloud-Based Fine-Grained Health Information Access Control Framework for LightweightIoT Devices with Dynamic Auditing andAttribute Revocation

Contact Info

Product

Resources

About