Wei Guo,Sujuan Qin,Fei Gao,Hua Zhang,Wenmin Li,Zhengping Jin,Qiaoyan Wen

DOI: https://doi.org/10.1109/tifs.2020.2970591

IF: 7.231

2020-01-01

IEEE Transactions on Information Forensics and Security

Abstract:Replication is a fundamental solution for the cloud service provider (CSP) to guarantee data availability. To provide users with convincing evidence that the copies required by them are all stored correctly, a number of multi-copy integrity auditing schemes were presented. Recently, Barsoum and Hasan proposed a map-based provable multi-copy dynamic data possession scheme (IEEE Transactions on Information Forensics and Security, vol. 10, no. 3, pp. 485-497, 2015), which was claimed to be secure and can ensure that the CSP possesses all copies required by the contract. However, in this letter, we show that the scheme is easily subject to a copy-summation attack and a single-copy attack, by which a cheating CSP only needs to invest a storage cost of a single copy-while can still pass the verifier's challenge at all times. Therefore, the scheme is no longer secure in this case. Furthermore, we propose some simple but effective countermeasures and give a repaired scheme which is free from the above two attacks.

Zuojie Deng,Shuhong Chen,Xiaolan Tan,Dan Song,Fan Wu

DOI: https://doi.org/10.1007/978-3-030-05345-1_34

2018-01-01

Abstract:A user can use a provable multi-copy data possession schemes (PMDP) to ascertain whether its copies in cloud storage are kept securely. Unfortunately, all existing PMDP are not secure and efficient. To address this problem, we propose an efficient provable multi-copy data possession scheme with data dynamics (EPMDP). We design a kind of authenticated 2-3 tree with arrays in ordered leaves (A2-3AOL) and use the A2-3AOL and a kind of RSA tag to construct EPMDP. The analysis results of the security and performance show that EPMDP has strong security and good performance.

Zuojie Deng,Jingli Zhou

DOI: https://doi.org/10.3233/jifs-169035

2016-01-01

Journal of Intelligent & Fuzzy Systems

Abstract:Nowadays, cloud storage has become an attractive storage scheme for a user to store his files. When a user stores his files on a remote cloud storage system, he cannot make sure whether his files are intact, so he must use some protocol to check the integrity of his files in the cloud storage. To guarantee high availability, some cloud storage servers provide a kind of highly-available service, which stores multiple copies of user files in the cloud storage, and the file owner cannot make sure whether all these copies are intact as well. Some cloud storage servers allow his users to operate their files online. As the file owner cannot always be online, he must entrust a trusted public data auditor to check his files in the cloud storage. In this work, we investigate the above issues about provable data possession with multi-copy and data dynamics supporting public verification in a cloud storage. We design a kind of authenticated 2-3 tree with ordered leaves and use this kind of tree to organize file block tags. We design a privacy preserving provable data possession scheme with multi-copy and data dynamics which supports public verification, and use a kind of RSA tag to construct this scheme. We apply our scheme to a cloud file backup system. Our theoretical proofs and experiments show that our scheme is feasible and reasonable.

Lei Zhou,Anmin Fu,Yi Mu,Huaqun Wang,Shui Yu,Yinxia Sun

DOI: https://doi.org/10.1016/j.ins.2020.08.031

IF: 8.1

2021-02-01

Information Sciences

Abstract:<p>In the era of big data, there are several insuperable research challenges in establishing Electronic Medical Record (EMR) for updating massive data with traditional methods. It is an attractive option to create the cloud-based EMR system, since cloud provides elastic and affordable data storage and management services. However, once the medical records are uploaded into the cloud, the owner will lose the control over the data, and sensitive contents might be accessed or modified by unauthorized entities. To address this issue, we propose a multicopy provable data possession for cloud-based EMR systems, which ensures the integrity and privacy of EMR data. In particular, to achieve data updates, we design a novel dynamic structure that improves the Merkle Hash Tree for multicopy storage, which achieves full dynamics efficiently and safely. Moreover, a random masking technique is employed in our proposal to generate distinguishable replica blocks of one block. Our construction prevents a verifier from obtaining medical records from challenge responses, but also eliminates exposing the content to unauthorized entities. Our security analysis shows that our scheme is provably secure. Evaluation experiments demonstrate that the proposal has lower communication and computation costs in comparison with the existing schemes.</p>

computer science, information systems

REN Jingsi,WANG Jinlin,CHEN Xiao,YE Xiaozhou

DOI: https://doi.org/10.3969/j.issn.1001-2400.2017.06.027

2017-01-01

Abstract:In the cloud storage paradigm,verifying the integrity of multiple remote copies is inefficient,and dynamic data updates are not supported.To solve this problem,we first propose a multi-copy integrity checking model for the distributed cloud storage system,and then design a multi-copy provable data possession scheme based on the bilinear map and pseudo-random mask technique.Aiming at updating multiple copies,each data block is mapped to an entry in the seed mapping table.Security analysis and performance evaluation show that our scheme is correct and complete,and can significantly improve efficiency.

Yafang Zhang,Jianbing Ni,Xiaoling Tao,Yong Wang,Yong Yu

DOI: https://doi.org/10.1002/cpe.3573

2015-01-01

Abstract:SummaryCloud storage has been gaining tremendous popularity among individuals and corporations because of its low maintenance cost and on‐demand services for the clients. To improve the availability and the reliability of critical data, storing multiple replicas on multiple servers is a commonly used strategy. Currently, several provable data possession (PDP) protocols for multiple replicas of dynamic data have been proposed to ensure the integrity of outsourced multi‐copy data, but the efficiency of these protocols on verifying multiple replicas one by one is not satisfactory. In this paper, we propose a provable multiple replication data possession protocol with full dynamics, named MR‐DPDP. In MR‐DPDP, we utilize a novel authenticated data structure called Merkle hash tree with rank to support both full dynamic data updates and efficient integrity verification. In addition, our construction with RSA signature can support both variable‐sized file blocks and public verification. Through security proof and performance evaluation, we demonstrate that MR‐DPDP not only is sound but also incurs less communication overhead when updating data blocks as well as verifying a proof of the integrity of multiple replicas. Copyright © 2015 John Wiley & Sons, Ltd.

Limin Li,Yahui Yang,Zhonghai Wu

DOI: https://doi.org/10.1109/iscc.2017.8024675

2017-01-01

Abstract:Cloud storage is a service provided by cloud service provider (CSP). More and more individuals and organizations accept the scheme and outsource their data to CSP seeking to reduce local storage burden. Since the outsourced files are no longer under the data owners' direct control and CSP is not trustworthy, it is necessary for data owners to check the integrity of their files outsourced to CSP. To address this crucial problem, some provable data possession (PDP) protocols have been presented. In order to obtain higher availability, storing multiple replicas is a common strategy in cloud storage. Most recent researches on multiple-replica provable data possession (MR-PDP) use homomorphic linear authenticators (HLAs) to generate aggregated tags for the blocks at the same indices in each replica, but it cannot verify single replica to identify the corrupted replicas. In this paper, we proposed a novel multiple replica provable data possession scheme, named FMR-PDP. In FMR-PDP, we compute tags based on vector dot product instead of expensive group exponentiation operations, and only generate one tag for all blocks at the same indices in each replica. Our FMR-PDP scheme supports a flexible data possession verification, which means the data owner can check any number of replicas in a verification. In addition, we make a comprehensive performance analysis, which shows that our proposed scheme is flexible and efficient.

Yongjun Ren,Jian Shen,Jin Wang,Jin Han,Sungyoung Lee

DOI: https://doi.org/10.6138/jit.2015.16.2.20140918

2015-01-01

Abstract:Cloud storage is now a hot research topic in information technology. In cloud storage, date security properties such as data confidentiality, integrity and availability become more and more important in many commercial applications. Recently, many provable data possession (PDP) schemes are proposed to protect data integrity. In some cases, it has to delegate the remote data possession checking task to some proxy. However, these PDP schemes are not secure since the proxy stores some state information in cloud storage servers. Hence, in this paper, we propose an efficient mutual verifiable provable data possession scheme, which utilizes Diffie-Hellman shared key to construct the homomorphic authenticator. In particular, the verifier in our scheme is stateless and independent of the cloud storage service. It is worth noting that the presented scheme is very efficient compared with the previous PDP schemes, since the bilinear operation is not required.

Huifeng Wang,Zhanhuai Li,Xiao Zhang,Jian Sun,Qinlu He

DOI: https://doi.org/10.1109/scac.2014.27

2014-01-01

Abstract:Data stored in the cloud may be corrupted or lost by many factors. So verifying the integrity of data in the cloud has emerged as a critical security issue. We introduce a model for a delayed-update provable data possession (DU-PDP) that allows clients adopting delayed-update policy to verify the integrity of their own data stored in the cloud. Compared with other similar PDP models, it can efficiently support dynamic data. We consider two different typical updating scenarios, which called as single data block frequently updating and multiple blocks association update. We give the detailed analysis on the security of the model. Experiments using our implementation reveal that the DU-PDP can drastically reduce I/O costs and improve update operation efficiently with our delayed-update policy.

Wei Guo,Sujuan Qin,Fei Gao,Hua Zhang,Wenmin Li,Zhengping Jin,Qiaoyan Wen

DOI: https://doi.org/10.1109/tsc.2020.3022812

IF: 11.019

2020-01-01

IEEE Transactions on Services Computing

Abstract:Cloud storage attracts a lot of clients to join the paradise. For a high data availability, some clients require their files to be replicated and stored on multiple servers. Because clients are generally charged based on the redundancy level required by them, it is critical for clients to obtain convincing evidence that all replicas are stored correctly and are updated to the up-to-date version. In this article, we propose a dynamic proof of data possession and replication (DPDPR) scheme, which is proved to be secure in the defined security model. Our scheme shares a single authenticated tree across multiple replicas, which reduces the tree's storage cost significantly. Our scheme allows for batch verification for multiple challenged leaves and can verify multiple replicas in a single batch way, which considerably save bandwidth and computation resources during audit process. We also evaluate the DPDPR's performance and compare it with the most related scheme. The evaluation results show that our scheme saves almost 66 percent tree's storage cost for three replicas, and obtains almost 60 and 80 percent efficiency improvements in terms of the overall bandwidth and computation costs, respectively, when three replicas are checked and each challenged with 460 blocks.

Huajun Zhang,Zhenfu Cao,Xiaolei Dong,Jiachen Shen

DOI: https://doi.org/10.3233/FI-2018-1622

2018-01-01

Fundamenta Informaticae

Abstract:For disaster recovery, we store backups of a file in several positions far away from each other. If we delegate this task to an untrusted cloud service provider, a verification method is desired. In this paper, we construct a generic transformation from "proof of retrievability" to "proof of multicopy". We present this work in two stages. In the first stage, we propose a generic protocol of "proof of file position" based on an arbitrary secure "proof of retrievability" protocol. In the second stage, we propose a "proof of multicopy" protocol based on our " proof of file position" protocol. Both of our protocols are provably secure.

Jian Yang,Haihang Wang,Jian Wang,Chengxiang Tan,Dingguo Yu

DOI: https://doi.org/10.4304/jnw.6.7.1033-1040

2011-01-01

Journal of Networks

Abstract:Benefited from cloud storage services, users can save their cost of buying expensive storage and application servers, as well as deploying and maintaining applications. Meanwhile they lost the physical control of their data. So effective methods are needed to verify the correctness of the data stored at cloud servers, which are the research issues the Provable Data Possession (PDP) faced. The most important features in PDP are: 1) supporting for public, unlimited numbers of times of verification; 2) supporting for dynamic data update; 3) efficiency of storage space and computing. In mobile cloud computing, mobile end-users also need the PDP service. However, the computing workloads and storage burden of client in existing PDP schemes are too heavy to be directly used by the resource-constrained mobile devices. To solve this problem, with the integration of the trusted computing technology, this paper proposes a novel public PDP scheme, in which the trusted third-party agent (TPA) takes over most of the calculations from the mobile end-users. By using bilinear signature and Merkle hash tree (MHT), the scheme aggregates the verification tokens of the data file into one small signature to reduce communication and storage burden. MHT is also helpful to support dynamic data update. In our framework, the mobile terminal devices only need to generate some secret keys and random numbers with the help of trusted platform model (TPM) chips, and the needed computing workload and storage space is fit for mobile devices. Our scheme realizes provable secure storage service for resource-constrained mobile devices in mobile cloud computing.

Hongyuan Wang,Liehuang Zhu,Feng Wang,Yijia Lilong,Yu Chen,Chang Liu

DOI: https://doi.org/10.14257/ijsia.2014.8.5.10

2014-01-01

International Journal of Security and Its Applications

Abstract:With the widespread use of cloud computing and cloud storage, how to ensure the authenticity of data in remote storage is becoming a severe problem. Provable data possession (PDP) is a technique for a client to verify whether an untrusted server possesses the original data. Moreover, for the requirement of efficiency and instantaneity, clients need to verify the authenticity of stored data without having the server retrieving and accessing the entire file. There are many PDP models to resolve these issues. In 2007, G. Ateniese et al. firstly defined a sampling model named S-PDP, which is regarded as “state-of-the-art” in this field. In terms of efficiency, we found that S-PDP can be improved by utilizing elliptic curve cryptography. Based on this observation, we propose a more efficient scheme which we call EC-PDP. We also implement EC-PDP and compare the performance with S-PDP. In our scheme, the metadata of the client is reduced by 84%, and the computation complexity which consists of the computational cost of pre-processing, generating a proof and verification is reduced by 13% approximately.

Jiayan Shen,Peng Zeng,Kim-Kwang Raymond Choo,Chengju Li

DOI: https://doi.org/10.1109/tifs.2023.3236451

IF: 7.231

2023-01-01

IEEE Transactions on Information Forensics and Security

Abstract:Electronic health records (EHRs: digital collections of patient health status and diagnosis) are generally shared, analyzed and stored on cloud servers. One operational challenge is to ensure that EHRs are stored correctly, for example using provable data possession (PDP). Seeking to contribute to the literature, we propose a certificateless PDP scheme for cloud-based EHRs. In our scheme, we distribute multiple copies of EHRs on different cloud servers to allow for corrupted EHRs to be recoverable from other intact copies. The scheme is also designed to resist copy-summation attack which assures that cloud servers are storing EHRs honestly. In our approach, EHRs are stored in ciphertext form so that only authorized users can decrypt and gain access to the information. We also design a new data structure – map version marker table (MVMT) – for block-level dynamic operations and data traceability. Specifically, MVMT allows an authorized doctor to access historical EHRs to inform their diagnosis and decision-making. The security and performance analyses show that our scheme is secure (assuming the intractability of the computational Diffie-Hellman problem) and is practical to support cloud-based EHR applications.

Wang Junxiang,Liu Shengli

DOI: https://doi.org/10.1109/ICADE.2012.6330109

2012-01-01

Abstract:Cloud storage security has drawn more and more concerns in Cloud Computing literatures. The Provable Data Possession (PDP) model has been defined for ensuring the integrity of files on untrusted storages. Since cloud storage is practically not only used for storing static data, the Dynamic Provable Data Possession (DPDP) model has been put forward, in which model, file content can be updated while the storage server is still able to prove the integrity and freshness of the file. In existing DPDP schemes, homomorphic MAC or signature is applied to achieve blockless verification in the course of integrity checking, whereas in the course of update verification, the verification protocol has to be performed for every single block update. In this paper, we develop a batch-update verifiable DPDP mode that verifies a batch of block updates at once to achieve efficiency. We construct our scheme by developing a variant authenticated 2-3 tree to enable data dynamics and batch-update verification. We also employ a BLS-like signature to enable public verification. The simulation shows that our batched scheme achieves great performance improvement on update verification.

Tongtong Sang,Peng Zeng

DOI: https://doi.org/10.1109/jsyst.2022.3198098

2022-01-01

Abstract:Cloud-based Internet of Things (IoT) allows cloud users to achieve data outsourcing storage and flexible data access, which greatly eliminates the pressure on users to store and manage data locally. However, one risk behind this convenience is that untrusted cloud server may delete data rarely accessed or conceal the corruption of stored data to maintain its reputation. In order to verify the integrity of data remotely, a large number of public auditing protocols have been proposed. Moreover, to avoid the irreparable loss caused by data corruption, some multi-copy auditing schemes are also put forward where cloud users store multiple data replicas instead of single copy on cloud server, so that original file can be recovered from some intact replicas. In this case, how to check the integrity of multiple copies meanwhile considering the computation overhead of the auditor has become an important issue. In this paper, we propose a novel identity-based multi-copy integrity auditing scheme IBMCIA using indistinguishability obfuscation technique, which transfers most verification overhead from the auditor to the cloud server. Our IBMCIA scheme is constructed practically in medical scenario where electronic health records contain sensitive information and need to be preprocessed before uploading them to the cloud server. We introduce the role of hospital information center to implement tag generation and access management for alleviating the computation burden of patients. We prove the unforgeability of proofs under the CDH assumption and give the detailed performance evaluation.

Yang Xu,Quanrun Zeng,Ju Ren,Yaoxue Zhang,Guojun Wang,Hao Min

DOI: https://doi.org/10.1109/smartworld.2018.00331

2018-01-01

Abstract:The wide use of network computing technologies has promoted the popularity of outsourced storage services. Meanwhile, the provable data possession (PDP) techniques are widely studied as the outsourcing storage servers are not always trustworthy and dependable in maintaining the outsourced data. However, most existing PDP solutions are either costly for the current Internet of things (IoT) devices, or vulnerable to spoofing attacks. In this paper, we propose a succinct anti-spoofing provable data possession scheme for lightweight clients in network computing. We employ the basic integrity comparison-based verification to fit for the resource-constrained verifiers, and propose a random sentinel metadata setup mechanism and the true-fake blended challenge scheme to improve the robustness against spoofing attacks of untrusted servers. The analyses reveal that our approach is effective in data possession verification with the robustness against spoofing attacks, while the overhead on the verifier side is low.

Jining Zhao,Chunxiang Xu,Kefei Chen

DOI: https://doi.org/10.3837/tiis.2018.09.025

2018-01-01

KSII Transactions on Internet and Information Systems

Abstract:In big data age, flexible and affordable cloud storage service greatly enhances productivity for enterprises and individuals, but spontaneously has their outsourced data susceptible to integrity breaches. Provable Data Possession (PDP) as a critical technology, could enable data owners to efficiently verify cloud data integrity, without downloading entire copy. To address challenging integrity problem on multiple clouds for multiple owners, an identity-based batch PDP scheme was presented in ProvSec 2016, which attempted to eliminate public key certificate management issue and reduce computation overheads in a secure and batch method. In this paper, we firstly demonstrate this scheme is insecure so that any clouds who have outsourced data deleted or modified, could efficiently pass integrity verification, simply by utilizing two arbitrary block-tag pairs of one data owner. Specifically, malicious clouds are able to fabricate integrity proofs by 1) universally forging valid tags and 2) recovering data owners' private keys. Secondly, to enhance the security, we propose an improved scheme to withstand these attacks, and prove its security with CDH assumption under random oracle model. Finally, based on simulations and overheads analysis, our batch scheme demonstrates better efficiency compared to an identity based multi-cloud PDP with single owner effort.

Da Xiao,Lvyin Yang,Chuanyi Liu,Bin Sun,Shihui Zheng

DOI: https://doi.org/10.1587/transinf.2014ICP0016

2015-01-01

IEICE Transactions on Information and Systems

Abstract:Provable Data Possession (PDP) schemes enable users to efficiently check the integrity of their data in the cloud. Support for massive and dynamic sets of data and adaptability to third-party auditing are two key factors that affect the practicality of existing PDP schemes. We propose a secure and efficient PDP system called IDPA-MF-PDP, by exploiting the characteristics of real-world cloud storage environments. The cost of auditing massive and dynamic sets of data is dramatically reduced by utilizing a multiple-file PDP scheme (MF-PDP), based on the data update patterns of cloud storage. Deployment and operational costs of third-party auditing and information leakage risks are reduced by an auditing framework based on integrated data possession auditors (DPAs), instantiated by trusted hardware and tamper-evident audit logs. The interaction protocols between the user, the cloud server, and the DPA integrate MF-PDP with the auditing framework. Analytical and experimental results demonstrate that IDPA-MF-PDP provides the same level of security as the original PDP scheme while reducing computation and communication overhead on the DPA, from linear the size of data to near constant. The performance of the system is bounded by disk I/O capacity.

Hongyu Liv,Yi Mu,Jining Zhao,Chunxiang Xu,Huaqun Wang,Leiting Chen,Yong Yu

DOI: https://doi.org/10.1016/j.csi.2016.09.012

IF: 3.721

2016-01-01

Computer Standards & Interfaces

Abstract:Provable Data Possession (PDP), which enables cloud users to verify the data integrity without retrieving the entire file, is highly essential for cloud storage. Observing all the existing PDP schemes rely on the Public Key Infrastructure (PKI), Wang proposed an identity-based distributed provable data possession (ID-DPDP) scheme that can (1) eliminate the complex certificate management and (2) be applied to the multi-cloud scenario. The scheme is efficient, flexible and supports private verification, delegated verification and public verification. In this paper, we find that ID-DPDP is flawed since it fails to achieve soundness. We then fix the flaw by presenting a generic construction for identity-based PDP (ID-PDP) protocol, derived from secure digital signature schemes and traditional PDP protocols. We prove that the soundness of the generic ID-PDP construction depends on the security of the underlying PDP protocols and the signature schemes. An instance of the generic construction by utilizing a state-of-the-art PDP protocol due to Shacham and Waters and BLS short signature scheme is given. Moreover, a new ID-DPDP protocol is obtained by extending the basic ID-PDP to multiple clouds environment. The implementation shows that the proposed ID-PDP protocol is efficient.