Fair and dynamic proofs of retrievability

CODASPY : proceedings of the ... ACM conference on data and application security and privacy. ACM Conference on Data and Application Security & Privacy Pub Date : 2011-02-21 DOI:10.1145/1943513.1943546

Qingji Zheng, Shouhuai Xu

{"title":"Fair and dynamic proofs of retrievability","authors":"Qingji Zheng, Shouhuai Xu","doi":"10.1145/1943513.1943546","DOIUrl":null,"url":null,"abstract":"Cloud computing is getting increasingly popular, but has yet to be widely adopted arguably because there are many security and privacy problems that have not been adequately addressed. A specific problem encountered in the context of cloud storage, where clients outsource their data (files) to untrusted cloud storage servers, is to convince the clients that their data are kept intact at the storage servers. An important approach to achieve this goal is called Proof of Retrievability (POR), by which a storage server can convince a client --- via a concise proof --- that its data can be recovered. However, existing POR solutions can only deal with static data (i.e., data items must be fixed), and actually are not secure when used to deal with dynamic data (i.e., data items need be inserted, deleted, and modified). Motivated by the need to securely deal with dynamic data, we propose the first dynamic POR scheme for this purpose. Moreover, we introduce a new property, called fairness, which is necessary and also inherent to the setting of dynamic data because, without ensuring it, a dishonest client could legitimately accuse an honest cloud storage server of manipulating its data. Our solution is based on two new tools, one is an authenticated data structure we call range-based 2-3 trees (rb23Tree for short), and the other is an incremental signature scheme we call hash-compress-and-sign (HCS for short). These tools might be of independent value as well.","PeriodicalId":90472,"journal":{"name":"CODASPY : proceedings of the ... ACM conference on data and application security and privacy. ACM Conference on Data and Application Security & Privacy","volume":"85 1","pages":"237-248"},"PeriodicalIF":0.0000,"publicationDate":"2011-02-21","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"135","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"CODASPY : proceedings of the ... ACM conference on data and application security and privacy. ACM Conference on Data and Application Security & Privacy","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/1943513.1943546","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 135

Abstract

Cloud computing is getting increasingly popular, but has yet to be widely adopted arguably because there are many security and privacy problems that have not been adequately addressed. A specific problem encountered in the context of cloud storage, where clients outsource their data (files) to untrusted cloud storage servers, is to convince the clients that their data are kept intact at the storage servers. An important approach to achieve this goal is called Proof of Retrievability (POR), by which a storage server can convince a client --- via a concise proof --- that its data can be recovered. However, existing POR solutions can only deal with static data (i.e., data items must be fixed), and actually are not secure when used to deal with dynamic data (i.e., data items need be inserted, deleted, and modified). Motivated by the need to securely deal with dynamic data, we propose the first dynamic POR scheme for this purpose. Moreover, we introduce a new property, called fairness, which is necessary and also inherent to the setting of dynamic data because, without ensuring it, a dishonest client could legitimately accuse an honest cloud storage server of manipulating its data. Our solution is based on two new tools, one is an authenticated data structure we call range-based 2-3 trees (rb23Tree for short), and the other is an incremental signature scheme we call hash-compress-and-sign (HCS for short). These tools might be of independent value as well.

查看原文本刊更多论文

公平和动态的可收回性证明

云计算正变得越来越流行，但还没有被广泛采用，因为许多安全和隐私问题还没有得到充分解决。在云存储上下文中(客户将其数据(文件)外包给不受信任的云存储服务器)遇到的一个特定问题是，如何说服客户他们的数据在存储服务器上保持完整。实现这一目标的一个重要方法称为可检索性证明(Proof of Retrievability, POR)，通过该方法，存储服务器可以通过简洁的证明说服客户端可以恢复其数据。但是，现有的POR解决方案只能处理静态数据(即，数据项必须是固定的)，并且在用于处理动态数据(即，需要插入、删除和修改数据项)时实际上并不安全。出于安全处理动态数据的需要，我们为此提出了第一个动态POR方案。此外，我们引入了一个新的属性，称为公平性，这是必要的，也是动态数据设置的固有属性，因为如果不确保它，不诚实的客户端可以合法地指责诚实的云存储服务器操纵其数据。我们的解决方案基于两个新工具，一个是经过身份验证的数据结构，我们称之为基于范围的2-3树(简称rb23Tree)，另一个是增量签名方案，我们称之为哈希压缩和签名(简称HCS)。这些工具也可能具有独立的价值。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

CODASPY : proceedings of the ... ACM conference on data and application security and privacy. ACM Conference on Data and Application Security & Privacy

自引率

0.00%

发文量