基于区块链的多重审计方案，防止在云中欺骗所有者

IF 4.4 2区计算机科学 Q1 COMPUTER SCIENCE, HARDWARE & ARCHITECTURE

Computer Networks Pub Date : 2025-03-27 DOI:10.1016/j.comnet.2025.111214

Jifang Wang , Shangping Wang , Duo Zhang , Qian Zhang , Yinjuan Deng

{"title":"基于区块链的多重审计方案，防止在云中欺骗所有者","authors":"Jifang Wang , Shangping Wang , Duo Zhang , Qian Zhang , Yinjuan Deng","doi":"10.1016/j.comnet.2025.111214","DOIUrl":null,"url":null,"abstract":"<div><div>Along with the commonplace of cloud outsourcing services, the problem of auditing the integrity of outsourced data without downloading has attracted much attention increasingly. However, in most existing auditing schemes, the audit only focuses on resisting undependable cloud server, rarely considers the problem of resisting cheating owner. An unreliable data owner may store the data not the same as it claimed for interest. Even worse, an undependable owner may deliver a sham message deliberately to avoid paying server for service or to cheat its deposit. To solve this problem, we propose a blockchain-based multiple auditable scheme against cheating owner by constructing a novel incremental structure, that allows for low computation and communication overheads, while providing a continuous natural flow of joint verification between storage parties over time. Specifically, our scheme is a two-way verification protocol that makes both parties consistently dependable. Besides, the incremental structure that uses a reversed recursive hash chain structure combined with blockchain and aggregate signature, makes our scheme more suitable for big data auditing. Smart contract is deployed to realize a central-free mechanism of rewards and penalties. The security analysis and simulation experiment demonstrate that the proposal is secure, dependable, efficient and practical.</div></div>","PeriodicalId":50637,"journal":{"name":"Computer Networks","volume":"263 ","pages":"Article 111214"},"PeriodicalIF":4.4000,"publicationDate":"2025-03-27","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Blockchain-based multiple auditing scheme against cheating owner in clouds\",\"authors\":\"Jifang Wang , Shangping Wang , Duo Zhang , Qian Zhang , Yinjuan Deng\",\"doi\":\"10.1016/j.comnet.2025.111214\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"<div><div>Along with the commonplace of cloud outsourcing services, the problem of auditing the integrity of outsourced data without downloading has attracted much attention increasingly. However, in most existing auditing schemes, the audit only focuses on resisting undependable cloud server, rarely considers the problem of resisting cheating owner. An unreliable data owner may store the data not the same as it claimed for interest. Even worse, an undependable owner may deliver a sham message deliberately to avoid paying server for service or to cheat its deposit. To solve this problem, we propose a blockchain-based multiple auditable scheme against cheating owner by constructing a novel incremental structure, that allows for low computation and communication overheads, while providing a continuous natural flow of joint verification between storage parties over time. Specifically, our scheme is a two-way verification protocol that makes both parties consistently dependable. Besides, the incremental structure that uses a reversed recursive hash chain structure combined with blockchain and aggregate signature, makes our scheme more suitable for big data auditing. Smart contract is deployed to realize a central-free mechanism of rewards and penalties. The security analysis and simulation experiment demonstrate that the proposal is secure, dependable, efficient and practical.</div></div>\",\"PeriodicalId\":50637,\"journal\":{\"name\":\"Computer Networks\",\"volume\":\"263 \",\"pages\":\"Article 111214\"},\"PeriodicalIF\":4.4000,\"publicationDate\":\"2025-03-27\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Computer Networks\",\"FirstCategoryId\":\"94\",\"ListUrlMain\":\"https://www.sciencedirect.com/science/article/pii/S1389128625001823\",\"RegionNum\":2,\"RegionCategory\":\"计算机科学\",\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q1\",\"JCRName\":\"COMPUTER SCIENCE, HARDWARE & ARCHITECTURE\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Computer Networks","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S1389128625001823","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, HARDWARE & ARCHITECTURE","Score":null,"Total":0}

引用次数: 0

摘要

随着云外包服务的普及，无需下载的外包数据完整性审计问题越来越受到人们的关注。然而，在现有的大多数审计方案中，审计只关注于抵制不可靠的云服务器，很少考虑抵制欺骗所有者的问题。不可靠的数据所有者存储的数据可能与其声称感兴趣的数据不同。更糟糕的是，不可靠的所有者可能会故意发送虚假信息，以避免支付服务费用或欺骗其押金。为了解决这个问题，我们提出了一个基于区块链的多重可审计方案，通过构建一个新的增量结构来防止欺骗所有者，该结构允许低计算和通信开销，同时随着时间的推移在存储方之间提供连续的自然联合验证流。具体来说，我们的方案是一个双向验证协议，使双方始终可靠。此外，采用反向递归哈希链结构的增量结构，结合区块链和聚合签名，使我们的方案更适合大数据审计。部署智能合约，实现无中心化奖惩机制。安全性分析和仿真实验表明，该方案安全、可靠、高效、实用。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Blockchain-based multiple auditing scheme against cheating owner in clouds

Along with the commonplace of cloud outsourcing services, the problem of auditing the integrity of outsourced data without downloading has attracted much attention increasingly. However, in most existing auditing schemes, the audit only focuses on resisting undependable cloud server, rarely considers the problem of resisting cheating owner. An unreliable data owner may store the data not the same as it claimed for interest. Even worse, an undependable owner may deliver a sham message deliberately to avoid paying server for service or to cheat its deposit. To solve this problem, we propose a blockchain-based multiple auditable scheme against cheating owner by constructing a novel incremental structure, that allows for low computation and communication overheads, while providing a continuous natural flow of joint verification between storage parties over time. Specifically, our scheme is a two-way verification protocol that makes both parties consistently dependable. Besides, the incremental structure that uses a reversed recursive hash chain structure combined with blockchain and aggregate signature, makes our scheme more suitable for big data auditing. Smart contract is deployed to realize a central-free mechanism of rewards and penalties. The security analysis and simulation experiment demonstrate that the proposal is secure, dependable, efficient and practical.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Computer Networks 工程技术-电信学

CiteScore

10.80

自引率

3.60%

发文量

434

审稿时长

8.6 months

期刊介绍： Computer Networks is an international, archival journal providing a publication vehicle for complete coverage of all topics of interest to those involved in the computer communications networking area. The audience includes researchers, managers and operators of networks as well as designers and implementors. The Editorial Board will consider any material for publication that is of interest to those groups.