为基于云的物联网数据提供灵活的多副本云存储完整性审计

IF 3.7 2区计算机科学 Q1 COMPUTER SCIENCE, HARDWARE & ARCHITECTURE

Journal of Systems Architecture Pub Date : 2025-04-10 DOI:10.1016/j.sysarc.2025.103404

Guoqing Chen, Rong Hao

{"title":"为基于云的物联网数据提供灵活的多副本云存储完整性审计","authors":"Guoqing Chen, Rong Hao","doi":"10.1016/j.sysarc.2025.103404","DOIUrl":null,"url":null,"abstract":"<div><div>With the rapid development of the Internet of Things (IoT), a large amount of data from various IoT devices is generated. The cloud provides high-performance and simple-pricing storage service for these large-scale data generated in IoT. For some important data, the user prefers to store multiple replicas of them in cloud to enhance the reliability. Multiple-replica cloud storage integrity auditing is a technology that checks the integrity of the data with multiple replicas to ensure they are intactly stored in the cloud. Nonetheless, the existing schemes cannot be well applied to IoT scenarios because they incur high computation overhead on the user side. In order to address this problem, we propose a flexible multiple-replica cloud storage integrity auditing scheme for cloud-based IoT data. In our scheme, online/offline signature is used to divide authentication generation into two phases: offline phase and online phase. In the offline phase, complex computations are performed. In the online phase, the user uses the results produced in the offline phase to perform lightweight computations. This design significantly reduces the user’s computation overhead in the online phase, so that IoT devices can complete lightweight computation tasks. What is more, our scheme achieves the flexibility of auditing, which can support both file-based multiple-replica cloud storage integrity auditing and keyword-based multiple-replica cloud storage integrity auditing to meet different auditing requirements. We conducted security analysis and performance analysis for the proposed scheme.</div></div>","PeriodicalId":50027,"journal":{"name":"Journal of Systems Architecture","volume":"163 ","pages":"Article 103404"},"PeriodicalIF":3.7000,"publicationDate":"2025-04-10","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Enabling flexible multiple-replica cloud storage integrity auditing for cloud-based IoT data\",\"authors\":\"Guoqing Chen, Rong Hao\",\"doi\":\"10.1016/j.sysarc.2025.103404\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"<div><div>With the rapid development of the Internet of Things (IoT), a large amount of data from various IoT devices is generated. The cloud provides high-performance and simple-pricing storage service for these large-scale data generated in IoT. For some important data, the user prefers to store multiple replicas of them in cloud to enhance the reliability. Multiple-replica cloud storage integrity auditing is a technology that checks the integrity of the data with multiple replicas to ensure they are intactly stored in the cloud. Nonetheless, the existing schemes cannot be well applied to IoT scenarios because they incur high computation overhead on the user side. In order to address this problem, we propose a flexible multiple-replica cloud storage integrity auditing scheme for cloud-based IoT data. In our scheme, online/offline signature is used to divide authentication generation into two phases: offline phase and online phase. In the offline phase, complex computations are performed. In the online phase, the user uses the results produced in the offline phase to perform lightweight computations. This design significantly reduces the user’s computation overhead in the online phase, so that IoT devices can complete lightweight computation tasks. What is more, our scheme achieves the flexibility of auditing, which can support both file-based multiple-replica cloud storage integrity auditing and keyword-based multiple-replica cloud storage integrity auditing to meet different auditing requirements. We conducted security analysis and performance analysis for the proposed scheme.</div></div>\",\"PeriodicalId\":50027,\"journal\":{\"name\":\"Journal of Systems Architecture\",\"volume\":\"163 \",\"pages\":\"Article 103404\"},\"PeriodicalIF\":3.7000,\"publicationDate\":\"2025-04-10\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Journal of Systems Architecture\",\"FirstCategoryId\":\"94\",\"ListUrlMain\":\"https://www.sciencedirect.com/science/article/pii/S1383762125000761\",\"RegionNum\":2,\"RegionCategory\":\"计算机科学\",\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q1\",\"JCRName\":\"COMPUTER SCIENCE, HARDWARE & ARCHITECTURE\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Journal of Systems Architecture","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S1383762125000761","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, HARDWARE & ARCHITECTURE","Score":null,"Total":0}

引用次数: 0

摘要

随着物联网的快速发展，各种物联网设备产生了大量的数据。云为这些在物联网中产生的大规模数据提供了高性能、价格简单的存储服务。对于一些重要的数据，用户倾向于在云中存储多个副本，以提高可靠性。多副本云存储完整性审计是一种使用多个副本检查数据完整性的技术，以确保它们完整地存储在云中。然而，现有的方案不能很好地应用于物联网场景，因为它们在用户端会产生很高的计算开销。为了解决这一问题，我们针对基于云的物联网数据提出了一种灵活的多副本云存储完整性审计方案。在我们的方案中，使用在线/离线签名将认证生成分为离线阶段和在线阶段。在脱机阶段，执行复杂的计算。在联机阶段，用户使用脱机阶段产生的结果来执行轻量级计算。这种设计大大降低了用户在线阶段的计算开销，使物联网设备可以完成轻量级的计算任务。同时，我们的方案实现了审计的灵活性，既支持基于文件的多副本云存储完整性审计，也支持基于关键字的多副本云存储完整性审计，满足不同的审计需求。我们对提出的方案进行了安全性分析和性能分析。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Enabling flexible multiple-replica cloud storage integrity auditing for cloud-based IoT data

With the rapid development of the Internet of Things (IoT), a large amount of data from various IoT devices is generated. The cloud provides high-performance and simple-pricing storage service for these large-scale data generated in IoT. For some important data, the user prefers to store multiple replicas of them in cloud to enhance the reliability. Multiple-replica cloud storage integrity auditing is a technology that checks the integrity of the data with multiple replicas to ensure they are intactly stored in the cloud. Nonetheless, the existing schemes cannot be well applied to IoT scenarios because they incur high computation overhead on the user side. In order to address this problem, we propose a flexible multiple-replica cloud storage integrity auditing scheme for cloud-based IoT data. In our scheme, online/offline signature is used to divide authentication generation into two phases: offline phase and online phase. In the offline phase, complex computations are performed. In the online phase, the user uses the results produced in the offline phase to perform lightweight computations. This design significantly reduces the user’s computation overhead in the online phase, so that IoT devices can complete lightweight computation tasks. What is more, our scheme achieves the flexibility of auditing, which can support both file-based multiple-replica cloud storage integrity auditing and keyword-based multiple-replica cloud storage integrity auditing to meet different auditing requirements. We conducted security analysis and performance analysis for the proposed scheme.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Journal of Systems Architecture 工程技术-计算机：硬件

CiteScore

8.70

自引率

15.60%

发文量

226

审稿时长

46 days

期刊介绍： The Journal of Systems Architecture: Embedded Software Design (JSA) is a journal covering all design and architectural aspects related to embedded systems and software. It ranges from the microarchitecture level via the system software level up to the application-specific architecture level. Aspects such as real-time systems, operating systems, FPGA programming, programming languages, communications (limited to analysis and the software stack), mobile systems, parallel and distributed architectures as well as additional subjects in the computer and system architecture area will fall within the scope of this journal. Technology will not be a main focus, but its use and relevance to particular designs will be. Case studies are welcome but must contribute more than just a design for a particular piece of software. Design automation of such systems including methodologies, techniques and tools for their design as well as novel designs of software components fall within the scope of this journal. Novel applications that use embedded systems are also central in this journal. While hardware is not a part of this journal hardware/software co-design methods that consider interplay between software and hardware components with and emphasis on software are also relevant here.