A Big Data Integrity Auditing Scheme Based on User Authorization in Cloud Storage

doi:10.3969/j.issn.1671-1122.2018.04.005

Abstract

Abstract:

As cloud storage has many advantages, such as large storage, scalability and low-cost, more and more users choose to store their big data on the remote cloud storage server. The availability, high reliability and data sharing services of cloud storage not only bring convenience to users, but also lead to many security problems and among them, the research on data integrity has become a hot topic in recent years. Recently, lots of auditing schemes have been proposed, but these schemes can't efficiently realize fine-grained updating operations. To solve the problem, this paper propose a big data integrity audit scheme supporting fine-grained updating operations. Firstly, we design an authenticated data structure supporting fine-grained updating—dynamic index table. In the process of data insertion and deletion, the elements in the dynamic index table don't need to be moved, so that the efficiency of data dynamic updating is improved. Secondly, in order to prevent malicious parties from launching denial-of-service attacks to the cloud storage server, this paper propose a big data integrity audit scheme based on user authorization. That is, only third-party verifiers authorized by users can initiate integrity verification challenges which improve system security. Finally, the simulation experiments show that this auditing scheme is of high efficiency.

Key words: cloud storage, big data, integrity, fine-grained, auditing

CLC Number:

TP309

Xiuqing LU, Hequn XIAN. A Big Data Integrity Auditing Scheme Based on User Authorization in Cloud Storage[J]. Netinfo Security, 2018, 18(4): 32-37.

Figures/Tables 4

References 15

[1]	WANG C, REN K, LOU W.Toward Publicly Auditable Secure Cloud Data Storage Services[J]. Network IEEE, 2010, 24(4):19-24.
[2]	WEI Lifei, ZHU Haojin, CAO Zhenfu.Security and Privacy for Storage and Computation in Cloud Computing[J]. Information Sciences, 2014, 258(3):371-386.
[3]	WANG Wenxu, ZHANG Jian, CHANG Qing, et al.Research on the Security Problem of Cloud Computing Virtualization Platform[J].Netinfo Security, 2016 (9):163-168.
	王文旭,张健,常青,等.云计算虚拟化平台安全问题研究[J].信息网络安全, 2016(9):163-168.
[4]	ARMBRUST M, FOX A, GRIFFITH R, et al. Above the Clouds: a Berkeley View of Cloud Computing[EB/OL]. , 2017-10-18.
[5]	JUELS A, OPREA A.New Approaches to Security and Availability for Cloud Data[J]. Communications of the ACM, 2013, 56(2):64-73.
[6]	WANG Qian, WANG Cong, LI Jin, et al.Enabling Public Verifiability and Data Dynamic for Storage Security in Cloud Computing[J]. Proceedings of ESORICS, 2009,22(5):355-37.
[7]	DESWARTE Y, QUISQUATER J, SAÏDANE A. Remote Integrity Checking[EB/OL]. paperuri:(2946da69bbbcb2cb6385c53728e732c5),2017-10-15.
[8]	JUELS A, KALISKI B.Pors: Proofs of Retrievability for Large Files[C]//ACM. Proceedings of the 14th ACM Conference on Computer and Communications Security, October 29-November 2, 2007, Alexandria, Virginia, USA. New York:ACM, 2007:584-597.
[9]	YAMAMOTO G, ODA S, AOKI K. Fast Integrity for Large Data[EB/OL].,2017-10-20.
[10]	ATENIESE G, BURNS R, CURTMOLA R.Provable Data Possession at Untrusted Stores[C]//ACM. Proceedings of the 14th ACM Conference on Computer and Communications Security, October 29-November 2, 2007, Alexandria, Virginia, USA. New York:ACM, 2007:598-609.
[11]	LI Hongjun, LANG Weimin, DENG Gang.Research on an Effective Integrity Check Scheme for Large Data Center[J].Netinfo Security, 2016 (5): 1-8.
	李宏军,郎为民,邓刚. 一种高效的大数据中心完整性检查方案研究[J]. 信息网络安全, 2016(5):1-8.
[12]	TIAN Hui, CHEN Yuxiang, CHANG Chin-chen, et al.Dynamic-Hash-table Based Public Auditing for Secure Cloud Storage[J]. IEEE Transactions on Services Computing, 2015, 10(5):701-714.
[13]	YANG Kan, JIA Xiaohua.An Efficient and Secure Dynamic Auditing Protocol for Data Storage in Cloud Computing[J]. IEEE Transactions on Parallel & Distributed Systems, 2013, 24(9):1717-1726.
[14]	ZHANG Jianhong, LI Pengyan.An Efficient Data Integrity Verification Scheme for Cloud Storage[J]. Netinfo Security, 2017(3):1-5.
	张键红,李鹏燕. 一种有效的云存储数据完整性验证方案[J].信息网络安全, 2017(3):1-5.
[15]	ZHU Yan, AHN Gail-Jooh, HU Hongxin, et al.Dynamic Audit Services for Outsourced Storages in Clouds[J]. IEEE Transactions on Services Computing, 2013, 6(2):227-238.