Certificateless Provable Data Possession with Data Uploading Control

doi:10.3969/j.issn.1671-1122.2020.01.012

Abstract

Abstract:

With the development of big data technology, cloud storage has received more and more attention. While it brings a lot of convenience to users, it also creates new security challenges. Since users lose direct control over data after storing data on the cloud, how to safely and effectively detect the integrity of data stored on the cloud becomes an important security challenge. The technology of PDP has been a research hot spot in recent years, which can realize the integrity detection of cloud data without downloading all the data. However, most existing PDP schemes either have complex certificate management issues or have key escrow issues. In addition, these schemes do not consider the issue of control over data uploads. In view of the above problems, we propose a scheme of certificateless provable data possession with data uploading control. It first uses the technology of rights management and secret sharing to realize the control of the data uploading process, that is, only over threshold users can upload the data to the cloud, which avoids the user’s randomly uploading behavior. Secondly, the certificateless cryptographic technology is utilized, which avoids the key escrow problem and simplifies the operation of certificate management. At the same time, the security and performance of the solution are also analyzed.

Key words: cloud storage, data integrity detection, PDP, key escrow

CLC Number:

TP309

LI Xiaoran, HAO Rong, YU Jia. Certificateless Provable Data Possession with Data Uploading Control[J]. Netinfo Security, 2020, 20(1): 83-88.

Figures/Tables 4

References 16

[1]	ATENIESE G, BURNS R, CURTMOLA R, et al.Provable Data Possession at Untrusted Stores[C]// ACM. Proceedings of the 14th ACM Conference on Computer and Communication Security, October 29-November 2, 2007, Alexandria, Virginia, USA. New York: ACM, 2007: 598-609.
[2]	ATENIESE G, DIPIETRO R, MANCINI L V, et al.Scalable and Efficient Provable Data Possession[C]//ACM. Proceedings of the 4th International Conference on Security and Privacy in Communication Networks, September 22-25, 2008, Istanbul, Turkey. New York: ACM, 2008: 114-123.
[3]	ERWAY C C, KUPCU A, PAPAMANTHOU C, et al.Dynamic Provable Data Possession[J]. ACM Transactions on Information and System Security, 2009, 17(15): 213-222.
[4]	SHACHAM H, WATERS B.Compact Proofs of Retrievability[J]. Journal of Cryptology, 2013, 26(3): 442-483.
[5]	DOMINGO F J, QIN Bo, WU Qianghong, et al.Identity-Based Remote Data Possession Checking in Public Clouds[J]. IET Information Security, 2014, 8(2): 114-121.
[6]	WANG Huaqun.Identity-Based Distributed Provable Data Possession in Multi-cloud Storage[J]. IEEE Transactions on Services Computing, 2015, 8(2): 328-340.
[7]	YU Yong, XUE Liang, AU M H, et al.Cloud Data Integrity Checking with an Identity-Based Auditing Mechanism from RSA[J]. Future Generation Computer Systems, 2016, 62(C): 85-91.
[8]	YU Yong, AU M H, ATENIESE G, et al.Identity-Based Remote Data Integrity Checking with Perfect Data Privacy Preserving for Cloud Storage[J]. IEEE Transactions on Information Forensics and Security, 2017, 12(4): 767-778.
[9]	AL-RIYAMI S S, PATERSON K G. Certificateless Public Key Cryptography[C]// Springer. International Conference on the Theory and Application of Cryptology and Information Security, November 30-December 4, 2003. Taipei, China. Heidelberg: Springer, 2003: 452-473.
[10]	WANG Boyang, LI Bochun, LI Hui, et al.Certificateless Public Auditing for Data Integrity in the Cloud[C]// IEEE. Conference on Communications and Network Security, October 14-16, 2013, National Harbor, MD, USA. New Nork: IEEE, 2013: 136-144.
[11]	HE Debiao, ZEADALLY S, WU Libing.Certificateless Public Auditing Scheme for Cloud-Assisted Wireless Body Area Networks[J]. IEEE Systems Journal, 2018, 12(1): 64-73.
[12]	HE Debiao, NEERAJ K, SHERALI Z, et al.Certificateless Provable Data Possession Scheme for Cloud-Based Smart Grid Data Management Systems[J]. IEEE Transactions on Industrial Informatics, 2018, 14(3): 1232-1241
[13]	HE Debiao, KUMAR N, WANG Huaqun, et al.Privacy-Preserving Certificateless Provable Data Possession Scheme for Big Data Storage on Cloud[J]. Applied Mathematics and Computation, 2017, 314(1): 31-43.
[14]	YANG Anjia, XU Jia, WENG Jian, et al.Lightweight and Privacy-Preserving Delegatable Proofs of Storage with Dynamics in Cloud Storage[J]. IEEE Transactions on Cloud Computing. 2018: 1-14
[15]	SHEN Wenting, YU Jia, XIA Hui, et al.Light-Weight and Privacy-Preserving Secure Cloud Auditing Scheme for Group Users via the Third Party Medium[J]. Journal of Network and Computer Applications, 2017, 82(3): 56-64.
[16]	ZHANG Yue, YU Jia, HAO Rong, et al.Enabling Efficient User Revocation in Identity-Based Cloud Storage Auditing for Shared Big Data[J]. IEEE Transactions on Dependable and Secure Computing, 2018, 15(x): 1-13.

不同方案	用户成员	云服务器	KGC	TPA
本文方案	(6t+4)E+ (3t-2)M+ (t+n-2)A+H	(c+2)E+ (2c+n)M+ (c-1)A+H+2P	(nt+t+2)E+ (nt+1)M+ (nt-n+1)A+H	(c+2)E+ (c+n+1)M+ cH+2P
文献[16]	(4n+2m+1)E+ (2n+m)M+2A+ (2n+m+1)H	(3m+c)E+ (4m+2c-1)M+ (c-1)A+ 3mH+2mP	3E+M+A+H	(c+3)E+ (c+3)M+ (c+2)H+2P

不同方案	TPA发送给云服务器的质询	云服务器返回给TPA的证明
本文方案	${{\log }_{2}}c+{{\log }_{2}}{{k}_{1}}+{{\log }_{2}}{{k}_{2}}$	${{\log }_{2}}q+q+\left\| {{m}_{i}} \right\|$
文献[16]	$c\cdot \left( {{\log }_{2}}i+q \right)$	${{\log }_{2}}q+q+\left\| {{m}_{i}} \right\|$