A new public remote integrity checking scheme with user and data privacy

Int. J. Appl. Cryptogr. Pub Date : 2017-09-04 DOI:10.1504/IJACT.2017.10007296

Yiteng Feng, Guomin Yang, Joseph K. Liu

{"title":"A new public remote integrity checking scheme with user and data privacy","authors":"Yiteng Feng, Guomin Yang, Joseph K. Liu","doi":"10.1504/IJACT.2017.10007296","DOIUrl":null,"url":null,"abstract":"With cloud storage, users can store their data files on a remote cloud server with a high quality on-demand cloud service and are able to share their data with other users. Since cloud servers usually are not regarded as fully trusted and the cloud data can be shared amongst users, the integrity checking of the remote files has become an important issue. A number of remote data integrity checking protocols have been proposed in the literature to allow public auditing of cloud data by a third party auditor (TPA). However, user privacy is not taken into account in most of the existing protocols. We believe that preserving the anonymity (i.e., identity privacy) of the data owner is also very important in many applications. In this paper, we propose a new remote integrity checking scheme which allows the cloud server to protect the identity information of the data owner against the TPA. We also define a formal security model to capture the requirement of user anonymity, and prove the anonymity of the proposed scheme. Moreover, we improve the existing security model for data privacy against the TPA, and show that an extended version of our protocol is secure under the strengthened security model.","PeriodicalId":350332,"journal":{"name":"Int. J. Appl. Cryptogr.","volume":"57 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2017-09-04","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"5","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Int. J. Appl. Cryptogr.","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1504/IJACT.2017.10007296","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 5

Abstract

With cloud storage, users can store their data files on a remote cloud server with a high quality on-demand cloud service and are able to share their data with other users. Since cloud servers usually are not regarded as fully trusted and the cloud data can be shared amongst users, the integrity checking of the remote files has become an important issue. A number of remote data integrity checking protocols have been proposed in the literature to allow public auditing of cloud data by a third party auditor (TPA). However, user privacy is not taken into account in most of the existing protocols. We believe that preserving the anonymity (i.e., identity privacy) of the data owner is also very important in many applications. In this paper, we propose a new remote integrity checking scheme which allows the cloud server to protect the identity information of the data owner against the TPA. We also define a formal security model to capture the requirement of user anonymity, and prove the anonymity of the proposed scheme. Moreover, we improve the existing security model for data privacy against the TPA, and show that an extended version of our protocol is secure under the strengthened security model.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

一种新的具有用户和数据隐私的公共远程完整性检查方案

使用云存储，用户可以将数据文件存储在具有高质量按需云服务的远程云服务器上，并能够与其他用户共享数据。由于云服务器通常不被认为是完全可信的，并且云数据可以在用户之间共享，因此远程文件的完整性检查已成为一个重要问题。文献中提出了许多远程数据完整性检查协议，以允许第三方审计员(TPA)对云数据进行公共审计。然而，现有的大多数协议都没有考虑到用户的隐私。我们相信，在许多应用程序中，保持数据所有者的匿名性(即身份隐私)也非常重要。在本文中，我们提出了一种新的远程完整性检查方案，该方案允许云服务器保护数据所有者的身份信息免受TPA的攻击。我们还定义了一个形式化的安全模型来捕获用户匿名的需求，并证明了所提出方案的匿名性。此外，我们针对TPA改进了现有的数据隐私安全模型，并证明了我们协议的扩展版本在增强的安全模型下是安全的。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

Int. J. Appl. Cryptogr.

自引率

0.00%

发文量