{"title":"JCDC: A blockchain-based framework for secure data storage and circulation in JointCloud","authors":"","doi":"10.1016/j.future.2024.107486","DOIUrl":null,"url":null,"abstract":"<div><p>JointCloud computing represents a new generation cloud computing paradigm, which deeply integrates the cloud resources of multiple Cloud Service Providers (CSPs) to offer tailored cloud services to users. In contrast to traditional multi-cloud environment, JointCloud environment involve data circulation among multiple CSPs. However, in JointCloud environment, CSPs are not always fully trustworthy and they may illegally infringe upon users’ data privacy and security for their own benefit. Additionally, the heterogeneity arising from different data storage formats, structures, access control, and permission management mechanisms adopted by various CSPs makes achieving unified data management in JointCloud challenging. Therefore, to ensure secure storage and efficient circulation of data within JointCloud, it is essential to prevent violations for user privacy and data ownership, shield the heterogeneity of underlying data management mechanisms across different CSPs, and establish trusted transactions between CSPs. In this paper, we propose a framework called JointCloud Data Chain (JCDC) based on JointCloud computing and blockchain for data storage and circulation, aiming to ensure secure data storage and trustworthy transactions. JCDC utilizes blockchain to record data ownership and control data circulation, while integrating storage resources from various CSPs to construct a distributed off-chain Personal Data Storage (PDS) for expanding system storage capacity. Additionally, JCDC employs Certificateless Public Key Cryptography (CL-PKC) and Proxy Re-encryption technologies for user identity management and secure data transactions. Furthermore, smart contracts are designed to enable automated data storage and sharing. We conduct a security analysis of JCDC and develop a prototype system to validate its performance and practicality. Finally, extensive experimentation and analysis demonstrate that JCDC exhibits low time latency and cost, which makes it practical.</p></div>","PeriodicalId":55132,"journal":{"name":"Future Generation Computer Systems-The International Journal of Escience","volume":null,"pages":null},"PeriodicalIF":6.2000,"publicationDate":"2024-08-20","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Future Generation Computer Systems-The International Journal of Escience","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S0167739X24004424","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, THEORY & METHODS","Score":null,"Total":0}
引用次数: 0
Abstract
JointCloud computing represents a new generation cloud computing paradigm, which deeply integrates the cloud resources of multiple Cloud Service Providers (CSPs) to offer tailored cloud services to users. In contrast to traditional multi-cloud environment, JointCloud environment involve data circulation among multiple CSPs. However, in JointCloud environment, CSPs are not always fully trustworthy and they may illegally infringe upon users’ data privacy and security for their own benefit. Additionally, the heterogeneity arising from different data storage formats, structures, access control, and permission management mechanisms adopted by various CSPs makes achieving unified data management in JointCloud challenging. Therefore, to ensure secure storage and efficient circulation of data within JointCloud, it is essential to prevent violations for user privacy and data ownership, shield the heterogeneity of underlying data management mechanisms across different CSPs, and establish trusted transactions between CSPs. In this paper, we propose a framework called JointCloud Data Chain (JCDC) based on JointCloud computing and blockchain for data storage and circulation, aiming to ensure secure data storage and trustworthy transactions. JCDC utilizes blockchain to record data ownership and control data circulation, while integrating storage resources from various CSPs to construct a distributed off-chain Personal Data Storage (PDS) for expanding system storage capacity. Additionally, JCDC employs Certificateless Public Key Cryptography (CL-PKC) and Proxy Re-encryption technologies for user identity management and secure data transactions. Furthermore, smart contracts are designed to enable automated data storage and sharing. We conduct a security analysis of JCDC and develop a prototype system to validate its performance and practicality. Finally, extensive experimentation and analysis demonstrate that JCDC exhibits low time latency and cost, which makes it practical.
期刊介绍:
Computing infrastructures and systems are constantly evolving, resulting in increasingly complex and collaborative scientific applications. To cope with these advancements, there is a growing need for collaborative tools that can effectively map, control, and execute these applications.
Furthermore, with the explosion of Big Data, there is a requirement for innovative methods and infrastructures to collect, analyze, and derive meaningful insights from the vast amount of data generated. This necessitates the integration of computational and storage capabilities, databases, sensors, and human collaboration.
Future Generation Computer Systems aims to pioneer advancements in distributed systems, collaborative environments, high-performance computing, and Big Data analytics. It strives to stay at the forefront of developments in grids, clouds, and the Internet of Things (IoT) to effectively address the challenges posed by these wide-area, fully distributed sensing and computing systems.