Wenlong Yi, Chuang Wang, Jie Chen, Sergey Kuzmin, Igor Gerasimov, Xiangping Cheng
{"title":"DSDM-TCSE:可信云服务环境的确定性存储和删除机制","authors":"Wenlong Yi, Chuang Wang, Jie Chen, Sergey Kuzmin, Igor Gerasimov, Xiangping Cheng","doi":"10.1016/j.future.2024.107611","DOIUrl":null,"url":null,"abstract":"The separation of data ownership and management rights in cloud storage architectures results in losing control over outsourced data, making it challenging to achieve deterministic deletion and verify-deletion results. This predicament precipitates security vulnerabilities that impede the advancement of cloud services. This study proposes a deterministic storage and deletion mechanism for trusted cloud service environments (DSDM-TCSEs). This mechanism establishes a three-layer cloud data interaction framework, adopting blockchain as the communication intermediary layer, and employs techniques such as overwrite key negotiation strategy and CP-ABE encryption to achieve fine-grained storage, deletion control, and deletion result verification of cloud data, effectively isolating the cloud service provider and protecting data privacy. It also proposes an efficient evidence strategy based on a cuckoo filter and data noise vectors for rapid construction and verification. Experimental results show that this method improves the speed of evidence construction and verification by 83% compared to related schemes and saves 5% storage overhead when the number of attributes is large, demonstrating good time and space performance and providing a solid guarantee for achieving deterministic storage and deletion in trusted cloud services.","PeriodicalId":55132,"journal":{"name":"Future Generation Computer Systems-The International Journal of Escience","volume":"67 1","pages":""},"PeriodicalIF":6.2000,"publicationDate":"2024-11-19","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"DSDM-TCSE: Deterministic storage and deletion mechanism for trusted cloud service environments\",\"authors\":\"Wenlong Yi, Chuang Wang, Jie Chen, Sergey Kuzmin, Igor Gerasimov, Xiangping Cheng\",\"doi\":\"10.1016/j.future.2024.107611\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The separation of data ownership and management rights in cloud storage architectures results in losing control over outsourced data, making it challenging to achieve deterministic deletion and verify-deletion results. This predicament precipitates security vulnerabilities that impede the advancement of cloud services. This study proposes a deterministic storage and deletion mechanism for trusted cloud service environments (DSDM-TCSEs). This mechanism establishes a three-layer cloud data interaction framework, adopting blockchain as the communication intermediary layer, and employs techniques such as overwrite key negotiation strategy and CP-ABE encryption to achieve fine-grained storage, deletion control, and deletion result verification of cloud data, effectively isolating the cloud service provider and protecting data privacy. It also proposes an efficient evidence strategy based on a cuckoo filter and data noise vectors for rapid construction and verification. Experimental results show that this method improves the speed of evidence construction and verification by 83% compared to related schemes and saves 5% storage overhead when the number of attributes is large, demonstrating good time and space performance and providing a solid guarantee for achieving deterministic storage and deletion in trusted cloud services.\",\"PeriodicalId\":55132,\"journal\":{\"name\":\"Future Generation Computer Systems-The International Journal of Escience\",\"volume\":\"67 1\",\"pages\":\"\"},\"PeriodicalIF\":6.2000,\"publicationDate\":\"2024-11-19\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Future Generation Computer Systems-The International Journal of Escience\",\"FirstCategoryId\":\"94\",\"ListUrlMain\":\"https://doi.org/10.1016/j.future.2024.107611\",\"RegionNum\":2,\"RegionCategory\":\"计算机科学\",\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q1\",\"JCRName\":\"COMPUTER SCIENCE, THEORY & METHODS\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Future Generation Computer Systems-The International Journal of Escience","FirstCategoryId":"94","ListUrlMain":"https://doi.org/10.1016/j.future.2024.107611","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, THEORY & METHODS","Score":null,"Total":0}
DSDM-TCSE: Deterministic storage and deletion mechanism for trusted cloud service environments
The separation of data ownership and management rights in cloud storage architectures results in losing control over outsourced data, making it challenging to achieve deterministic deletion and verify-deletion results. This predicament precipitates security vulnerabilities that impede the advancement of cloud services. This study proposes a deterministic storage and deletion mechanism for trusted cloud service environments (DSDM-TCSEs). This mechanism establishes a three-layer cloud data interaction framework, adopting blockchain as the communication intermediary layer, and employs techniques such as overwrite key negotiation strategy and CP-ABE encryption to achieve fine-grained storage, deletion control, and deletion result verification of cloud data, effectively isolating the cloud service provider and protecting data privacy. It also proposes an efficient evidence strategy based on a cuckoo filter and data noise vectors for rapid construction and verification. Experimental results show that this method improves the speed of evidence construction and verification by 83% compared to related schemes and saves 5% storage overhead when the number of attributes is large, demonstrating good time and space performance and providing a solid guarantee for achieving deterministic storage and deletion in trusted cloud services.
期刊介绍:
Computing infrastructures and systems are constantly evolving, resulting in increasingly complex and collaborative scientific applications. To cope with these advancements, there is a growing need for collaborative tools that can effectively map, control, and execute these applications.
Furthermore, with the explosion of Big Data, there is a requirement for innovative methods and infrastructures to collect, analyze, and derive meaningful insights from the vast amount of data generated. This necessitates the integration of computational and storage capabilities, databases, sensors, and human collaboration.
Future Generation Computer Systems aims to pioneer advancements in distributed systems, collaborative environments, high-performance computing, and Big Data analytics. It strives to stay at the forefront of developments in grids, clouds, and the Internet of Things (IoT) to effectively address the challenges posed by these wide-area, fully distributed sensing and computing systems.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
