Efficient Data Possession Auditing for Real-World Cloud Storage Environments
Summary :
Provable Data Possession (PDP) schemes enable users to efficiently check the integrity of their data in the cloud. Support for massive and dynamic sets of data and adaptability to third-party auditing are two key factors that affect the practicality of existing PDP schemes. We propose a secure and efficient PDP system called IDPA-MF-PDP, by exploiting the characteristics of real-world cloud storage environments. The cost of auditing massive and dynamic sets of data is dramatically reduced by utilizing a multiple-file PDP scheme (MF-PDP), based on the data update patterns of cloud storage. Deployment and operational costs of third-party auditing and information leakage risks are reduced by an auditing framework based on integrated data possession auditors (DPAs), instantiated by trusted hardware and tamper-evident audit logs. The interaction protocols between the user, the cloud server, and the DPA integrate MF-PDP with the auditing framework. Analytical and experimental results demonstrate that IDPA-MF-PDP provides the same level of security as the original PDP scheme while reducing computation and communication overhead on the DPA, from linear the size of data to near constant. The performance of the system is bounded by disk I/O capacity.
- Publication
- IEICE TRANSACTIONS on Information Vol.E98-D No.4 pp.796-806
- Publication Date
- 2015/04/01
- Publicized
- 2014/12/04
- Online ISSN
- 1745-1361
- DOI
- 10.1587/transinf.2014ICP0016
- Type of Manuscript
- Special Section PAPER (Special Section on Information and Communication System Security―Against Cyberattacks―)
- Category
- Cloud Security
Authors
Da XIAO
Beijing University of Posts and Telecommunications
Lvyin YANG
Beijing University of Posts and Telecommunications
Chuanyi LIU
Beijing University of Posts and Telecommunications
Bin SUN
Beijing University of Posts and Telecommunications
Shihui ZHENG
Beijing University of Posts and Telecommunications
Keyword
Latest Issue
Copyrights notice of machine-translated contents
The copyright of the original papers published on this site belongs to IEICE. Unauthorized use of the original or translated papers is prohibited. See IEICE Provisions on Copyright for details.
Cite this
Copy
Da XIAO, Lvyin YANG, Chuanyi LIU, Bin SUN, Shihui ZHENG, "Efficient Data Possession Auditing for Real-World Cloud Storage Environments" in IEICE TRANSACTIONS on Information,
vol. E98-D, no. 4, pp. 796-806, April 2015, doi: 10.1587/transinf.2014ICP0016.
Abstract: Provable Data Possession (PDP) schemes enable users to efficiently check the integrity of their data in the cloud. Support for massive and dynamic sets of data and adaptability to third-party auditing are two key factors that affect the practicality of existing PDP schemes. We propose a secure and efficient PDP system called IDPA-MF-PDP, by exploiting the characteristics of real-world cloud storage environments. The cost of auditing massive and dynamic sets of data is dramatically reduced by utilizing a multiple-file PDP scheme (MF-PDP), based on the data update patterns of cloud storage. Deployment and operational costs of third-party auditing and information leakage risks are reduced by an auditing framework based on integrated data possession auditors (DPAs), instantiated by trusted hardware and tamper-evident audit logs. The interaction protocols between the user, the cloud server, and the DPA integrate MF-PDP with the auditing framework. Analytical and experimental results demonstrate that IDPA-MF-PDP provides the same level of security as the original PDP scheme while reducing computation and communication overhead on the DPA, from linear the size of data to near constant. The performance of the system is bounded by disk I/O capacity.
URL: https://global.ieice.org/en_transactions/information/10.1587/transinf.2014ICP0016/_p
Copy
@ARTICLE{e98-d_4_796,
author={Da XIAO, Lvyin YANG, Chuanyi LIU, Bin SUN, Shihui ZHENG, },
journal={IEICE TRANSACTIONS on Information},
title={Efficient Data Possession Auditing for Real-World Cloud Storage Environments},
year={2015},
volume={E98-D},
number={4},
pages={796-806},
abstract={Provable Data Possession (PDP) schemes enable users to efficiently check the integrity of their data in the cloud. Support for massive and dynamic sets of data and adaptability to third-party auditing are two key factors that affect the practicality of existing PDP schemes. We propose a secure and efficient PDP system called IDPA-MF-PDP, by exploiting the characteristics of real-world cloud storage environments. The cost of auditing massive and dynamic sets of data is dramatically reduced by utilizing a multiple-file PDP scheme (MF-PDP), based on the data update patterns of cloud storage. Deployment and operational costs of third-party auditing and information leakage risks are reduced by an auditing framework based on integrated data possession auditors (DPAs), instantiated by trusted hardware and tamper-evident audit logs. The interaction protocols between the user, the cloud server, and the DPA integrate MF-PDP with the auditing framework. Analytical and experimental results demonstrate that IDPA-MF-PDP provides the same level of security as the original PDP scheme while reducing computation and communication overhead on the DPA, from linear the size of data to near constant. The performance of the system is bounded by disk I/O capacity.},
keywords={},
doi={10.1587/transinf.2014ICP0016},
ISSN={1745-1361},
month={April},}
Copy
TY - JOUR
TI - Efficient Data Possession Auditing for Real-World Cloud Storage Environments
T2 - IEICE TRANSACTIONS on Information
SP - 796
EP - 806
AU - Da XIAO
AU - Lvyin YANG
AU - Chuanyi LIU
AU - Bin SUN
AU - Shihui ZHENG
PY - 2015
DO - 10.1587/transinf.2014ICP0016
JO - IEICE TRANSACTIONS on Information
SN - 1745-1361
VL - E98-D
IS - 4
JA - IEICE TRANSACTIONS on Information
Y1 - April 2015
AB - Provable Data Possession (PDP) schemes enable users to efficiently check the integrity of their data in the cloud. Support for massive and dynamic sets of data and adaptability to third-party auditing are two key factors that affect the practicality of existing PDP schemes. We propose a secure and efficient PDP system called IDPA-MF-PDP, by exploiting the characteristics of real-world cloud storage environments. The cost of auditing massive and dynamic sets of data is dramatically reduced by utilizing a multiple-file PDP scheme (MF-PDP), based on the data update patterns of cloud storage. Deployment and operational costs of third-party auditing and information leakage risks are reduced by an auditing framework based on integrated data possession auditors (DPAs), instantiated by trusted hardware and tamper-evident audit logs. The interaction protocols between the user, the cloud server, and the DPA integrate MF-PDP with the auditing framework. Analytical and experimental results demonstrate that IDPA-MF-PDP provides the same level of security as the original PDP scheme while reducing computation and communication overhead on the DPA, from linear the size of data to near constant. The performance of the system is bounded by disk I/O capacity.
ER -
English
