| Cloud storage is convenient for the cloud users,which can reduce the stress of local data storage and maintenance cost because of the considerable storage space and data management services,the databases stored in cloud storage can be accessed and updated.However,cloud service provider is semi-trusted.It is difficult to ensure integrity and availability of data.Cloud service provider should exploit the integrity verification technology to prove the data is complete.Integrity verification technique uses the block signature technique to compute metadata and construct an authentication data structure.The metadata stored in the authentication data structure is verified firstly.Then,the data block information is verified when the metadata is correct.The integrity verification technique includes three parts: the construction of authentication data structure which supports dynamic operations effectively,the design of lightweight signature method,the credibility and coordinability of the scheme.The design of authentication data structure is significant for reducing the computational cost of the system and improving the efficiency of the integrity verification.Firstly,a data structure based on Binary Ordered Merkle Hash Tree(BO-MHT)is proposed to improve the node utilization and reduce the height of authentication data structure.Each node stores the information of data blocks.The local authority root node is used to shorten the length of authentication path.The version identifiers are added at each node which can maintain the freshness of information and prevents replay attacks from cloud storage service providers.Secondly,a new integrity auditing scheme based BO-MHT structure is proposed.Theoretical analysis and experimental results show that the proposed scheme is the good characteristic of integrity auditing,which can effectively reduce the computational and communication costs,and improve the efficiency of audit.To ensure credibility of the scheme and avoid the optional denial for the proof returned by the cloud service provider,an integrity auditing scheme for cloud data is proposed to support fairness arbitration.A fair arbiter is introduced in each interaction between the user and the cloud service provider,which ensures the fairness and traceability of the interaction process between the two sides.The fair arbiter utilizes the digital signature technique to verify the legitimacy of both sides,which ensures the integrity of interactive information and improves the security of the scheme.In addition,a Log Block Chain(LBC)data structure is proposed based on block chain.The arbiter uses the LBC to establish and process the interaction information.The LBC is used to determine the illegal operator when the user and the cloud storage provider are inconsistent.It can be demonstrated that the scheme with the characteristic of fair arbitration can shorten the length of record information effectively. |
PDF Full Text Request