| In the era of big data,cloud computing,as a portable,on-demand and shareable service model,has been widely applied in many industries.The outsourced model of cloud storage makes resource-limited smart devices to get rid of the limitations of computing and storage resources.However,data outsourcing will inevitably cause that users may lose physical control of the data.If a file is re-outsourced to a dangerous area or loses protection,the data might be lost or misused.It shows the crucial needs for data geolocation.Academic and industrial communities provide some solutions for data geolocation.The academic communities mainly focus on the strong correlation between the communication delay and the geographical distance;the industrial community mainly relies on maintaining commercial databases which can map host addresses to geographical locations.However,both methods face serious security issues.On the one hand,Cloud Service Providers(CSPs)will use network layer attacks to make users unawarely to be redirected;on the other hand,CSPs may fake the delay to manipulate the user's geolocating results for the reason that network layer messages lack unforgeability.We focus on these issues,the main contributions are summarized as follows:1.A data geolocating scheme which can be deployed in the existing Internet environment are proposed.The new scheme combines proof of retrivability technology and delay-based geolocation technology,so it can check the integrity of data stored in CSPs and obtain its geographic location.By using a novel server-centric broadcast measurement and independently designing delay-distance functions for each proxy hosts,our scheme can more effectively detect location forgery attacks from semi-honest cloud servers.Security and efficiency analysis results show that the scheme can achieve secure data geolocation and achieve city-level accuracy with self-built datasets.The result has been published by International Academic Journal: Journal of Information Security and Applications(SCI Impact Factor: 1.537).2.A dynamic data geolocating scheme based on a trusted computing platform are further proposed.We improving the delay distance function to increase the accuracy of geolocating;use the trusted computing platform to reduce the calculation error on the server side;and expand the usage scenario of the scheme by integrating the user's data dynamic operation into the scheme.Further experimental evaluation shows that the new scheme can keep the security of the original scheme.Beyond that,the geolocating error of it can be reduced by up to 62.5 % compared with the previous scheme. |
PDF Full Text Request