• 主题
高级搜索  >
历史搜索 清空历史
首页> 外文期刊>Parallel and Distributed Systems, IEEE Transactions on >Enabling Public Auditability and Data Dynamics for Storage Security in Cloud Computing
【24h】

Enabling Public Auditability and Data Dynamics for Storage Security in Cloud Computing

机译:为云计算中的存储安全性启用公共可审核性和数据动态

获取原文
获取原文并翻译 | 示例
           
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

Cloud Computing has been envisioned as the next-generation architecture of IT Enterprise. It moves the application software and databases to the centralized large data centers, where the management of the data and services may not be fully trustworthy. This unique paradigm brings about many new security challenges, which have not been well understood. This work studies the problem of ensuring the integrity of data storage in Cloud Computing. In particular, we consider the task of allowing a third party auditor (TPA), on behalf of the cloud client, to verify the integrity of the dynamic data stored in the cloud. The introduction of TPA eliminates the involvement of the client through the auditing of whether his data stored in the cloud are indeed intact, which can be important in achieving economies of scale for Cloud Computing. The support for data dynamics via the most general forms of data operation, such as block modification, insertion, and deletion, is also a significant step toward practicality, since services in Cloud Computing are not limited to archive or backup data only. While prior works on ensuring remote data integrity often lacks the support of either public auditability or dynamic data operations, this paper achieves both. We first identify the difficulties and potential security problems of direct extensions with fully dynamic data updates from prior works and then show how to construct an elegant verification scheme for the seamless integration of these two salient features in our protocol design. In particular, to achieve efficient data dynamics, we improve the existing proof of storage models by manipulating the classic Merkle Hash Tree construction for block tag authentication. To support efficient handling of multiple auditing tasks, we further explore the technique of bilinear aggregate signature to extend our main result into a multiuser setting, where TPA can perform multiple auditing tasks simultaneously. Extensive security and performance -n-nanalysis show that the proposed schemes are highly efficient and provably secure.
机译:云计算已被设想为IT企业的下一代架构。它将应用程序软件和数据库移至集中的大型数据中心,在该中心数据和服务的管理可能不完全值得信赖。这种独特的范例带来了许多新的安全挑战,这些挑战尚未得到很好的理解。这项工作研究了确保云计算中数据存储完整性的问题。特别是,我们考虑允许第三方审核员(TPA)代表云客户端验证存储在云中的动态数据的完整性的任务。 TPA的引入通过审核客户存储在云中的数据是否确实完整来消除客户的参与,这对于实现云计算的规模经济很重要。通过最通用的数据操作形式(例如块修改,插入和删除)对数据动态的支持也是迈向实用性的重要一步,因为Cloud Computing中的服务不仅限于存档或备份数据。尽管先前有关确保远程数据完整性的工作通常缺乏公共审计能力或动态数据操作的支持,但本文实现了两者。我们首先通过先前工作中的全动态数据更新来确定直接扩展的困难和潜在的安全问题,然后展示如何为我们的协议设计中这两个显着特征的无缝集成构建一个优雅的验证方案。特别是,为了实现有效的数据动态,我们通过操纵经典的Merkle Hash Tree结构进行块标签认证来改善现有的存储模型证明。为了支持高效处理多个审核任务,我们进一步探索了双线性聚合签名技术,以将主要结果扩展到多用户设置中,其中TPA可以同时执行多个审核任务。广泛的安全性和性能-n分析表明,所提出的方案是高效且可证明的安全性。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号