• 主题
高级搜索  >
历史搜索 清空历史
首页> 外文期刊>Automatic Control and Computer Sciences >Secure Proof of Ownership Using Merkle Tree for Deduplicated Storage
【24h】

Secure Proof of Ownership Using Merkle Tree for Deduplicated Storage

机译:使用Merkle Tree进行重复数据删除存储的安全所有权证明

获取原文
获取原文并翻译 | 示例
           
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

In cloud services, deduplication is a widely used data reduction technique to minimize storage and communication overhead. Nonetheless, deduplication introduces a serious security risk: a malicious client can obtain access to a file on storage by learning just a piece of information about the file. Proof of ownership schemes provides protection against this security risk as it enables the server to check whether the client actually owns a particular file in its entirety. However, a malicious client may misuse proof of ownership procedure to waste resources at the server. For that, she sends a large number of upload requests and tries to keep the server busy in computing challenges and verifying responses. In this paper, we propose a secure proof of ownership scheme using Merkle tree. In this approach, cloud server precomputes the challenges-responses to avoid computational overhead during subsequent upload. Moreover, cloud server does not need to retain resources until the response is received since our approach is a stateless protocol. Security analysis demonstrates that a malicious client without having entire file cannot prove herself as an owner of the file. As a proof of concept, we implement our approach in a realistic environment and demonstrate that it outperforms the existing proof of ownership schemes in terms of challenge generation, communication, and response verification cost.
机译:在云服务中,重复数据删除是广泛使用的数据缩减技术,以最大限度地减少存储和通信开销。尽管如此,重复数据删除引入了严重的安全风险:恶意客户端可以通过学习有关文件的一段信息来获得对存储文件的访问权限。所有权方案证明提供了防止这种安全风险的保护,因为它使服务器能够检查客户端是否实际上拥有特定文件。但是,恶意客户端可能会滥用所有权程序证明,以浪费服务器的资源。为此,她发送了大量上传请求,并试图让服务器忙于计算挑战和验证响应。在本文中,我们使用Merkle树提出了一种安全的所有权方案证明。在这种方法中,Cloud Server预先占挑战 - 响应恢复,以避免在后续上传期间计算开销。此外,由于我们的方法是无状态协议,因此云服务器不需要保留资源,直到收到响应。安全性分析演示了恶意客户端而不具有整个文件不能将自己作为文件的所有者证明。作为概念证明,我们在现实环境中实施了我们的方法,并证明了在挑战生成,沟通和响应验证成本方面优于现有的所有权方案证明。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号