Cross-domain data cloud storage auditing scheme based on certificateless cryptography

doi:10.19682/j.cnki.1005-8885.2021.1023

中国邮电高校学报(英文) ›› 2021, Vol. 28 ›› Issue (6): 36-47.doi: 10.19682/j.cnki.1005-8885.2021.1023

• Special Topic: Data Security and Privacy Preservation in Cloud/ Fog / Edge-Enabled Internet of Thing • 上一篇下一篇

Cross-domain data cloud storage auditing scheme based on certificateless cryptography

Xu Yan, Li Zheng, Ding Long, Xu Rui

1. School of Computer Science and Technology, Anhui University, Hefei 230039, China

2. Anhui Engineering Laboratory of IoT Security Technologies, Anhui University, Hefei 230039, China

3. School of Computer, University of Geosciences (Wuhan), Wuhan 430078, China

收稿日期:2021-08-02 修回日期:2021-10-07 出版日期:2021-12-30 发布日期:2021-12-30
通讯作者: 许艳 E-mail:xuyan@ahu.edu.cn
基金资助:
the National Natural Science Foundation of China (61802354)

Cross-domain data cloud storage auditing scheme based on certificateless cryptography

1. School of Computer Science and Technology, Anhui University, Hefei 230039, China

2. Anhui Engineering Laboratory of IoT Security Technologies, Anhui University, Hefei 230039, China

3. School of Computer, University of Geosciences (Wuhan), Wuhan 430078, China

Received:2021-08-02 Revised:2021-10-07 Online:2021-12-30 Published:2021-12-30
Supported by:
the National Natural Science Foundation of China (61802354)

摘要/Abstract

摘要： With the development of Internet of things (IoT), more and more intelligent terminal devices outsource data to cloud servers (CSs). However, the CS is not fully trusted, and the heterogeneity among different domains makes it difficult for third-party auditor (TPA) to conduct an efficient integrity auditing of outsourced data. Therefore, the cross-domain data cloud storage auditing scheme based on certificateless cryptography is proposed, which can effectively avoid the big burden of certificate management or key escrow problems in identity-based cryptography. At the same time, TPA can effectively audit the integrity of outsourced data in different domains. Formal security proof and analysis show that the cloud storage auditing scheme satisfies the security and privacy requirements. Performance analysis demonstrates that the efficiency is acceptable.

关键词: cloud storage auditing, certificateless cryptography, cross-domain, Internet of things (IoT)

Abstract:

With the development of Internet of things (IoT), more and more intelligent terminal devices outsource data to cloud servers (CSs). However, the CS is not fully trusted, and the heterogeneity among different domains makes it difficult for third-party auditor (TPA) to conduct an efficient integrity auditing of outsourced data. Therefore, the cross-domain data cloud storage auditing scheme based on certificateless cryptography is proposed, which can effectively avoid the big burden of certificate management or key escrow problems in identity-based cryptography. At the same time, TPA can effectively audit the integrity of outsourced data in different domains. Formal security proof and analysis show that the cloud storage auditing scheme satisfies the security and privacy requirements. Performance analysis demonstrates that the efficiency is acceptable.

Key words: cloud storage auditing, certificateless cryptography, cross-domain, Internet of things (IoT)

中图分类号:

TP309

Xu Yan, Li Zheng, Ding Long, Xu Rui. Cross-domain data cloud storage auditing scheme based on certificateless cryptography[J]. The Journal of China Universities of Posts and Telecommunications, 2021, 28(6): 36-47.

参考文献

1. Deebak B D, Al-Turjman F. Smart mutual authentication protocol for cloud based medical healthcare systems using internet of medical things. IEEE Journal on Selected Areas in Communications, 2021, 39(2): 346-360

2. Srinivas J, Das A K, Wazid M, et al. Designing secure user authentication protocol for big data collection in IoT-based intelligent transportation system. IEEE Internet of Things Journal, 2021, 8(9): 7727-7744

3. Zhang Z Y, Deng R L, Yau D K Y, et al. Zero-parameter-information data integrity attacks and countermeasures in IoT-based smart grid. IEEE Internet of Things Journal, 2021, 8(8): 6608-6623

4. Ren K, Wang C, Wang Q. Security challenges for the public cloud. IEEE Internet Computing, 2012, 16(1): 69-73

5. Luo W, Ma W P, Gao J T. MHB*T based dynamic data integrity auditing in cloud storage. Cluster Computing: The Journal of Networks, Software Tools and Applications, 2021, 24(3): 2115-2132

6. Gudeme J R, Pasupuleti S K, Kandukuri R. Certificateless multi-replica public integrity auditing scheme for dynamic shared data in cloud storage. Computers & Security, 2021, 103: Article 102176

7. Shacham H, Waters B. Compact proofs of retrievability. Journal of Cryptology, 2013, 26(3): 442-483

8. Yang Y, Chen Y J, Chen F. A compressive integrity auditing protocol for secure cloud storage. IEEE/ACM Transactions on Networking, 2021, 29(3): 1197-1209

9. Wang C, Chow S S M, Wang Q, et al. Privacy-preserving public auditing for secure cloud storage. IEEE Transactions on Computers, 2013, 62(2): 362-375

10. Erway C C, Küpçü A. Papamanthou C, et al. Dynamic provable data possession. ACM Transactions on Information and System Security, 2015, 17(4): 1-29

11. Al-Riyami S S, Paterson K G. Certificateless public key cryptography. Advances in Cryptology: Proceedings of the 9th International Conference on the Theory and Application of Cryptology and Information Security (ASIACRYPT’03), 2003, Nov 30-Dec 4, Taipei, China. LNCS 2894. Berlin, Germany: Springer, 2003: 452- 473

12. He D B, Zeadally S, Wu L B. Certificateless public auditing scheme for cloud-assisted wireless body area networks. IEEE Systems Journal, 2018, 12(1): 64-73

13. He D B, Kumar N, Zeadally S, et al. Certificateless provable data possession scheme for cloud-based smart grid data management systems. IEEE Transactions on Industrial Informatics, 2018, 14(3): 1232-1241

14. Zhao K X, Sun D, Ren G, et al. Public auditing scheme with identity privacy preserving based on certificateless ring signature for wireless body area networks. IEEE Access, 2020, 8: 41975-41984

15. Vamshi A, Rao G J, Pasupuleti S K, et al. EPF-CLPA: An efficient pairing-free certificateless public auditing for cloud-based CPS. Proceedings of the 5th International Conference on Intelligent Computing and Control Systems (ICICCS’21), 2021, May 6-8, Madurai, India. Piscataway, NJ, USA: IEEE, 2021: 48-54

16. Zheng Y. Methodologies for cross-domain data fusion: An overview. IEEE Transactions on Big Data, 2015, 1(1): 16-34

17. Singh P, Masud M, Shamim Hossain M, et al. Cross-domain secure data sharing using blockchain for industrial IoT. Journal of Parallel and Distributed Computing, 2021, 156: 176-184

18. Yang X, Lu R X, Choo K K R, et al. Achieving efficient and privacy-preserving cross-domain big data deduplication in cloud. IEEE Transactions on Big Data, 2017, DOI: 10.1109/TBDATA.2017.2721444

19. Fan K, Pan Q, Wang J X, et al. Cross-domain based data sharing scheme in cooperative edge computing. Proceedings of the 2018 IEEE International Conference on Edge Computing (EDGE’18), 2018, Jul 2-7, San Francisco, CA, USA. Piscataway, NJ, USA: IEEE, 2018: 87-92

20. Jiang X T, Yu F R, Song T, et al. Blockchain-enabled cross-domain object detection for autonomous driving: A model sharing approach. IEEE Internet of Things Journal, 2020, 7(5): 3681-3692

21. Zheng J W, Dong X W, Shen Y L, et al. Decentralized and secure cross-domain data sharing scheme based on blockchain for application-centric IoT. Journal of Information Science and Engineering, 2020, 36(4): 1-15

[1]	孟慧任利娜赵宗渠. Identity-based proxy re-encryption scheme from RLWE assumption with ciphertext evolution[J]. 中国邮电高校学报(英文版), 2023, 30(5): 51-60.
[2]	Peng Weiping, Cui Shuang, Song Cheng, Han Ning. Enhanced secure medical data sharing with traceable and direct revocation[J]. 中国邮电高校学报(英文版), 2023, 30(1): 66-79.
[3]	Han Yushan, Che Bichen, Liu Jiali, Dou Zhao, Di Junyu. Nearly universal and efficient quantum secure multi-party computation protocol[J]. 中国邮电高校学报(英文版), 2022, 29(4): 51-68.
[4]	Han Gang, Xing Qixuan, Zhang Yinghui. Fine-grained cooperative access control scheme with hidden policies[J]. 中国邮电高校学报(英文版), 2021, 28(6): 13-25.
[5]	Tao Yunting, Kong Fanyu, Yu Jia. EPMDA: an efficient privacy-preserving multi-dimensional data aggregation scheme for edge computing-based IoT system [J]. 中国邮电高校学报(英文版), 2021, 28(6): 26-35.
[6]	赵国生张婧婷王健. Research on location privacy protection method of sensor-cloud base station [J]. 中国邮电高校学报(英文版), 2021, 28(1): 64-77.
[7]	赵宗渠马少提王永军汤永利叶青. Two-factor ( biometric and password) authentication key exchange on lattice based on key consensus [J]. 中国邮电高校学报(英文版), 2020, 27(6): 42-53.
[8]	林杰刘川意方滨兴. VMScan: an out-of-VM malware scanner [J]. 中国邮电高校学报(英文版), 2020, 27(4): 59-68.
[9]	Tang Yongli, Wang Mingming, Ye Qing, Qin Panke, Zhao Zongqu. Lattice-based hierarchical identity-based broadcast encryption scheme in the standard model[J]. 中国邮电高校学报(英文版), 2019, 26(4): 70-79.
[10]	Cai Xiumei, Liu Chao, Huang Xianying, Liu Xiaoyang, Cao Qiong, Yang Hongyu. Dynamic model of computer viruses under the effect of removable media and external computers[J]. 中国邮电高校学报(英文版), 2018, 25(4): 86-93.
[11]	Min Xiangshen, Fan Jiulun, Zhang Xuefeng, Ren Fang. Color image encryption scheme based on chaotic systems[J]. 中国邮电高校学报(英文版), 2018, 25(2): 39-48.
[12]	Ding Haiyang, Li Zichen, Bi Wei. (k, n) halftone visual cryptography based on Shamir‘s secret sharing[J]. 中国邮电高校学报(英文版), 2018, 25(2): 60-76.
[13]	Chen Shangdi, Wen Jiejing. New key pre-distribution scheme using symplectic geometry over finite fields for wireless sensor networks[J]. 中国邮电高校学报(英文版), 2017, 24(5): 16-22.
[14]	谢佳胡予濮高军涛高雯李雪莲. Attribute-based signatures on lattices[J]. 中国邮电高校学报(英文版), 2016, 23(4): 83-90.
[15]	冯超辛阳. Fast key generation for Gentry-style homomorphic encryption[J]. Acta Metallurgica Sinica(English letters), 2014, 21(6): 37-44.

Cross-domain data cloud storage auditing scheme based on certificateless cryptography

Cross-domain data cloud storage auditing scheme based on certificateless cryptography

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 15

编辑推荐

Metrics

本文评价