中国邮电高校学报(英文) ›› 2019, Vol. 26 ›› Issue (3): 56-72.doi: 10.19682/j.cnki.1005-8885.2019.0013

• Artificial Intelligence • 上一篇    下一篇

Updatable block-level deduplication of encrypted data with efficient auditing in cloud storage

党乾龙1,谢莹1,李栋浩2,胡功成1   

  1. 1. 西安电子科技大学数学与统计学院
    2. 河南工业大学理学院
  • 收稿日期:2018-09-17 修回日期:2018-12-14 出版日期:2019-06-30 发布日期:2019-06-30
  • 通讯作者: 党乾龙 E-mail:xidianqldang@163.com

Updatable block-level deduplication of encrypted data with efficient auditing in cloud storage

  • Received:2018-09-17 Revised:2018-12-14 Online:2019-06-30 Published:2019-06-30
  • Contact: Qian-Long DANG E-mail:xidianqldang@163.com

摘要: Updatable block-level message-locked encryption(MLE)) can efficiently update encrypted data, and public auditing can verify the integrity of cloud storage data by utilizing a third party auditor (TPA). However, there are seldom schemes supporting both updatable block-level deduplication and public auditing. In this paper, an updatable block-level deduplication scheme with efficient auditing is proposed based on a tree-based authenticated structure. In the proposed scheme, the cloud server (CS)can perform block-level deduplication, and the TPA achieves integrity auditing tasks. When a data block is updated, the ciphertext and auditing tags could be updated efficiently. The security analysis demonstrates that the proposed scheme can achieve privacy under chosen distribution attacks in secure deduplication and resist uncheatable chosen distribution attacks (UNC-CDA) in proof of ownership (PoW). Furthermore, the integrity auditing process is proven secure under adaptive chosen-message attacks. Compared with previous relevant schemes, the proposed scheme achieves better functionality and higher efficiency.

关键词: data update operation, block-level deduplication, efficient auditing, tree-based authenticated structure, proof of ownership

Abstract: Updatable block-level message-locked encryption(MLE)) can efficiently update encrypted data, and public auditing can verify the integrity of cloud storage data by utilizing a third party auditor (TPA). However, there are seldom schemes supporting both updatable block-level deduplication and public auditing. In this paper, an updatable block-level deduplication scheme with efficient auditing is proposed based on a tree-based authenticated structure. In the proposed scheme, the cloud server (CS)can perform block-level deduplication, and the TPA achieves integrity auditing tasks. When a data block is updated, the ciphertext and auditing tags could be updated efficiently. The security analysis demonstrates that the proposed scheme can achieve privacy under chosen distribution attacks in secure deduplication and resist uncheatable chosen distribution attacks (UNC-CDA) in proof of ownership (PoW). Furthermore, the integrity auditing process is proven secure under adaptive chosen-message attacks. Compared with previous relevant schemes, the proposed scheme achieves better functionality and higher efficiency.

Key words: data update operation, block-level deduplication, efficient auditing, tree-based authenticated structure, proof of ownership