移动云计算环境中基于代理的可验证数据存储方案

doi:10.3724/SP.J.1087.2013.00743

计算机应用 ›› 2013, Vol. 33 ›› Issue (03): 743-747.DOI: 10.3724/SP.J.1087.2013.00743

移动云计算环境中基于代理的可验证数据存储方案

杨健^1,2*,王剑³,汪海航²,杨邓奇¹

1.大理学院数学与计算机学院,云南大理 671003;
2.同济大学电子与信息工程学院,上海 201804;
3.河南科技大学电子与信息工程学院,河南洛阳 471003

收稿日期:2012-09-21 修回日期:2012-10-14 出版日期:2013-03-01 发布日期:2013-03-01
通讯作者: 杨健
作者简介:杨健(1976-),男,浙江上虞人,副教授,博士研究生,CCF会员,主要研究方向:移动云计算、云存储安全; 王剑(1978-),女,河南洛阳人,讲师,博士,主要研究方向:可信计算、可信云计算; 汪海航(1965-),男,浙江奉化人,教授,博士生导师,博士,主要研究方向:信息安全、智能信息系统; 杨邓奇(1978-),男,云南大理人,讲师,博士,主要研究方向:信息安全。
基金资助:
上海市科委科技支撑计划项目(10490503700)。

Agent-based provable data possession scheme for mobile cloud computing

YANG Jian^1,2*,WANG Jian³, WANG Haihang², YANG Dengqi¹

1.College of Mathematics and Computer, Dali University, Dali Yunnan 671003, China;
2.College of Electronics and Information Engineering, Tongji University, Shanghai 201804, China;
3.College of Electronics and Information Engineering, Henan University of Science and Technology, Luoyang Henan 471003,China

Received:2012-09-21 Revised:2012-10-14 Online:2013-03-01 Published:2013-03-01
Contact: Jian Yang

摘要/Abstract

摘要： 现有云计算可验证数据存储协议无法直接应用于终端存储和计算能力有限的移动计算环境。针对该问题,提出移动计算环境下基于代理的可验证云存储协议,在终端和云服务器之间引入一个半可信的安全计算代理,利用代理来帮助移动终端用户完成计算密集的操作,从而使得可验证数据存储方案可用于移动计算环境。提出一个具体的可验证数据存储协议,形式化证明了所提协议满足随机预言机模型下的选择明文攻击(CPA)安全,量化分析结果表明协议设计适用于移动计算环境,符合设计目标。

关键词: 可验证数据存储, 计算代理, 移动计算, 云存储

Abstract: The existing Provable Data Possession (PDP) schemes cannot be directly applied in mobile cloud computing because the terminal' storage space and computing power are limited for the computationally intensive operations in those schemes. Addressing this issue, an Agent-based PDP scheme was proposed for mobile cloud computing. A semi-trusted security computation Agent was introduced between the terminal and the cloud server in order to help end-users complete the computationally intensive operations, so that the PDP scheme can be applied in mobile computing. A concrete PDP scheme was presented and a formal proof shows it satisfies the Chosen Plaintext Attack (CPA) security under random oracle model. The quantitative analysis results show that the scheme is fit for mobile cloud computing.

Key words: Provable Data Possession (PDP), computation Agent, mobile computing, cloud storage

中图分类号:

TP309.2

杨健王剑汪海航杨邓奇. 移动云计算环境中基于代理的可验证数据存储方案[J]. 计算机应用, 2013, 33(03): 743-747.

YANG Jian WANG Jian WANG Haihang YANG Dengqi. Agent-based provable data possession scheme for mobile cloud computing[J]. Journal of Computer Applications, 2013, 33(03): 743-747.

参考文献

[1]KHAN A N, KIAH M L M, KHAN S U. et al. Towards secure mobile cloud computing: a survey[EB/OL]. [2010-10-10]. http://sameekhan.org/pub/K_K_2012_FGCS.pdf.
[2]DESWARTE Y, QUISQUATER J J, SAIDANE A. Remote integrity checking[C]// IICIS '03: Proceedings of Conference on Integrity and Internal Control in Information Systems. Berlin: Springer, 2003: 1-11.
[3]FILHO D, BARRETO P. Demonstrating data possession and un-cheatable data transfer[EB/OL].[2010-10-10]. http://citeseerx.ist.psu.edu/viewdoc/download?doi=10.1.1.61.8040&rep=rep1&type=pdf.
[4]ATENIESE G, BURNS R, CURTMOLA R, et al. Provable data possession at untrusted stores[C]// CCS '07: Proceedings of the 14th ACM Conference on Computer and Communications Security. New York: ACM Press, 2007: 598-609.
[5]JUELS A, KALISKI B. Pors: proofs of retrievability for large files[C]// CCS '07: Proceedings of the 14th ACM Conference on Computer and Communications Security. New York: ACM Press, 2007: 584-597.
[6]ATENIESE G, KAMARA S, KATZ J. Proofs of storage from homomorphic identification protocols[C]// ASIACRYPT '09: Proceedings of the 15th International Conference on the Theory and Application of Cryptology and Information Security. Berlin: Springer, 2009: 319-333.
[7]CHANG E C, XU J. Remote integrity check with dishonest storage server[C]// ESORICS '08: Proceedings of the 13th European Symposium on Research in Computer Security. Berlin: Springer, 2008: 223-237.
[8]SHACHAM H, WATERS B. Compact proofs of retrievability[C]// ASIACRYPT '08: Proceedings of the 14th International Conference on the Theory and Application of Cryptology and Information Security. Berlin: Springer, 2008: 90-107.
[9]WANG C, WANG Q, REN K, et al. Privacy-preserving public auditing for data storage security in cloud computing[C]// INFOCOM '10: Proceedings of the 29th Conference on Computer Communications. Piscataway, NJ: IEEE Press, 2010: 1-9.
[10]GOHEL M, GOHIL B. A new data integrity checking protocol with public verifiability in cloud storage[C]// IFIPTM '2012: Trust Management VI, IFIP Advances in Information and Communication Technology, LNCS 374. Berlin: Springer, 2012: 240-246.
[11]HAO Z, ZHONG S, YU N H. A privacy-preserving remote data integrity checking protocol with data dynamics and public verifiability[J]. IEEE Transactions on Knowledge and Data Engineering, 2011, 23(9): 1432-1437.
[12]WANG Q, WANG C, LI J, et al. Enabling public verifiability and data dynamics for storage security in cloud computing[C]// ESORICS '09: Proceedings of the 14th European Symposium on Research in Computer Security. Berlin: Springer, 2009: 355-370.
[13]QIAN W, CONG W, KUI R, et al. Enabling public auditability and data dynamics for storage security in cloud computing[J]. IEEE Transactions on Parallel and Distributed Systems, 2011,22(5): 847-859.
[14]WANG Q, WANG C, KUI R, et al. Toward secure and dependable storage services in cloud computing[J]. IEEE Transactions on Services Computing, 2012, 5(2): 220-232.
[15]曹天杰, 张永平, 汪楚娇. 安全协议[M]. 北京: 北京邮电大学出版社, 2009. 129.
[16]BAO F, DENG R, ZHU H. Variations of Diffie-Hellman problem[C]// ICICS '03: Proceedings of the 5th International Conference on Information and Communications Security. Berlin: Springer, 2003: 301-312.
[17]ERWAY C, ALPTEKIN K, PAPAMANTHOU C, et al. Dynamic provable data possession [C]// CCS '09: Proceedings of the 16th ACM Conference on Computer and Communications Security. New York: ACM Press, 2009: 213-222.
[18]BOWERS K D, JUELS A, OPREA A. Proofs of retrievability: theory and implementation[C]// CCSW '09: Proceedings of 2009 ACM Workshop on Cloud Computing Security. New York: ACM Press, 2009: 43-53.
[19]BONEH D, LYNN B, SHACHAM H. Short signatures from the Weil pairing[C]// ASIACRYPT '01: Proceedings of the 7th International Conference on the Theory and Application of Cryptology and Information Security. Berlin: Springer, 2001: 514-532.
[20]BONEH D, GENTRY C. Aggregate and verifiably encrypted signatures from bilinear maps[C]// Eurocrypt '03: Proceedings of the International Conference on the Theory and Applications of Cryptographic Techniques. Berlin: Springer, 2003: 416-432.

移动云计算环境中基于代理的可验证数据存储方案

Agent-based provable data possession scheme for mobile cloud computing

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 15

编辑推荐

Metrics

[1]	李秀艳, 刘明曦, 史闻博, 董国芳. 面向资源受限用户的高效动态数据审计方案[J]. 计算机应用, 2021, 41(2): 422-432.
[2]	唐鑫, 周琳娜. 基于响应模糊化的抗附加块攻击云数据安全去重方法[J]. 计算机应用, 2020, 40(4): 1085-1090.
[3]	付伟, 顾晨阳, 高强. 基于属性加密的多用户共享ORAM方案[J]. 计算机应用, 2020, 40(2): 497-502.
[4]	王海勇, 彭垚, 郭凯璇. 云存储中基于代理重加密的CP-ABE访问控制方案[J]. 计算机应用, 2019, 39(9): 2611-2616.
[5]	柳玉东, 王绪安, 涂广升, 王涵. 全生命周期的云外包数据安全审计协议[J]. 计算机应用, 2019, 39(7): 1954-1958.
[6]	明洋, 何宝康. 支持属性撤销的可验证外包的多授权属性加密方案[J]. 计算机应用, 2019, 39(12): 3556-3562.
[7]	周坚, 金瑜, 何亨, 李鹏. 基于嵌套Merkle Hash tree区块链的云数据动态审计模型[J]. 计算机应用, 2019, 39(12): 3575-3583.
[8]	李静, 刘冬实. 主动容错云存储系统的可靠性评价模型[J]. 计算机应用, 2018, 38(9): 2631-2636.
[9]	陈博, 何连跃, 严巍巍, 徐照淼, 徐俊. 海量小文件系统的可移植操作系统接口兼容技术[J]. 计算机应用, 2018, 38(5): 1389-1392.
[10]	杨宏宇, 王玥. 云存储环境下的多关键字密文搜索方法[J]. 计算机应用, 2018, 38(2): 343-347.
[11]	王敏燊, 熊金波, 林倩, 王丽丽. 基于密钥分发和密文抽样的云数据确定性删除方案[J]. 计算机应用, 2018, 38(1): 194-200.
[12]	李强, 刘晓峰. 基于Hopfield神经网络的云存储负载均衡策略[J]. 计算机应用, 2017, 37(8): 2214-2217.
[13]	李昊宇, 张龙军, 李庆鹏. 基于B⁺树的动态数据持有性证明方案[J]. 计算机应用, 2017, 37(7): 1931-1935.
[14]	李阿妮, 张晓, 张伯阳, 柳春懿, 赵晓南. 公有云存储系统性能评测方法研究[J]. 计算机应用, 2017, 37(5): 1229-1235.
[15]	曹景源, 李立新, 李全良, 丁永善. 云存储环境下生命周期可控的数据销毁模型[J]. 计算机应用, 2017, 37(5): 1335-1340.