Attribute-based cloud data integrity auditing for secure outsourced storage

Author

Yong YU
Yannan LI
Bo YANG
Willy SUSILO
Guomin YANG, Singapore Management UniversityFollow
Jian BAI

Publication Type

Journal Article

Version

publishedVersion

Publication Date

4-2020

Abstract

Outsourced storage such as cloud storage can significantly reduce the burden of data management of data owners. Despite of a long list of merits of cloud storage, it triggers many security risks at the same time. Data integrity, one of the most burning challenges in secure cloud storage, is a fundamental and pivotal element in outsourcing services. Outsourced data auditing protocols enable a verifier to efficiently check the integrity of the outsourced files without downloading the entire file from the cloud, which can dramatically reduce the communication overhead between the cloud server and the verifier. Existing protocols are mostly based on public key infrastructure or an exact identity, which lacks flexibility of key management. In this paper, we seek to address the complex key management challenge in cloud data integrity checking by introducing attribute-based cloud data auditing, where users can upload files to cloud through some customized attribute set and specify some designated auditor set to check the integrity of the outsourced data. We formalize the system model and the security model for this new primitive, and describe a concrete construction of attribute-based cloud data integrity auditing protocol. The new protocol offers desirable properties namely attribute privacy-preserving and collusion-resistance. We prove soundness of our protocol based on the computational Diffie-Hellman assumption and the discrete logarithm assumption. Finally, we develop a prototype of the protocol which demonstrates the practicality of the protocol.

Keywords

Cloud storage, data integrity, attribute-based cryptography, threshold secret sharing

Discipline

Data Storage Systems | Information Security

Research Areas

Information Systems and Management

Publication

IEEE Transactions on Emerging Topics in Computing

Volume

8

Issue

2

First Page

377

Last Page

390

ISSN

2168-6750

Identifier

10.1109/TETC.2017.2759329

Publisher

Institute of Electrical and Electronics Engineers

Citation

YU, Yong; LI, Yannan; YANG, Bo; SUSILO, Willy; YANG, Guomin; and BAI, Jian. Attribute-based cloud data integrity auditing for secure outsourced storage. (2020). IEEE Transactions on Emerging Topics in Computing. 8, (2), 377-390.
Available at: https://ink.library.smu.edu.sg/sis_research/7289

Creative Commons License

This work is licensed under a Creative Commons Attribution-NonCommercial-No Derivative Works 4.0 International License.

Additional URL

http://doi.org/10.1109/TETC.2017.2759329