Towards Usable Cloud Storage Auditing

Fei Chen; Fengming Meng; Tao Xiang; Hua Dai; Jianqiang Li; Jing Qin

doi:10.1109/TPDS.2020.2998462

Towards Usable Cloud Storage Auditing

Fei Chen, Fengming Meng, Tao Xiang, Hua Dai, Jianqiang Li, Jing Qin

Research output: Journal article publication › Journal article › Academic research › peer-review

18 Citations (Scopus)

Abstract

Cloud storage security has gained considerable research efforts with the wide adoption of cloud computing. As a security mechanism, researchers have been investigating cloud storage auditing schemes that enable a user to verify whether the cloud keeps the user's outsourced data undamaged. However, existing schemes have usability issues in compatibility with existing real world cloud storage applications, error-tolerance, and efficiency. To mitigate this usability gap, this article proposes a new general cloud storage auditing scheme that is more usable. The proposed scheme uses the idea of integrating linear error correcting codes and linear homomorphic authentication schemes together. This integration uses only one additional block to achieve error tolerance and authentication simultaneously. To demonstrate the power of the general construction, we also propose one detailed scheme based on the proposed general construction using the Reed Solomon code and the universal hash based MAC authentication scheme, both of which are implemented over the computation-efficient Galois field GF(28) GF (28). We also show that the proposed scheme is secure under the standard definition. Moreover, we implemented and open-sourced the proposed scheme. Experimental results show that the proposed scheme is orders of magnitude more efficient than the state-of-the-art scheme.

Original language	English
Article number	9103614
Pages (from-to)	2605-2617
Number of pages	13
Journal	IEEE Transactions on Parallel and Distributed Systems
Volume	31
Issue number	11
DOIs	https://doi.org/10.1109/TPDS.2020.2998462
Publication status	Published - 1 Nov 2020

Keywords

Cloud storage
error correction code
homomorphic authentication
integrity checking
usability

ASJC Scopus subject areas

Signal Processing
Hardware and Architecture
Computational Theory and Mathematics

More information

10.1109/TPDS.2020.2998462

Cite this

@article{5bbd87f1b7534e41a5841b74ba1800d2,

title = "Towards Usable Cloud Storage Auditing",

abstract = "Cloud storage security has gained considerable research efforts with the wide adoption of cloud computing. As a security mechanism, researchers have been investigating cloud storage auditing schemes that enable a user to verify whether the cloud keeps the user's outsourced data undamaged. However, existing schemes have usability issues in compatibility with existing real world cloud storage applications, error-tolerance, and efficiency. To mitigate this usability gap, this article proposes a new general cloud storage auditing scheme that is more usable. The proposed scheme uses the idea of integrating linear error correcting codes and linear homomorphic authentication schemes together. This integration uses only one additional block to achieve error tolerance and authentication simultaneously. To demonstrate the power of the general construction, we also propose one detailed scheme based on the proposed general construction using the Reed Solomon code and the universal hash based MAC authentication scheme, both of which are implemented over the computation-efficient Galois field GF(28) GF (28). We also show that the proposed scheme is secure under the standard definition. Moreover, we implemented and open-sourced the proposed scheme. Experimental results show that the proposed scheme is orders of magnitude more efficient than the state-of-the-art scheme.",

keywords = "Cloud storage, error correction code, homomorphic authentication, integrity checking, usability",

author = "Fei Chen and Fengming Meng and Tao Xiang and Hua Dai and Jianqiang Li and Jing Qin",

note = "Funding Information: This work was partially supported by National Natural Science Foundation of China under Grant No. (61872243, 61872197, 61672118, 61672358, U1713212), Guangdong Basic and Applied Basic Research Foundation (2020A151501489), the Science and Technology Plan Projects of Shenzhen (JCYJ20180305124126741), a project from Jiangsu Key Laboratory of Big Data Security &Intelligent Processing NJUPT, and a Grant from the Hong Kong Polytechnic University (Project No. YBZE). Funding Information: This work was partially supported by National Natural Science Foundation of China under Grant No. (61872243, 61872197, 61672118, 61672358, U1713212), Guangdong Basic and Applied Basic Research Foundation (2020A151501489), the Science and Technology Plan Projects of Shenzhen (JCYJ20180305124126741), a project from Jiangsu Key Laboratory of Big Data Security & Intelligent Processing NJUPT, and a Grant from the Hong Kong Polytechnic University (Project No. YBZE). Publisher Copyright: {\textcopyright} 1990-2012 IEEE.",

year = "2020",

month = nov,

day = "1",

doi = "10.1109/TPDS.2020.2998462",

language = "English",

volume = "31",

pages = "2605--2617",

journal = "IEEE Transactions on Parallel and Distributed Systems",

issn = "1045-9219",

publisher = "IEEE Computer Society",

number = "11",

}

TY - JOUR

T1 - Towards Usable Cloud Storage Auditing

AU - Chen, Fei

AU - Meng, Fengming

AU - Xiang, Tao

AU - Dai, Hua

AU - Li, Jianqiang

AU - Qin, Jing

N1 - Funding Information: This work was partially supported by National Natural Science Foundation of China under Grant No. (61872243, 61872197, 61672118, 61672358, U1713212), Guangdong Basic and Applied Basic Research Foundation (2020A151501489), the Science and Technology Plan Projects of Shenzhen (JCYJ20180305124126741), a project from Jiangsu Key Laboratory of Big Data Security &Intelligent Processing NJUPT, and a Grant from the Hong Kong Polytechnic University (Project No. YBZE). Funding Information: This work was partially supported by National Natural Science Foundation of China under Grant No. (61872243, 61872197, 61672118, 61672358, U1713212), Guangdong Basic and Applied Basic Research Foundation (2020A151501489), the Science and Technology Plan Projects of Shenzhen (JCYJ20180305124126741), a project from Jiangsu Key Laboratory of Big Data Security & Intelligent Processing NJUPT, and a Grant from the Hong Kong Polytechnic University (Project No. YBZE). Publisher Copyright: © 1990-2012 IEEE.

PY - 2020/11/1

Y1 - 2020/11/1

N2 - Cloud storage security has gained considerable research efforts with the wide adoption of cloud computing. As a security mechanism, researchers have been investigating cloud storage auditing schemes that enable a user to verify whether the cloud keeps the user's outsourced data undamaged. However, existing schemes have usability issues in compatibility with existing real world cloud storage applications, error-tolerance, and efficiency. To mitigate this usability gap, this article proposes a new general cloud storage auditing scheme that is more usable. The proposed scheme uses the idea of integrating linear error correcting codes and linear homomorphic authentication schemes together. This integration uses only one additional block to achieve error tolerance and authentication simultaneously. To demonstrate the power of the general construction, we also propose one detailed scheme based on the proposed general construction using the Reed Solomon code and the universal hash based MAC authentication scheme, both of which are implemented over the computation-efficient Galois field GF(28) GF (28). We also show that the proposed scheme is secure under the standard definition. Moreover, we implemented and open-sourced the proposed scheme. Experimental results show that the proposed scheme is orders of magnitude more efficient than the state-of-the-art scheme.

AB - Cloud storage security has gained considerable research efforts with the wide adoption of cloud computing. As a security mechanism, researchers have been investigating cloud storage auditing schemes that enable a user to verify whether the cloud keeps the user's outsourced data undamaged. However, existing schemes have usability issues in compatibility with existing real world cloud storage applications, error-tolerance, and efficiency. To mitigate this usability gap, this article proposes a new general cloud storage auditing scheme that is more usable. The proposed scheme uses the idea of integrating linear error correcting codes and linear homomorphic authentication schemes together. This integration uses only one additional block to achieve error tolerance and authentication simultaneously. To demonstrate the power of the general construction, we also propose one detailed scheme based on the proposed general construction using the Reed Solomon code and the universal hash based MAC authentication scheme, both of which are implemented over the computation-efficient Galois field GF(28) GF (28). We also show that the proposed scheme is secure under the standard definition. Moreover, we implemented and open-sourced the proposed scheme. Experimental results show that the proposed scheme is orders of magnitude more efficient than the state-of-the-art scheme.

KW - Cloud storage

KW - error correction code

KW - homomorphic authentication

KW - integrity checking

KW - usability

UR - http://www.scopus.com/inward/record.url?scp=85087199443&partnerID=8YFLogxK

U2 - 10.1109/TPDS.2020.2998462

DO - 10.1109/TPDS.2020.2998462

M3 - Journal article

AN - SCOPUS:85087199443

SN - 1045-9219

VL - 31

SP - 2605

EP - 2617

JO - IEEE Transactions on Parallel and Distributed Systems

JF - IEEE Transactions on Parallel and Distributed Systems

IS - 11

M1 - 9103614

ER -

Towards Usable Cloud Storage Auditing

Abstract

Keywords

ASJC Scopus subject areas

More information

Other files and links

Fingerprint

Cite this