基于代理重签名的支持用户可撤销的云存储数据公共审计方案
发布时间:2018-10-15 19:09
【摘要】:针对用户动态可撤销需要新的数据管理员对其前任所管理的数据进行完整性验证的问题,基于单向代理重签名技术提出了具有隐私保护的支持用户可撤销的云存储数据公共审计方案。首先,该方案中所采用的单向代理重签名算法,其代理重签名密钥由当前用户私钥结合已撤销用户公钥生成,不存在私钥泄露问题,能够安全实现数据所有权的转移;其次,该方案证明了恶意的云服务器不能产生伪造的审计证明响应信息来欺骗第三方审计者(TPA)通过审计验证过程;更进一步,该方案采用了随机掩饰码技术,能够有效防止好奇的第三方审计者恢复原始数据块。和Panda方案相比较,所提方案在增加抗合谋攻击功能的基础上,其审计过程中通信开销与计算代价仍全部低于Panda方案。
[Abstract]:For users who dynamically undo the problem of requiring a new data administrator to verify the integrity of the data managed by his predecessor, Based on unidirectional proxy resignature technology, a public audit scheme with privacy protection is proposed to support user cancelable cloud storage data. First of all, the one-way proxy resignature algorithm is used in this scheme, whose proxy resignature key is generated by the current user's private key combined with the revoked user's public key, so there is no problem of private key leakage, so the transfer of data ownership can be realized safely. The scheme proves that the malicious cloud server can not produce false audit certificate response information to deceive the third-party auditor (TPA) to pass the audit verification process. Can effectively prevent curious third-party auditors from restoring raw data blocks. Compared with the Panda scheme, the communication overhead and computational cost of the proposed scheme are all lower than that of the Panda scheme.
【作者单位】: 电子科技大学计算机科学与工程学院;成都军区联勤部后勤信息中心;成都军区总医院信息科;
【基金】:国家自然科学基金重点资助项目(61370203) 四川省科技支撑计划项目(2012SZ0162)~~
【分类号】:TP309;TP333
,
本文编号:2273545
[Abstract]:For users who dynamically undo the problem of requiring a new data administrator to verify the integrity of the data managed by his predecessor, Based on unidirectional proxy resignature technology, a public audit scheme with privacy protection is proposed to support user cancelable cloud storage data. First of all, the one-way proxy resignature algorithm is used in this scheme, whose proxy resignature key is generated by the current user's private key combined with the revoked user's public key, so there is no problem of private key leakage, so the transfer of data ownership can be realized safely. The scheme proves that the malicious cloud server can not produce false audit certificate response information to deceive the third-party auditor (TPA) to pass the audit verification process. Can effectively prevent curious third-party auditors from restoring raw data blocks. Compared with the Panda scheme, the communication overhead and computational cost of the proposed scheme are all lower than that of the Panda scheme.
【作者单位】: 电子科技大学计算机科学与工程学院;成都军区联勤部后勤信息中心;成都军区总医院信息科;
【基金】:国家自然科学基金重点资助项目(61370203) 四川省科技支撑计划项目(2012SZ0162)~~
【分类号】:TP309;TP333
,
本文编号:2273545
本文链接:https://www.wllwen.com/kejilunwen/jisuanjikexuelunwen/2273545.html
