摘要
为检查云存储服务中提供商是否按服务等级协议的约定完整地存储了多个文件副本,提出了一种基于同态Hash的动态多副本持有性证明方案hHash-MRPDP。一方面,hHash-MRPDP通过对文件加密和对密文进行掩码运算来生成多个副本;另一方面,利用同态Hash对密文的每个数据块计算一个验证标签,从而可以根据Hash的同态性质对所有副本进行批量持有性检查。在实现对多副本批量持有性检查的同时,hHash-MRPDP还具有能定位及修复错误块、可扩展以支持数据更新、能抵抗替换、重放和伪造攻击,以及低计算、存储和通信负载等特点。
This paper proposes a dynamic multiple-replica provable data possession scheme e'alled hHash-MRPDP to check whether CSP (cloud service provider) absolutely stores multiple replicas according to SLA (service level agreement). First, hHash-MRPDP generates multiple replicas by encrypting the file and masking the cipher-text, and uses homomorphic Hash to compute a tag for each block of the cipher-text, so that, hHash-MRPDP can execute batch possession verifieation to all replicas by using the homomorphic Hash. Except for batch possession verification to all replicas, hHash-MRPDP can also locate and recover the corrupted blocks, support data dynamic extensions, resist replacement attacks, replay and forge attacks, and needs reasonably low computation, storage and communication cost.
出处
《信息工程大学学报》
2014年第4期385-392,共8页
Journal of Information Engineering University
基金
国家973计划资助项目(2012CB315901)
关键词
云存储
持有性证明
同态哈希
多副本存储
数据动态性
cloud storage
provable data possession
homomorphic hash
multiple replica storage
data dynamics