摘要
为解决现有可证明数据持有(PDP)协议只适用于单云存储服务器且过度依赖公钥基础设施的问题,提出一种新的基于身份的多云多副本PDP协议。该协议采用身份加密来简化证书管理,并设计双层默克尔哈希树作为新的安全数据结构,以维护多副本的新鲜性和一致性。安全性分析和实验结果均验证了该协议具备安全性和高效性,能够在多个云存储服务器上实现多副本完整性审计,并在标签生成、证据生成和证据验证3个阶段的效率上明显优于对比算法。
To solve the problems of existing provable data possession(PDP)protocols only applicable to single cloud storage servers and over-reliance on public key infrastructure,a new identity-based multi-cloud multi-replica PDP protocol is proposed.This protocol adopts identity encryption to simplify certificate management,and designs a double-layer Merkle hash tree as a new secure data structure to maintain the freshness and consistency of multi-replica.Security analysis and experimental results verify the security and efficiency of this protocol,which can achieve multi-replica integrity auditing on multiple cloud storage servers,and significantly outperform the efficiency of comparison algorithms in the three stages of tag generation,evidence generation,and evidence verification.
作者
张逢
文斌
闫一非
曾昭武
周伟
ZHANG Feng;WEN Bin;YAN Yi-fei;ZENG Zhao-wu;ZHOU Wei(School of Information Science and Technology,Hainan Normal University,Haikou 571158;Cloud Computing and Big Data Research Center,Hainan Normal University,Haikou 571158;Key Laboratory of Data Science and Smart Education,Ministry of Education(Hainan Normal University),Haikou 571158,China)
出处
《计算机工程与科学》
CSCD
北大核心
2024年第3期453-462,共10页
Computer Engineering & Science
基金
国家自然科学基金(62362029)
海南省自然科学基金(623RC485)
海南省研究生创新科研课题(Qhys2022-266)。
关键词
云存储
数据完整性审计
多云服务器
多副本
身份加密
cloud storage
data integrity auditing
multi-cloud servers
multi-copy
identity encryption