Open AccessPosted Content
PORs: Proofs of Retrievability for Large Files
Ari Juels,Burton S. Kaliski +1 more
TLDR
This paper defines and explores proofs of retrievability (PORs), a POR scheme that enables an archive or back-up service to produce a concise proof that a user can retrieve a target file F, that is, that the archive retains and reliably transmits file data sufficient for the user to recover F in its entirety.Abstract:
In this paper, we define and explore proofs of retrievability (PORs). A POR scheme enables an archive or back-up service (prover) to produce a concise proof that a user (verifier) can retrieve a target file F, that is, that the archive retains and reliably transmits file data sufficient for the user to recover F in its entirety.A POR may be viewed as a kind of cryptographic proof of knowledge (POK), but one specially designed to handle a large file (or bitstring) F. We explore POR protocols here in which the communication costs, number of memory accesses for the prover, and storage requirements of the user (verifier) are small parameters essentially independent of the length of F. In addition to proposing new, practical POR constructions, we explore implementation considerations and optimizations that bear on previously explored, related schemes.In a POR, unlike a POK, neither the prover nor the verifier need actually have knowledge of F. PORs give rise to a new and unusual security definition whose formulation is another contribution of our work.We view PORs as an important tool for semi-trusted online archives. Existing cryptographic techniques help users ensure the privacy and integrity of files they retrieve. It is also natural, however, for users to want to verify that archives do not delete or modify files prior to retrieval. The goal of a POR is to accomplish these checks without users having to download the files themselves. A POR can also provide quality-of-service guarantees, i.e., show that a file is retrievable within a certain time bound.read more
Citations
More filters
Journal ArticleDOI
Review: A survey on security issues in service delivery models of cloud computing
S. Subashini,V. Kavitha +1 more
TL;DR: A survey of the different security risks that pose a threat to the cloud is presented and a new model targeting at improving features of an existing model must not risk or threaten other important features of the current model.
Posted Content
Provable Data Possession at Untrusted Stores.
Giuseppe Ateniese,Randal Burns,Reza Curtmola,Joseph Herring,Lea Kissner,Zachary N. J. Peterson,Dawn Song +6 more
TL;DR: Ateniese et al. as discussed by the authors introduced the provable data possession (PDP) model, which allows a client that has stored data at an untrusted server to verify that the server possesses the original data without retrieving it.
Book ChapterDOI
The knowledge complexity of interactive proof-systems
TL;DR: Permission to copy without fee all or part of this material is granted provided that the copies arc not made or distributed for direct commercial advantage.
Journal ArticleDOI
Enabling Public Auditability and Data Dynamics for Storage Security in Cloud Computing
TL;DR: To achieve efficient data dynamics, the existing proof of storage models are improved by manipulating the classic Merkle Hash Tree construction for block tag authentication, and an elegant verification scheme is constructed for the seamless integration of these two salient features in the protocol design.
Proceedings ArticleDOI
Privacy-Preserving Public Auditing for Data Storage Security in Cloud Computing
TL;DR: This paper utilize and uniquely combine the public key based homomorphic authenticator with random masking to achieve the privacy-preserving public cloud data auditing system, which meets all above requirements.
References
More filters
Journal ArticleDOI
Efficient audit protocol supporting virtual nodes in cloud storage
TL;DR: A novel public audit scheme is proposed, which employs chameleon authentication tree in the third‐party audit model to significantly reduce the huge computation cost of data dynamic operation and can effectively prevent the fraud of dishonest cloud service provider.
Journal ArticleDOI
Efficient TPA-based auditing scheme for secure cloud storage
Bilin Shao,Yanyan Ji +1 more
TL;DR: A new auditing protocol is proposed, which is almost as efficient as a homomorphic-MAC-based protocol proposed by Zhang et al. recently and is suitable for outsourcing to TPA because it does not compromise the privacy of users’ signing key.
Posted Content
Dynamic proofs of retrievability with low server storage
Gaspard Anthoine,Jean-Guillaume Dumas,Michael Hanling,Mélanie de Jonghe,Aude Maignan,Clément Pernet,Daniel S. Roche +6 more
TL;DR: This work proposes new, simple protocols for dynamic PoR that are designed for practical efficiency, trading decreased persistent storage for increased server computation, and shows in fact that this tradeoff is inherent via a lower bound proof of time-space for any PoR scheme.
Book ChapterDOI
Data Integrity and Security in Distributed Cloud Computing: A Review
TL;DR: This review paper gives a brief view of current data integrity and security issues in the distributed cloud computing environment and highlights nearly solutions for some of the current cloud security risks and challenges by summarizing the key schemes of the privacy preserving public auditing, particularly access control, attribute-based access control and public key encryption.
Proceedings ArticleDOI
Towards remote security monitoring in cloud services utilizing security metrics
Reijo Savola,Jukka Ahola +1 more
TL;DR: This work proposes a metrics based approach for remote security correctness monitoring in the Cloud and discusses how risk-driven security metrics modeling based on the decomposition of security objectives is used to manage monitoring activities.