Enabling Cloud Storage Auditing With Key-Exposure Resistance

Research output: Journal Publications and Reviews (RGC: 21, 22, 62)21_Publication in refereed journalpeer-review

138 Scopus Citations
View graph of relations

Author(s)

Related Research Unit(s)

Detail(s)

Original languageEnglish
Article number7031921
Pages (from-to)1167-1179
Journal / PublicationIEEE Transactions on Information Forensics and Security
Volume10
Issue number6
Online published5 Feb 2015
Publication statusPublished - Jun 2015

Abstract

Cloud storage auditing is viewed as an important service to verify the integrity of the data in public cloud. Current auditing protocols are all based on the assumption that the client's secret key for auditing is absolutely secure. However, such assumption may not always be held, due to the possibly weak sense of security and/or low security settings at the client. If such a secret key for auditing is exposed, most of the current auditing protocols would inevitably become unable to work. In this paper, we focus on this new aspect of cloud storage auditing. We investigate how to reduce the damage of the client's key exposure in cloud storage auditing, and give the first practical solution for this new problem setting. We formalize the definition and the security model of auditing protocol with key-exposure resilience and propose such a protocol. In our design, we employ the binary tree structure and the preorder traversal technique to update the secret keys for the client. We also develop a novel authenticator construction to support the forward security and the property of blockless verifiability. The security proof and the performance analysis show that our proposed protocol is secure and efficient.

Research Area(s)

  • cloud computation, cloud storage auditing, Data storage, homomorphic linear authenticator, key-exposure resistance

Citation Format(s)

Enabling Cloud Storage Auditing With Key-Exposure Resistance. / Yu, Jia; Ren, Kui; Wang, Cong; Varadharajan, Vijay.

In: IEEE Transactions on Information Forensics and Security, Vol. 10, No. 6, 7031921, 06.2015, p. 1167-1179.

Research output: Journal Publications and Reviews (RGC: 21, 22, 62)21_Publication in refereed journalpeer-review