Article: A new public remote integrity checking scheme with user and data privacy Journal: International Journal of Applied Cryptography (IJACT) 2017 Vol.3 No.3 pp.196 - 209 Abstract: With cloud storage, users can store their data files on a remote cloud server with a high quality on-demand cloud service and are able to share their data with other users. Since cloud servers usually are not regarded as fully trusted and the cloud data can be shared amongst users, the integrity checking of the remote files has become an important issue. A number of remote data integrity checking protocols have been proposed in the literature to allow public auditing of cloud data by a third party auditor (TPA). However, user privacy is not taken into account in most of the existing protocols. We believe that preserving the anonymity (i.e., identity privacy) of the data owner is also very important in many applications. In this paper, we propose a new remote integrity checking scheme which allows the cloud server to protect the identity information of the data owner against the TPA. We also define a formal security model to capture the requirement of user anonymity, and prove the anonymity of the proposed scheme. Moreover, we improve the existing security model for data privacy against the TPA, and show that an extended version of our protocol is secure under the strengthened security model. Inderscience Publishers - linking academia, business and industry through research

Title: A new public remote integrity checking scheme with user and data privacy

Authors: Yiteng Feng; Guomin Yang; Joseph K. Liu

Addresses: Centre for Computer and Information Security Research, School of Computing and Information Technology, University of Wollongong, Australia ' Centre for Computer and Information Security Research, School of Computing and Information Technology, University of Wollongong, Australia ' Faculty of Information Technology Monash University, Australia

Abstract: With cloud storage, users can store their data files on a remote cloud server with a high quality on-demand cloud service and are able to share their data with other users. Since cloud servers usually are not regarded as fully trusted and the cloud data can be shared amongst users, the integrity checking of the remote files has become an important issue. A number of remote data integrity checking protocols have been proposed in the literature to allow public auditing of cloud data by a third party auditor (TPA). However, user privacy is not taken into account in most of the existing protocols. We believe that preserving the anonymity (i.e., identity privacy) of the data owner is also very important in many applications. In this paper, we propose a new remote integrity checking scheme which allows the cloud server to protect the identity information of the data owner against the TPA. We also define a formal security model to capture the requirement of user anonymity, and prove the anonymity of the proposed scheme. Moreover, we improve the existing security model for data privacy against the TPA, and show that an extended version of our protocol is secure under the strengthened security model.

Keywords: data integrity; data privacy; identity privacy; public auditing; cloud storage.

DOI: 10.1504/IJACT.2017.086232

International Journal of Applied Cryptography, 2017 Vol.3 No.3, pp.196 - 209

Accepted: 30 Mar 2017
Published online: 03 Sep 2017 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article

Title: A new public remote integrity checking scheme with user and data privacy

Keep up-to-date