Skip to main content
Springer Nature Link
Log in

Blockchain-Based Efficient Public Integrity Auditing for Cloud Storage Against Malicious Auditors

  • Conference paper
  • First Online:
Information Security and Cryptology (Inscrypt 2020)

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 12612))

Included in the following conference series:

Abstract

Public integrity auditing enables a user to delegate a third-party auditor (TPA) to periodically audit the integrity of the outsourced data. Whereas, the security of public auditing schemes relies on the trustworthiness of TPA: once TPA misbehaves, the data integrity auditing would be invalidated. In this paper, we propose a blockchain-based efficient public integrity auditing scheme to resist misbehaved TPA, where the user is required to check the behaviors of TPA in a much longer period compared with that of the data integrity auditing performed by TPA. To free users from heavy computation costs during the checking, our scheme uses two key techniques. We first design a smart contract to (1) enable TPA to record each auditing entry (which records the information about each auditing task) into the blockchain and (2) ensure the validity of each recorded entry. Then, we propose an auditing record chain built on the Ethereum blockchain to link all auditing entries corresponding to the same data in the chronological order. By doing so, the user only needs to check the last auditing entry generated by TPA to verify the trustworthiness of TPA (i.e., whether TPA has correctly performed the prescribed auditing tasks). Compared with existing schemes, where the user has to check multiple entries one by one, our scheme achieves the same security guarantee with constant and low costs in terms of communication and computation.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Subscribe and save

Springer+ Basic
$34.99 /Month
  • Get 10 units per month
  • Download Article/Chapter or eBook
  • 1 Unit = 1 Article or 1 Chapter
  • Cancel anytime
Subscribe now

Buy Now

Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Similar content being viewed by others

References

  1. Li, S., Xu, C., Zhang, Y.: CSED: client-side encrypted deduplication scheme based on proofs of ownership for cloud storage. J. Inf. Security Appl. 46, 250–258 (2019)

    Google Scholar 

  2. Zhang, X., Zhao, J., Xu, C., Li, H., Wang, H., Zhang, Y.: CIPPPA: conditional identity privacy-preserving public auditing for cloud-based wbans against malicious auditors, IEEE Trans. Cloud Comput. 1–14, (2019), to appear. https://doi.org/10.1109/TCC.2019.2927219

  3. Yang, A., Xu, J., Weng, J., Zhou, J., Wong, D.S.: Lightweight and privacy-preserving delegatable proofs of storage with data dynamics in cloud storage. IEEE Trans. Cloud Comput. 1–14 (2018). https://doi.org/10.1109/TCC.2018.2851256

  4. Zhang, X., Xu, C., Wang, H., Zhang, Y., Wang, S.: FS-PEKS: lattice-based forward secure public-key encryption with keyword search for cloud-assisted industrial internet of things, IEEE Trans. Dependable and Secure Comput. 1–15 (2019). https://doi.org/10.1109/TDSC.2019.2914117

  5. Wang, C., Chow, S.S., Wang, Q., Ren, K., Lou, W.: Privacy-preserving public auditing for secure cloud storage. IEEE Trans. Comput. 62(2), 362–375 (2011)

    Article  MathSciNet  Google Scholar 

  6. Zhang, Y., Xu, C., Lin, X., Shen, X.S.: Blockchain-based public integrity verification for cloud storage against procrastinating auditors, IEEE Trans. Cloud Comput. 1–15 (2019). https://doi.org/10.1109/TCC.2019.2908400

  7. Shacham, H., Waters, B.: Compact proofs of retrievability. In: Pieprzyk, J. (ed.) ASIACRYPT 2008. LNCS, vol. 5350, pp. 90–107. Springer, Heidelberg (2008). https://doi.org/10.1007/978-3-540-89255-7_7

    Chapter  Google Scholar 

  8. Ateniese, G., et al.: Provable data possession at untrusted stores. In: Proceedings of CCS, pp. 598–609 (2007)

    Google Scholar 

  9. Wang, C., Wang, Q., Ren, K., Lou, W.: Privacy-preserving public auditing for data storage security in cloud computing. In: Proceedings of INFOCOM. IEEE, pp. 1–9 (2010)

    Google Scholar 

  10. Boneh, D., Lynn, B., Shacham, H.: Short signatures from the weil pairing, In: Proceedings of ASIACRYPT, pp. 514–532 (2001)

    Google Scholar 

  11. Zhang, Y., Xu, C., Yu, S., Li, H., Zhang, X.: SCLPV: secure certificateless public verification for cloud-based cyber-physical-social systems against malicious auditors. IEEE Trans. Comput. Social Syst. 2(4), 159–170 (2015)

    Article  Google Scholar 

  12. Armknecht, F., Bohli, J.-M., Karame, G.O., Liu, Z., Reuter, C.A.: Outsourced proofs of retrievability. In: Proceedings of CCS. ACM, pp. 831–843 (2014)

    Google Scholar 

  13. Zhang, Y., Lin, X., Xu, C.: Blockchain-based secure data provenance for cloud storage. In: Proceedings of ICICS, pp. 3–19 (2018)

    Google Scholar 

  14. Katz, J., Lindell, Y.: Introduction to modern cryptography. Chapman and Hall/CRC (2014)

    Google Scholar 

  15. Nakamoto, S.: Bitcoin: A peer-to-peer electronic cash system. Technical Report, Manubot (2019)

    Google Scholar 

  16. Swan, M.: Blockchain: Blueprint for a new economy. OReilly Media Inc. (2015)

    Google Scholar 

  17. Underwood, S.: Blockchain beyond bitcoin (2016)

    Google Scholar 

  18. Wood, G.: Ethereum: a secure decentralised generalised transaction ledger. Ethereum Project Yellow Paper 151(2014), 1–32 (2014)

    Google Scholar 

  19. Gencer, A.E., Basu, S., Eyal, I., van Renesse, R., Sirer, E.G.: Decentralization in bitcoin and ethereum networks. In: Meiklejohn, S., Sako, K. (eds.) FC 2018. LNCS, vol. 10957, pp. 439–457. Springer, Heidelberg (2018). https://doi.org/10.1007/978-3-662-58387-6_24

    Chapter  Google Scholar 

  20. Buterin, V.: A next-generation smart contract and decentralized application platform, White Paper, vol. 3, no. 37 (2014)

    Google Scholar 

  21. Li, M., Zhu, L., Lin, X.: Efficient and privacy-preserving carpooling using blockchain-assisted vehicular fog computing. IEEE Internet of Things J. 6(3), 4573–4584 (2018)

    Article  Google Scholar 

  22. Li, M., Weng, J., Yang, A., Liu, J.-N., Lin, X.: Towards blockchain-based fair and anonymous ad dissemination in vehicular networks. IEEE Trans. Vehicular Technol. 1–12 (2019) to appear. https://doi.org/10.1109/TVT.2019.2940148

  23. Li, M., Weng, J., Yang, A., Lu, W., Zhang, Y., Hou, L., Liu, J.-N., Xiang, Y., Deng, R.H.: Crowdbc: a blockchain-based decentralized framework for crowdsourcing. IEEE Trans. Parallel Distrib. Syst. 30(6), 1251–1266 (2018)

    Article  Google Scholar 

  24. Rizzo, L.: Effective erasure codes for reliable computer communication protocols. ACM SIGCOMM Comput. Commun. Rev. 27(2), 24–36 (1997)

    Article  Google Scholar 

  25. Yuan, H., Chen, X., Wang, J., Yuan, J., Yan, H., Susilo, W.: Blockchain-based public auditing and secure deduplication with fair arbitration. Inf. Sci. 1–36 (2020), to appear. https://doi.org/10.1016/j.ins.2020.07.005

  26. Xu, Y., Ren, J., Zhang, Y., Zhang, C., Shen, B., Zhang, Y.: Blockchain empowered arbitrable data auditing scheme for network storage as a service. IEEE Trans. Services Comput. 13(2), 289–300 (2019)

    Google Scholar 

  27. Staffie: How can we verify bgls aggregate signatures in solidity (2018). https://ethereum.stackexchange.com/questions/51421/how-can-we-verify-bgls-aggregate-signatures-in-solidity

  28. https://gist.github.com/BjornvdLaan/ca6dd4e3993e1ef392f363ec27fe74c4

Download references

Acknowledgements

This work is supported by the National Key R&D Program of China under Grant 2017YFB0802000, the National Nature Science Foundation of China under Grant 61872060, 61370203, 62002050, 62072215, 61702222, the Chengdu Innovation Project 2019-YF05-02029-GX, the New Generation Artificial Intelligence Science and Technology Major Project of Sichuan Province 2019YFG0400, and the Key Laboratory of Dynamic Cognitive System of Electromagnetic Spectrum Space, Ministry of Industry and Information Technology, Nanjing University of Aeronautics and Astronautics under Grant KF20202110.

Author information

Authors and Affiliations

  1. School of Computer Science and Engineering, University of Electronic Science and Technology of China, Chengdu, China

    Shanshan Li, Chunxiang Xu, Yuan Zhang & Xinsheng Wen

  2. College of Cyber Security, Jinan University, Guangzhou, China

    Anjia Yang

  3. Department of Mathematics, Hangzhou Normal University, Hangzhou, China

    Kefei Chen

  4. Key Laboratory of Dynamic Cognitive System of Electromagnetic Spectrum Space, Ministry of Industry and Information Technology, Nanjing University of Aeronautics and Astronautics, Nanjing, China

    Yuan Zhang

Authors
  1. Shanshan Li
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Chunxiang Xu
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Yuan Zhang
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Anjia Yang
    View author publications

    You can also search for this author in PubMed Google Scholar

  5. Xinsheng Wen
    View author publications

    You can also search for this author in PubMed Google Scholar

  6. Kefei Chen
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Yuan Zhang .

Editor information

Editors and Affiliations

  1. Jinan University, Guangzhou, China

    Yongdong Wu

  2. Computer Science Department, Columbia University, New York, NY, USA

    Moti Yung

Rights and permissions

Reprints and permissions

Copyright information

© 2021 Springer Nature Switzerland AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Li, S., Xu, C., Zhang, Y., Yang, A., Wen, X., Chen, K. (2021). Blockchain-Based Efficient Public Integrity Auditing for Cloud Storage Against Malicious Auditors. In: Wu, Y., Yung, M. (eds) Information Security and Cryptology. Inscrypt 2020. Lecture Notes in Computer Science(), vol 12612. Springer, Cham. https://doi.org/10.1007/978-3-030-71852-7_14

Download citation

  • DOI: https://doi.org/10.1007/978-3-030-71852-7_14

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-030-71851-0

  • Online ISBN: 978-3-030-71852-7

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation