Secure and privacy-preserving data storage service in public cloud

Jisuanji Yanjiu yu Fazhan/Computer Research and Development

Volumn 51, Issue 7, 2014, Pages 1397-1409

  Li, Hui ^a   Sun, Wenhai ^a   Li, Fenghua ^b   Wang, Boyang ^a  

^a XIDIAN UNIVERSITY   (China)

^b University of Chinese Academy of Sciences   (China)

Author keywords

Attribute based encryption; Cloud storage; Data integrity auditing; Encrypted data search; Secure data deletion

Indexed keywords

ACCESS CONTROL; CRYPTOGRAPHY; DATA PRIVACY; DIGITAL STORAGE; INFRASTRUCTURE AS A SERVICE (IAAS); UBIQUITOUS COMPUTING;

ATTRIBUTE-BASED ENCRYPTIONS; CLOUD STORAGES; DATA INTEGRITY; ENCRYPTED DATA; SECURE DATA;

STORAGE AS A SERVICE (STAAS);

EID: 84907737354     PISSN: 10001239     EISSN: None     Source Type: Journal    
DOI: 10.7544/issn1000-1239.2014.20140115     Document Type: Article

References (107)

1. Yun A, Shi C, Kim Y. On protecting integrity and confidentiality of cryptographic file system for outsourced storage [C] //Proc of ACM Workshop Cloud Computing Security (CCSW 2009). New York: ACM, 2009: 67-76
2. Rackspace. JungleDisk [EB/OL]. 2010 [2011-01-09]. http://www.jungledisk.com
3. Vrable M, Savage S, Voelker G M. Cumulus: Filesystem Backup to the cloud [J]. ACM Trans on Storage, 2009, 5 (4): 1-28
4. Cramer R, Shoup V. Design and analysis of practical public-key encryption schemes secure against adaptive chosen ciphertext attack [J]. SIAM Journal on Computing, 2004, 33 (1): 167-226
5. Hofheinz D, Eike K. Secure hybrid encryption from weakened key encapsulation [G] //LNCS 4622: Proc of CRYPTO 2007. Berlin: Springer, 2007: 553-571
6. Blaze M, Bleumer G, Strauss M. Divertible protocols and atomic proxy cryptography [G] //LNCS 1403: Proc of EUROCRYPT 1998. Berlin: Springer, 1998: 127-144
7. Ateniese G, Fu K, Green M, et al. Improved proxy re-encryption schemes with applications to secure distributed storage [J]. ACM Trans on Information and System Security, 2006, 9 (1): 1-30
8. Green M, Ateniese G. Identity-based proxy re-encryption [G] //LNCS 4521: Proc of the 5th Applied Cryptography and Network Security Conf. Berlin: Springer, 2007: 288-306
9. Hohenberger S, Rothblum G, Shelat A, et al. Securely obfuscating re-encryption [C] //Proc of the 4th Theory of Cryptography Conf. Berlin: Springer, 2007: 233-252
10. Canetti R, Hohenberger S. Chosen-ciphertext secure proxy re-encryption [C] //Proc of ACM CCS 2007. New York: ACM, 2007: 185-194
11. Weng J, Deng R, Ding X, et al. Conditional proxy re-encryption secure against chosen-ciphertext attack [C] //Proc of ASIACCS 2009. New York: ACM, 2009: 322-332
12. Libert B, Vergnaud D. Unidirectional chosen-ciphertext secure proxy re-encryption [G] //LNCS 4939: Proc of PKC 2008. Berlin: Springer, 2008: 360-379
13. Matsuda T, Nishimaki R, Tanaka K. CCA proxy re-encryption without bilinear maps in the standard model [C] //Proc of PKC 2010. Berlin: Springer, 2010: 261-278
14. Chow S, Weng J, Yang Y, et al. Efficient unidirectional proxy re-encryption [G] //LNCS 6055: Proc of Progress in Cryptology-AFRICACRYPT 2010. Berlin: Springer, 2010: 316-332
15. Wang Hongbing, Cao Zhenfu, Wang Licheng. Multi-use and unidirectional identity-based proxy re-encryption [J]. Information Sciences, 2010, 180 (20): 4042-4059
16. Xagawa K, Tanaka K. Proxy re-encryptions based on learning with errors [EB/OL]. 2009 [2010-12-03]. http://www.nishizeki.ecei.tohoku.ac.jp/LA2009/proceedings_winter/07.pdf
17. Fiat A, Naor M. Broadcast encryption [G] //LNCS 773: Proc of CRYPTO 1993. Berlin: Springer, 1993: 480-491
18. Naor D, Naor M, Lotspiech J. Revocation and tracing schemes for stateless receivers [G] //LNCS 2139: Proc of CRYPTO 2001. Berlin: Springer, 2001: 41-62
19. Halevy D, Shamir A. The LSD broadcast encryption scheme [G] //LNCS 2442: Proc of CRYPTO 2002. Berlin: Springer, 2002: 47-60
20. Goodrich M T, Sun J Z, Tamassia R. Efficient tree-based revocation in groups of low-state devices [G] //LNCS 3152: Proc of CRYPTO 2004. Berlin: Springer, 2004: 511-527
21. Naor M, Pinkas B. Efficient trace and revoke schemes [C] //Proc of Financial Cryptography (FC 2000). Berlin: Springer, 2000: 1-20
22. Delerabl'ee C, Paillier P, Pointcheval D. Fully collusion secure dynamic broadcast encryption with constant-size ciphertexts or decryption keys [G] //LNCS 4575: Proc of Pairing-Based Cryptography (Pairing 2007). Berlin: Springer, 2007: 39-59
23. Kusakawa M, Hiwatari H, Asano T, et al. Efficient dynamic broadcast encryption and its extension to authenticated dynamic broadcast encryption [G] //LNCS 5339: Proc of CANS 2008. Berlin: Springer, 2008: 31-48
24. Lewko A B, Sahai A, Waters B. Revocation systems with very small private keys [C] //Proc of the 31st IEEE Symp on Security and Privacy. Piscataway, NJ: IEEE, 2010: 273-285
25. Boneh D, Gentry C, Waters B. Collusion resistant broadcast encryption with short ciphertexts and private keys [G] //LNCS 3621: Proc of CRYPTO 2005. Berlin: Springer, 2005: 258-275
26. Sakai R, Furukawa J. Identity-based broadcast encryption [OL]. IACR Cryptology ePrint Archive, 2007 [2009-11-08]. http://eprint.iacr.org/2007/217
27. Delerabl'ee C. Identity-based broadcast encryption with constant size ciphertexts and private keys [G] //LNCS 4833: Proc of ASIACRYPT 2007. Berlin: Springer, 2007: 200-215
28. Gentry C, Waters B. Adaptive security in broadcast encryption systems (with short ciphertexts) [G] //LNCS 5479: Proc of EUROCRYPT 2009. Berlin: Springer, 2009: 171-188
29. Ren Y, Gu D. Fully cca2 secure identity based broadcast encryption without random oracles [J]. Information Processing Letters, 2009, 109 (11): 527-533
30. Adelsbach A, Huber U, Sadeghi A R. Property-based broadcast encryption for multi-level security policies [G] //LNCS 3935: Proc of ICISC 2005. Berlin: Springer, 2005: 15-31
31. Zhao Xingwen, Zhang Fangguo. Traitor tracing for dynamic privileges against pirate rebroadcast [J]. Computer & Security, 2012, 31 (1): 59-69
32. Jin H, Lotspiech J. Broadcast encryption for differently privileged [G] //Emerging Challenges for Security, Privacy and Trust 297: IFIP Advances in Information and Communication Technology. Berlin: Springer, 2009: 283-293
33. Sahai A, Waters B. Fuzzy identity-based encryption [G] //LNCS 3494: Proc of EUROCRYPT 2005. Berlin: Springer, 2005: 457-473
34. Goyal V, Pandey O, Sahai A et al. Attribute-based encryption for fine-grained access control of encrypted data [C] //Proc of ACM CCS 2006. New York: ACM, 2006: 89-98
35. Ostrovsky R, Sahai A, Waters B. Attribute-based encryption with nonmonotonic access structures [C] //Proc of ACM CCS 2007. New York: ACM, 2007: 195-203
36. Bethencourt J, Sahai A, Waters B. Ciphertext-policy attribute based encryption [C] //Proc of IEEE ISSP 2007. Piscataway, NJ: IEEE, 2007: 321-334
37. Chase M. Multi-authority attribute based encryption [G] //LNCS 4392: Proc of TCC 2007. Berlin: Springer, 2007: 515-534
38. Chase M, Chow S. Improving privacy and security in multi-authority attribute-based encryption [C] //Proc of ACM CCS 2009. New York: ACM, 2009: 121-130
39. Muller S, Katzenbeisser S, Eckert C. Distributed attribute-based encryption [G] //LNCS 5461: Proc of ICISC 2008. Berlin: Springer, 2008: 20-36
40. Yu S, Wang C, Ren K, et al. Achieving secure, scalable, and fine-grained data access control in cloud computing [C] //Proc of IEEE INFOCOM 2010. Piscataway, NJ: IEEE, 2010: 15-19
41. Li Jin, Zhao Ganshen, Chen Xiaofeng, et al. Fine-grained data access control systems with user accountability in cloud computing [C] //Proc of IEEE Cloud Com 2010. Piscataway, NJ: IEEE, 2010: 89-96
42. Herranz J, Laguillaumie F, Ràfols C. Constant size ciphertexts in threshold attribute-based encryption [G] //LNCS 6056: Proc of Public Key Cryptography (PKC 2010). Berlin: Springer, 2010: 19-34
43. Attrapadung N, Libert B, Panafieu E. Expressive key-policy attribute-based encryption with constant-size ciphertexts [G] //LNCS 6571: Proc of Public Key Cryptography (PKC 2011). Berlin: Springer, 2011: 90-108
44. Attrapadung N, Herranz J, Laguillaumie F, et al. Attribute-based encryption schemes with constant-size ciphertexts [J]. Theoretical Computer Science, 2012, 422 (9): 15-38
45. Liu Zhen, Cao Zhenfu, Huang Qiong, et al. Fully secure multi-authority ciphertext-policy attribute-based encryption without random oracles [G] //LNCS 6879: Proc of ESORICS 2011. Berlin: Springer, 2011: 278-297
46. Hur J, Noh D K. Attribute-based access control with efficient revocation in data outsourcing systems [J]. IEEE Trans on Parallel and Distributed Systems, 2011, 22 (7): 1214-1221
47. Green M, Hohenberger S, Waters B. Outsourcing the decryption of ABE ciphertexts [C] //Proc of the 9th USENIX Security Symp. Berkeley: USENIX Association, 2011: 3-18
48. Zhou Zhibin, Huang Dijiang. On efficient ciphertext-policy attribute based encryption and broadcast encryption [C] //Proc of ACM CCS 2010. New York: ACM, 2010: 753-755
49. Chen Cheng, Zhang Zhenfeng, Feng Dengguo. Efficient ciphertext policy attribute-based encryption with constant-size ciphertext and constant computation-cost [G] //LNCS 6980: Proc of Provable Security (ProvSec 2011). Berlin: Springer, 2011: 84-101
50. Lai Junzuo, Deng R, Guan Chaowen, et al. Attribute-based encryption with verifiable outsourced decryption [J]. IEEE Trans on Information Forensics and Security, 2013, 8 (8): 1343-1354
51. Kapadia A, Tsang P P, Smith S W. Attribute-based publishing with hidden credentials and hidden policies [C] //Proc of NDSS 2007. Reston, VA: ISOC, 2007: 179-192
52. Zhang Yinghui, Chen Xiaofeng, Li Jin, et al. Anonymous attribute-based encryption supporting efficient decryption test [C] //Proc of ASIACCS 2013. New York: ACM, 2013: 511-516
53. Swaminathan A, Mao Y, Su, G M, et al. Confidentiality-preserving rank-ordered search [C] //Proc of the 3rd ACM Workshop on Storage Security and Survivability. New York: ACM, 2007: 7-12
54. Wang C, Cao N, Ren K, et al. Enabling secure and efficient ranked keyword search over outsourced cloud data [J]. IEEE Trans on Parallel and Distributed Systems, 2012, 23 (8): 1467-1479
55. Zerr S, Olmedilla D, Nejdl W, et al. Top-k retrieval from a confidential index [C] //Proc of the 12th Int Conf on Extending Database Technology: Advances in Database Technology. New York: ACM, 2009: 439-449
56. Chor B, Kushilevitz E, Goldreich O, et al. Private information retrieval [J]. Journal of the ACM, 1998, 45 (6): 965-981
57. Ishai Y, Kushilevitz E, Ostrovsky R, et al. Cryptography from anonymity [C] //Proc of the 47th Annual IEEE Symp on Foundations of Computer Science. Piscataway, NJ: IEEE, 2006: 239-248
58. Song D, Wagner D, Perrig A. Practical techniques for searches on encrypted data [C] //Proc of the 21st IEEE Symp on Security and Privacy. Piscataway, NJ: IEEE, 2000: 44-55
59. Goh E J. Secure indexes [OL]. IACR Cryptology ePrint Archive. 2003 [2004-02-15]. http://eprint.iacr.org/2003/216
60. Chang Y, Mitzenmacher M. Privacy preserving keyword searches on remote encrypted data [G] //LNCS 3531: Proc of ACNS 2005. Berlin: Springer, 2005: 442-455
61. Curtmola R, Garay J A, Kamara S, et al. Searchable symmetric encryption: Improved definitions and efficient constructions [C] //Proc of ACM CCS 2006. New York: ACM, 2006: 79-88
62. Wang C, Cao N, Li J, et al. Secure ranked keyword search over encrypted cloud data [C] //Proc of ICDCS 2010. Piscataway, NJ: IEEE, 2010: 253-262
63. Kamara S, Papamanthou C, Roeder T. Dynamic searchable symmetric encryption [C] //Proc of ACM CCS 2012. New York: ACM, 2012: 965-976
64. Cao N, Wang C, Li M, et al. Privacy-preserving multi-keyword ranked search over encrypted cloud data [C] //Proc of IEEE INFOCOM 2011. Piscataway, NJ: IEEE, 2011: 829-837
65. Vimercati S, Foresti S, Jajodia S, et al. Private data indexes for selective access to outsourced data [C] //Proc of the 10th Workshop on Privacy in the Electronic Society (WPES 2011). New York: ACM, 2011: 69-79
66. Sun W, Wang B, Cao N, et al. Privacy-preserving multi-keyword text search in the cloud supporting similarity-based ranking [C] //Proc of ACM ASIACCS 2013. New York: ACM, 2013: 71-82
67. Sun W, Wang B, Cao N, et al. Verifiable privacy-preserving multi-keyword text search in the cloud supporting similarity-based ranking [J/OL]. IEEE Trans on Parallel and Distributed Systems, 2013 [2013-12-12]. http://ieeexplore.ieee.org
68. Boneh D, Crescenzo G D, Ostrovsky R, et al. Public key encryption with keyword search [G] //LNCS 3027: Proc of EUROCRYP 2004. Berlin: Springer, 2004: 506-522
69. Abdalla M, Bellare M, Catalano D. et al. Searchable encryption revisited: Consistency properties, relation to anonymous IBE, and extensions [G] //LNCS 3621: Proc of CRYPTO 2005. Berlin: Springer, 2005: 205-222
70. Golle P, Staddon J, Waters B. Secure conjunctive keyword search over encrypted data [G] //LNCS 3089: Proc of ACNS'04. Berlin: Springer, 2004: 31-45
71. Boneh D, Waters B. Conjunctive, subset, and range queries on encrypted data [G] //LNCS 4392: Proc of TCC 2007. Berlin: Springer, 2007: 535-554
72. Shi E, Bethencourt J, Chan H, et al. Multi-dimensional range query over encrypted data [C] //Proc of the 28th IEEE Symp on Security and Privacy. Piscataway, NJ: IEEE, 2007: 350-364
73. Kerschbaum F, Sorniotti A. Searchable encryption for outsourced data analytics [C] //Proc of the 7th European Conf on Public Key Infrastructures, Services and Applications. Berlin: Springer, 2010: 61-76
74. Lin X, Lu R, Foxton K. An efficient searchable encryption scheme and its application in network forensics [G] //LNICST 56: Proc of e-Forensics 2010. Berlin: Springer, 2011: 66-78
75. Hwang Y, Lee P. Public key encryption with conjunctive keyword search and its extension to a multi-user system [C] //Proc of Pairing-Based Cryptography (Pairing 2007). Berlin: Springer, 2007: 2-22
76. Li M, Yu S, Cao N, et al. Authorized private keyword search over encrypted data in cloud computing [C] //Proc of IEEE ICDCS 2011. Piscataway, NJ: IEEE, 2011: 383-392
77. Sun W, Yu S, Lou W, et al. Protecting your right: Attribute-based keyword search with fine-grained owner enforced search authorization in the cloud [C] //Proc of IEEE INFOCOM 2014. Piscataway, NJ: IEEE, 2014 [2014-03-12]. http://www.cnsr.ictas.vt.edu/publication/ABKS.pdf
78. Li J, Wang Q, Wang C, et al. Fuzzy keyword search over encrypted data in cloud computing [C] //Proc of IEEE INFOCOM Mini Conf 2010. Piscataway, NJ: IEEE, 2010: 1-5
79. Chuah M, Hu W. Privacy-aware bedtree based solution for fuzzy multi-keyword search over encrypted data [C] //Proc of the 31st Int Conf on Distributed Computing Systems Workshops. Piscataway, NJ: IEEE, 2011: 273-281
80. Wang B, Yu S, Lou W, et al. Privacy-preserving multi-keyword fuzzy search over encrypted data in the cloud [C] //Proc of IEEE INFOCOM 2014. Piscataway, NJ: IEEE, 2014 [2014-03-12]. http://www.cnsr.ictas.vt.edu/publication/ver3_Bing.pdf
81. Juels A, Burton J, Kaliski S. Pors: Proofs of retrievability for large files [C] //Proc of ACM CCS 2007. New York: ACM, 2007: 584-597
82. Ateniese G, Burns R, Curtmola R, et al. Provable data possession at untrusted stores [C] //Proc of ACM CCS 2007. New York: ACM, 2007: 598-609
83. Shacham H, Waters B. Compact proofs of retrievability [G] //LNCS 5350: Proc of ASIACRYPT 2008. Berlin: Springer, 2008: 90-107
84. Shah M, Swaminathan R, Baker M. Privacy-preserving audit and extraction of digital contents [OL]. 2008 [2009-01-05]. http://www.hpl.hp.com/techreports/2008/HPL-2008-32R1.pdf
85. Shah M, Baker M, Mogul J, et al. Auditing to keep online storage services honest [C] //Proc of HotOS'07. Berkeley: USENIX Association, 2007: 1-6
86. Ateniese G, Pietro R, Mancin L V, et al. Scalable and efficient provable data possession [C] //Proc of SecureComm 2008. New York: ACM, 2008: 1-10
87. Wang C, Wang Q, Ren K, et al. Ensuring data storage security in cloud computing [C] //Proc of IWQoS 2009. Piscataway, NJ: IEEE, 2009: 1-9
88. Wang Q, Wang C, Li J, et al. Enabling public verifiability and data dynamics for storage security in cloud computing [G] //LNCS 5789: Proc of ESORICS'09. Berlin: Springer, 2009: 355-370
89. Erway C, Kupcu A, Papamanthou C. et al. Dynamic provable data possession [C] //Proc of ACM CCS 2009. New York: ACM, 2009: 213-222
90. Wang C, Wang Q, Ren K. et al. Privacy-preserving public auditing for data storage security in cloud computing [C] //Proc of IEEE INFOCOM 2010. Piscataway, NJ: IEEE 2010: 1-9
91. Wang Boyang, Li Baochun, Li Hui. Oruta: Privacy-preserving public auditing for shared data in the cloud [C] //Proc of IEEE Cloud 2012. Piscataway, NJ: IEEE, 2012: 295-302
92. Wang Boyang, Li Baochun, Li Hui. Oruta: Privacy-preserving public auditing for shared data in the cloud [J/OL]. IEEE Trans on Cloud Computing, 2014 [2014-02-22]. http://ieeexplore.ieee.org
93. Wang Boyang, Li Baochun, Li Hui. Knox: Privacy-preserving auditing for shared data with large groups in the cloud [G] //LNCS 7341: Proc of ACNS 2012. Berlin: Springer, 2012: 507-525
94. Wang Boyang, Li Baochun, Li Hui. Panda: Public auditing for shared data with efficient user revocation in the cloud [J/OL]. IEEE Trans on Service Computing, 2014 [2013-12-22]. http://ieeexplore.ieee.org
95. Joukov N, Papaxenopoulos H, Zadok E. Secure deletion myths, issues, and solutions [C] //Proc of StorageSS'06. New York: ACM, 2006: 61-66
96. Reardon J, Capkun S, Basin D. SoK: Secure data deletion [C] //Proc of the 34th IEEE Symp on Security and Privacy. Piscataway, NJ: IEEE, 2013: 301-315
97. Zhang Fengzhe, Chen Jin, Chen Haibo, et al. Lifetime privacy and self-destruction of data in the cloud [J]. Journal of Computer Research and Development, 2011, 48 (7): 1155-1167 (in Chinese)
98. Boneh D, Lipton R. A revocable backup system [C] //Proc of the 4th USENIX Security Symp. Berkeley: USENIX Association, 1996: 91-96
99. Di Crescenzo G, Ferguson N, Impagliazzo R, et al. How to forget a secret [C] //Proc of the 16th Symp on Theoretical Aspects of Computer Science (STACS 1999). Berlin: Springer, 1999: 500-509
100. Mitra S, Winslett M. Secure deletion from inverted indexes on compliance storage [C] //Proc of StorageSS'06. New York: ACM, 2006: 67-72
101. Perlman R. File system design with assured delete [C] //Proc of SISW'05. Piscataway, NJ: IEEE, 2005: 83-88
102. Tang Yang, Lee P, Lui J, et al. FADE: Secure overlay cloud storage with file assured deletion [C] //Proc of Security and Privacy in Communication Networks (SecureComm 2010). Berlin: Springer, 2010: 380-397
103. Peterson Z N, Burns R C, Herring J, et al. Secure deletion for a versioning file system [C] //Proc of the 4th USENIX Conf on File and Storage Technologies (FAST 2005). Berkeley: USENIX Association, 2005: 4-11
104. Geambasu R, Kohno T, Levy A, et al. Vanish: Increasing data privacy with self-destructing data [C] //Proc of the 17th USENIX Security Symp. Berkeley: USENIX Association, 2009: 299-316
105. Wang Lina, Ren Zhengwei, Yu Rongwei, et al. A data assured deletion approach adapted for cloud storage [J]. Acta Electronica Sinica, 2012, 40 (2): 266-272 (in Chinese)
106. Cachin C, Haralambiev K, Hsiao H C, et al. Policy-based Secure Deletion [C] //Proc of ACM CCS 2013. New York: ACM, 2013: 259-270
107. Reardon J, Ritzdorf H, Basin D, et al. Secure data deletion from persistent media [C] //Proc of ACM CCS 2013. New York: ACM, 2013: 271-284