Dynamic remote data auditing for securing big data storage in cloud computing

Information Sciences

Volumn 380, Issue , 2017, Pages 101-116

  Sookhak, Mehdi ^a   Gani, Abdullah ^a   Khan, Muhammad Khurram ^b   Buyya, Rajkumar ^c  

^a UNIVERSITY OF MALAYA   (Malaysia)

^b KING SAUD UNIVERSITY   (Saudi Arabia)

^c UNIVERSITY OF MELBOURNE   (Australia)

Author keywords

Big data storage; Cloud computing; Data dynamic; Data integrity; Remote data auditing

Indexed keywords

CLOUD COMPUTING; COSTS; DATA STORAGE EQUIPMENT; DATA STRUCTURES; DIGITAL STORAGE; DISTRIBUTED COMPUTER SYSTEMS; PRINTING MACHINERY;

ALGEBRAIC SIGNATURES; CLOUD STORAGE SYSTEMS; COMPUTATIONAL OVERHEADS; DATA DYNAMICS; DATA INTEGRITY; DATA STORAGE; OUTSOURCING DATA STORAGES; REMOTE DATA;

BIG DATA;

EID: 84945431187     PISSN: 00200255     EISSN: None     Source Type: Journal    
DOI: 10.1016/j.ins.2015.09.004     Document Type: Article

References (67)

1. [1] Data Breaches: A Year in Review in, Privacy Rights Clearinghouse, 2011.
2. [2] Ali, M., Dhamotharan, R., Khan, E., Khan, S.U., Vasilakos, A.V., Li, K., Zomaya, A.Y., SeDaSC: secure data sharing in clouds. IEEE Syst. J. PP (2015), 1–10.
3. [3] Ali, M., Khan, S.U., Vasilakos, A.V., Security in cloud computing: opportunities and challenges. Inf. Sci. 305 (2015), 357–383.
4. [4] Armbrust, M., Fox, A., Griffith, R., Joseph, A.D., Katz, R., Konwinski, A., Lee, G., Patterson, D., Rabkin, A., Stoica, I., Above the clouds: a view of cloud computing. Commun. ACM 53 (2010), 50–58.
5. [5] T. Armerding, The 15 Worst Data Security Breaches of the 21st Century, in: COS Security and Risk, csoonline, 2012.
6. [6] Ateniese, G., Burns, R., Curtmola, R., Herring, J., Khan, O., Kissner, L., Peterson, Z., Song, D., Remote data checking using provable data possession. ACM Trans. Inf. Syst. Secur. 14 (2011), 1–34.
7. [7] Ateniese, G., Burns, R., Curtmola, R., Herring, J., Kissner, L., Peterson, Z., Song, D., Provable data possession at untrusted stores. Proceedings of the fourteenth ACM Conference on Computer and Communications Security, 2007, ACM, Alexandria, Virginia, USA, 598–609.
8. [8] Ateniese, G., Pietro, R.D., Mancini, L.V., Tsudik, G., Scalable and efficient provable data possession. Proceedings of the Fourth International Conference on Security and Privacy in Communication Networks, 2008, ACM, Istanbul, Turkey, 1–10.
9. [9] Boneh, D., Gentry, C., Lynn, B., Shacham, H., Aggregate and verifiably encrypted signatures from bilinear maps. Advances in Cryptology (EUROCRYPT), 2003, Springer, Berlin Heidelberg, 416–432.
10. [10] Boneh, D., Shacham, H., Group signatures with verifier-local revocation. Proceedings of the eleventh ACM conference on Computer and communications security, 2004, ACM, Washington DC, USA, 168–177.
11. [11] Boyang, W., Baochun, L., Hui, L., Panda: public auditing for shared data with efficient user revocation in the cloud. IEEE Trans. Serv. Comput. 8 (2015), 92–106.
12. [12] Broder, A., Some applications of Rabin's fingerprinting method. Sequences II, 1993, Springer, New York, 143–152.
13. [13] Buyya, R., Yeo, C.S., Venugopal, S., Broberg, J., Brandic, I., Cloud computing and emerging IT platforms: vision, hype, and reality for delivering computing as the 5th utility. Future Gener. Comput. Syst. 25 (2009), 599–616.
14. [14] D. Cash, A. Küpçü, D. Wichs, Dynamic proofs of retrievability via oblivious RAM, IACR Cryptology ePrint Archive, (2012) 550-550.
15. [15] Catalano, D., Fiore, D., Gennaro, R., Vamvourellis, K., Algebraic (Trapdoor) one-way functions and their applications. Sahai, A., (eds.) Theory of Cryptography, 2013, Springer, Berlin Heidelberg, 680–699.
16. [16] Chen, B., Curtmola, R., Ateniese, G., Burns, R., Remote data checking for network coding-based distributed storage systems. Proceedings of the 2010 ACM Workshop on Cloud Computing Security Workshop, 2010, ACM, Chicago, Illinois, USA, 31–42.
17. [17] Cong, W., Kui, R., Wenjing, L., Jin, L., Toward publicly auditable secure cloud data storage services. IEEE Netw. 24 (2010), 19–24.
18. [18] Du, W., Murugesan, M., Jia, J., Uncheatable grid computing. Twenty-fourth International Conference on Distributed Computing Systems, 2010, Chapman & Hall/CRC, Hachioji, Tokyo, Japan pp. 30-30.
19. [19] Erway, C., Küpçü, A., Papamanthou, C., Tamassia, R., Dynamic provable data possession. Proceedings of the sixteenth ACM Conference on Computer and Communications Security, 2009, ACM, Chicago, Illinois, USA, 213–222.
20. [20] Erway, C.C., Küpçü, A., Papamanthou, C., Tamassia, R., Dynamic provable data possession. ACM Trans. Inf. Syst. Secur. 17 (2015), 1–29.
21. [21] Fei, X., Fangming, L., Hai, J., Vasilakos, A.V., Managing performance overhead of virtual machines in cloud computing: a survey, state of the art, and future directions. Proc. IEEE 102 (2014), 11–31.
22. [22] Goldreich, O., Ostrovsky, R., Software protection and simulation on oblivious RAMs. J. ACM 43 (1996), 431–473.
23. [23] Goodrich, M.T., Tamassia, R., Schwerin, A., Implementation of an authenticated dictionary with skip lists and commutative hashing. Proceedings IEEE DARPA Information Survivability Conference & Exposition II (DISCEX '01)., Anaheim, CA, 2001, 68–82.
24. [24] Huang, Q., Yang, G., Wong, D., Susilo, W., Efficient strong designated verifier signature schemes without random oracle or with non-delegatability. Int. J. Inf. Secur. 10 (2011), 373–385.
25. [25] Impagliazzo, R., Levin, L.A., Luby, M., Pseudo-random generation from one-way functions. Proceedings of the Twenty-First Annual ACM Symposium On Theory of Computing, 1989, ACM, Seattle, Washington, United States, 12–24.
26. [26] Jia, Y., Kui, R., Cong, W., Varadharajan, V., Enabling cloud storage auditing with key-exposure resistance. IEEE Trans. Inf. Forensic Secur. 10 (2015), 1167–1179.
27. [27] Jiang, T., Chen, X., Ma, J., Public integrity auditing for shared dynamic cloud data with group user revocation. IEEE Trans. Comput. PP (2015), 1–12.
28. [28] Juels, A., Burton, J., Kaliski, S., PORs: proofs of retrievability for large files. Proceedings of the Fourteenth ACM Conference on Computer and Communications Security, 2007, ACM, Alexandria, Virginia, USA, 584–597.
29. [29] Kai, C., Chengchen, H., Xin, Z., Kai, Z., Yan, C., Vasilakos, A.V., Survey on routing in data centers: insights and future directions. IEEE Netw. 25 (2011), 6–10.
30. [30] Khan, A., Kiah, M.L.M., Madani, S., Ali, M., Khan, A., Shamshirband, S., Incremental proxy re-encryption scheme for mobile cloud computing environment. J Supercomput. 68 (2014), 624–651.
31. [31] Krzywiecki, Ł., Kutyłowski, M., Proof of possession for cloud storage via Lagrangian interpolation techniques. Xu, L., Bertino, E., Mu, Y., (eds.) Network and System Security, 2012, Springer, Berlin Heidelberg, 305–319.
32. [32] Li, J., Li, J., Xie, D., Cai, Z., Secure auditing and deduplicating data in cloud. IEEE Trans. Comput. PP (2015), 1–11.
33. [33] Lin, W., Fa, Z., Arjona Aroca, J., Vasilakos, A.V., Kai, Z., Chenying, H., Dan, L., Zhiyong, L., GreenDCN: a general framework for achieving energy efficiency in data center networks. IEEE J. Select. Areas Commun. 32 (2014), 4–15.
34. [34] Lin, W., Fa, Z., Kai, Z., Vasilakos, A.V., Shaolei, R., Zhiyong, L., Energy-efficient flow scheduling and routing with hard deadlines in data center networks. Thirty-fourth IEEE International Conference on Distributed Computing Systems (ICDCS), Madrid, 2014, 248–257.
35. [35] Litwin, W., Schwarz, T., Algebraic signatures for scalable distributed data structures. Twentieth IEEE International Conference on Data Engineering, 2004, 412–423.
36. [36] Merkle, R.C., Protocols for public key cryptosystems. IEEE Symposium on Security and privacy, Oakland, CA, USA, 1980, 122–134.
37. [37] Nurmi, D., Wolski, R., Grzegorczyk, C., Obertelli, G., Soman, S., Youseff, L., Zagorodnov, D., The eucalyptus open-source cloud-computing system. Nineth IEEE/ACM International Symposium on Cluster Computing and the Grid, Shanghai, 2009, 124–131.
38. [38] Plank, J.S., T1: erasure codes for storage applications. Proceedings of the Fourth USENIX Conference on File and Storage Technologies, San Francisco, 2005, 1–74.
39. [39] Pugh, W., Skip lists: a probabilistic alternative to balanced trees. Commun. ACM 33 (1990), 668–676.
40. [40] Rahimi, M.R., Ren, J., Liu, C., Vasilakos, A., Venkatasubramanian, N., Mobile cloud computing: a survey, state of art and future directions. Mobile Netw. Appl. 19 (2014), 133–143.
41. [41] Rahimi, M.R., Venkatasubramanian, N., Mehrotra, S., Vasilakos, A.V., MAPCloud: mobile applications on an elastic and scalable 2-tier cloud architecture. IEEE Fifth International Conference on Utility and Cloud Computing (UCC), 2012, 83–90.
42. [42] Rahimi, M.R., Venkatasubramanian, N., Vasilakos, A.V., MuSIC: mobility-aware optimal service allocation in mobile cloud computing. IEEE Sixth International Conference on Cloud Computing (CLOUD), Santa Clara, CA, 2013, 75–82.
43. [43] Savas, x., Ko, E., x00E, C.K., Finite field arithmetic for cryptography. IEEE Circuits Syst. Mag. 10 (2010), 40–56.
44. [44] Schwarz, T.S.J., Miller, E.L., Store, forget, and check: using algebraic signatures to check remotely administered storage. Twenty-sixth IEEE International Conference on Distributed Computing Systems, 2006 pp. 12-12.
45. [45] Sebe, F., Domingo-Ferrer, J., Martinez-Balleste, A., Deswarte, Y., Quisquater, J.J., Efficient remote data possession checking in critical information infrastructures. IEEE Trans. Knowl. Data Eng. 20 (2008), 1034–1038.
46. [46] Shacham, H., Waters, B., Compact proofs of retrievability. Advances in Cryptology (ASIACRYPT), 2008, Springer, Berlin, Heidelberg, 90–107.
47. [47] Shamshirband, S., Anuar, N.B., Kiah, M.L.M., Patel, A., An appraisal and design of a multi-agent system based cooperative wireless intrusion detection computational intelligence technique. Eng. Appl. Artif. Intell. 26 (2013), 2105–2127.
48. [48] Sookhak, M., Gani, A., Talebian, H., Khan, S.U., Buyya, R., Zomaya, A.Y., Remote data auditing in cloud computing environments: a survey, taxonomy, and open issues. ACM Comput. Surv. 47 (2015), 1–34.
49. [49] Sookhak, M., Talebian, H., Ahmed, E., Gani, A., Khan, M.K., A review on remote data auditing in single cloud server: taxonomy and open issues. J. Netw. Comput. Appl. 43 (2014), 121–141.
50. [50] G.M. Stevens, Data Security Breach Notification Laws, in, Congressional Research Service, 2012.
51. [51] Wang, C., Chow, S., Wang, Q., Ren, K., Lou, W, Privacy-preserving public auditing for secure cloud storage in cloud computing. IEEE Trans. Comput. PP (2012), 1–14.
52. [52] Wang, C., Ren, K., Lou, W., Li, J., Toward publicly auditable secure cloud data storage services. IEEE Network 24 (2010), 19–24.
53. [53] Wang, C., Wang, Q., Ren, K., Cao, N., Lou, W., Toward secure and dependable storage services in cloud computing. IEEE Trans. Serv. Comput. 5 (2012), 220–232.
54. [54] Wang, H., Proxy provable data possession in public clouds. IEEE Trans. Serv. Comput., PP, 2012 1-1.
55. [55] Wang, Q.A., Wang, C., Ren, K., Lou, W.J., Li, J., Enabling public auditability and data dynamics for storage security in cloud computing. IEEE Trans. Parallel Distr. 22 (2011), 847–859.
56. [56] Wei, G., Vasilakos, A., Zheng, Y., Xiong, N., A game-theoretic method of fair resource allocation for cloud computing services. J. Supercomput. 54 (2010), 252–269.
57. [57] Wei, L., Zhu, H., Cao, Z., Dong, X., Jia, W., Chen, Y., Vasilakos, A.V., Security and privacy for storage and computation in cloud computing. Inf. Sci. 258 (2014), 371–386.
58. [58] Wei, L., Zhu, H., Cao, Z., Jia, W., Vasilakos, A.V., SecCloud: bridging secure storage and computation in cloud. Thirtieth International Conference on Distributed Computing Systems Workshops (ICDCSW), 2010, IEEE, Genova, 52–61.
59. [59] Wu, Q., Mu, Y., Susilo, W., Qin, B., Domingo-Ferrer, J., Asymmetric group key agreement. Joux, A., (eds.) Advances in Cryptology - EUROCRYPT 2009, 2009, Springer, Berlin Heidelberg, 153–170.
60. [60] Xin, Z., Fanfu, Z., Xinyu, Z., Haiyang, S., Perrig, A., Vasilakos, A.V., Guan, H., DFL: secure and practical fault localization for datacenter networks. IEEE/ACM Trans. Netw. 22 (2014), 1218–1231.
61. [61] Yang, K., Jia, X., An efficient and secure dynamic auditing protocol for data storage in cloud computing. IEEE Trans. Parallel Distrib. PP (2012), 1717–1726.
62. [62] Yang, K., Jia, X., An efficient and secure dynamic auditing protocol for data storage in cloud computing. IEEE Trans. Parallel Distrib. PP (2013), 1717–1726.
63. [63] Yu, Z., Wang, C., Thomborson, C., Wang, J., Lian, S., Vasilakos, A.V., A novel watermarking method for software protection in the cloud. Softw. Pract. Exp. 42 (2012), 409–430.
64. [64] Yuan, J., Yu, S., Public integrity auditing for dynamic data sharing with multi-user modification. IEEE Trans. Inf. Forensics Secur. PP (2015), 1717–1726.
65. [65] Zhang, J., Mao, J., A novel ID-based designated verifier signature scheme. Inf. Sci. 178 (2008), 766–773.
66. [66] Y. Zhang, M. Blanton, Efficient dynamic provable possession of remote data via update trees, IACR Cryptology ePrint Archive, (2012) 291-291.
67. [67] Zhou, J., Cao, Z., Dong, X., Xiong, N., Vasilakos, A.V., 4S: A secure and privacy-preserving key management scheme for cloud-assisted wireless body area network in m-healthcare social networks. Inf. Sci. 314 (2015), 255–276.