标题:Enabling Identity-Based Integrity Auditing and Data Sharing With Sensitive Information Hiding for Secure Cloud Storage
作者:Shen, Wenting; Qin, Jing; Yu, Jia; Hao, Rong; Hu, Jiankun
作者机构:[Shen, Wenting; Qin, Jing] Shandong Univ, Sch Math, Jinan 250100, Shandong, Peoples R China.; [Qin, Jing; Yu, Jia] Chinese Acad Sci, State Key Lab I 更多
通讯作者:Qin, J
通讯作者地址:[Qin, J]Shandong Univ, Sch Math, Jinan 250100, Shandong, Peoples R China.
来源:IEEE TRANSACTIONS ON INFORMATION FORENSICS AND SECURITY
出版年:2019
卷:14
期:2
页码:331-346
DOI:10.1109/TIFS.2018.2850312
关键词:Cloud storage; data integrity auditing; data sharing; sensitive; information hiding
摘要:With cloud storage services, users can remotely store their data to the cloud and realize the data sharing with others. Remote data integrity auditing is proposed to guarantee the integrity of the data stored in the cloud. In some common cloud storage systems such as the electronic health records system, the cloud file might contain some sensitive information. The sensitive information should not be exposed to others when the cloud file is shared. Encrypting the whole shared file can realize the sensitive information hiding, but will make this shared file unable to be used by others. How to realize data sharing with sensitive information hiding in remote data integrity auditing still has not been explored up to now. In order to address this problem, we propose a remote data integrity auditing scheme that realizes data sharing with sensitive information hiding in this paper. In this scheme, a sanitizer is used to sanitize the data blocks corresponding to the sensitive information of the file and transforms these data blocks' signatures into valid ones for the sanitized file. These signatures are used to verify the integrity of the sanitized file in the phase of integrity auditing. As a result, our scheme makes the file stored in the cloud able to be shared and used by others on the condition that the sensitive information is hidden, while the remote data integrity auditing is still able to be efficiently executed. Meanwhile, the proposed scheme is based on identity-based cryptography, which simplifies the complicated certificate management. The security analysis and the performance evaluation show that the proposed scheme is secure and efficient.
收录类别:SCIE
资源类型:期刊论文
TOP