本文選題：云存儲 + 數(shù)據(jù)完整性審計��； 參考：《青島大學(xué)》2017年碩士論文

【摘要】：云存儲的靈活性和即用即付的存儲服務(wù)方式,使其受到廣泛歡迎。然而,存儲在云端的數(shù)據(jù)可能會因為軟/硬件故障或者人為失誤等原因造成丟失或者損壞,因此,驗證存儲在云端數(shù)據(jù)的完整性十分必要。為了實現(xiàn)這個安全目的,人們提出了云存儲數(shù)據(jù)完整性審計的概念。云存儲數(shù)據(jù)完整性審計是一種能夠幫助用戶檢查存儲在云端數(shù)據(jù)完整性的有效安全機制。本文針對現(xiàn)有云存儲數(shù)據(jù)完整性審計方案中的若干問題,提出了以下三個具有創(chuàng)新性質(zhì)的方案:(1)提出了第一個具有私鑰可恢復(fù)能力的共享數(shù)據(jù)云存儲完整性檢測方案。在該方案中,當(dāng)一個群用戶的私鑰不可用時,可以通過群里的t個或者t個以上的用戶幫助他恢復(fù)私鑰。同時,設(shè)計了一個隨機遮掩技術(shù),用于確保參與成員私鑰的安全性。用戶也可驗證被恢復(fù)私鑰的正確性。(2)提出了一個新穎的共享云數(shù)據(jù)公開審計方案。與以往方案不同的是,在這個方案中,一旦群里有用戶被撤銷,則該用戶就不能再訪問屬于這個群的共享數(shù)據(jù)。為了保護數(shù)據(jù)隱私和身份隱私,設(shè)計了一個新的隨機遮掩技術(shù)。此外,該方案支持群動態(tài)(加入一個新的群用戶或者撤銷一個老的群用戶)和批審計。(3)提出了一個支持輕量級認(rèn)證器產(chǎn)生的公開云存儲數(shù)據(jù)完整性審計方案,通過引入一個新的實體——認(rèn)證器產(chǎn)生中心去幫助用戶產(chǎn)生數(shù)據(jù)認(rèn)證器。為了減少用戶端的計算負(fù)擔(dān),將驗證AGC產(chǎn)生的認(rèn)證器正確性的工作交給云服務(wù)器來完成。此外,該方案可以保護數(shù)據(jù)隱私性。最后,在總結(jié)本文取得成果的同時,也對未來云存儲安全領(lǐng)域需要進一步研究的方向進行展望。
[Abstract]:The flexibility of cloud storage and pay-as-you-go service make it popular.However data stored in the cloud may be lost or damaged due to software / hardware failure or human error. Therefore it is necessary to verify the integrity of data stored in the cloud.In order to achieve this security goal, people put forward the concept of cloud storage data integrity audit.Cloud storage data integrity audit is an effective security mechanism that can help users check the integrity of data stored in the cloud.Aiming at some problems in the existing cloud storage data integrity audit scheme, this paper proposes the following three innovative schemes: 1) propose the first shared data cloud storage integrity detection scheme with the ability of private key recoverability.In this scheme, when the private key of a group of users is not available, the private key can be recovered by means of t or more users in the group.At the same time, a random mask technique is designed to ensure the security of the private key of the participating member.Users can also verify the correctness of the recovered private key. 2) A novel public audit scheme for shared cloud data is proposed.In this scheme, once a user in the group is revoked, the user can no longer access the shared data belonging to the group.In order to protect data privacy and identity privacy, a new random masking technique is designed.In addition, the scheme supports group dynamics (adding a new group user or revoking an old group user) and batch auditing. It proposes a public cloud data integrity audit scheme that supports lightweight authenticators.A new entity-Authenticator Generation Center is introduced to help users generate data authenticators.In order to reduce the computational burden on the client, the verification of the correctness of the authenticator generated by AGC is left to the cloud server.In addition, the scheme can protect data privacy.Finally, after summarizing the achievements of this paper, the future research direction of cloud storage security field is prospected.
【學(xué)位授予單位】：青島大學(xué)
【學(xué)位級別】：碩士
【學(xué)位授予年份】：2017
【分類號】：TP309;TP333

【參考文獻】

相關(guān)期刊論文 前3條

1 沈文婷;于佳;楊光洋;程相國;郝蓉;;具有私鑰可恢復(fù)能力的云存儲完整性檢測方案[J];軟件學(xué)報;2016年06期

2 薛銳;任奎;張玉清;李暉;劉吉強;趙波;祝烈煌;;云計算安全研究�？把訹J];軟件學(xué)報;2016年06期

3 AHN Gail-Joon;;Zero-knowledge proofs of retrievability[J];Science China(Information Sciences);2011年08期

，

本文編號：1751009