CN106911708A

CN106911708A - It is a kind of to support batch processing to verify and possess the cloud data public audit method of wrong data positioning function

Info

Publication number: CN106911708A
Application number: CN201710178312.5A
Authority: CN
Inventors: 庞晓琼; 王田琪; 陈文俊
Original assignee: North University of China
Current assignee: North University of China
Priority date: 2017-03-23
Filing date: 2017-03-23
Publication date: 2017-06-30
Anticipated expiration: 2037-03-23
Also published as: CN106911708B

Abstract

Support batch processing to verify and possess the cloud data public audit method of wrong data positioning function the invention discloses a kind of.This method is：The positioning label of blocks of files in Cloud Server, is sent to TPA by its blocks of files and data label storage by each cloud user；TPA to be received and store the data on multiple Cloud Servers to these users after the audit request of user and throw down the gauntlet, after the proof for receiving return, TPA is based on the challenge for sending and the proof of server return and carries out validation verification, if by checking, Data Audit result is to pass through；Otherwise TPA verification positioning labels, the then auditing result that positioning label Verification passes through is to pass through, the index of cloud user index and place server otherwise belonging to output error data.Last TPA is that the cloud user transmission for passing through is audited successfully to auditing result, is the index that the cloud user not passed through sends wrong data subordinate server to auditing result.The present invention is easy to the position for allowing user faster to find out damaged data.

Description

A kind of cloud data for supporting that batch processing is verified and possesses wrong data positioning function are disclosed Auditing method

Technical field

Verify and possess wrong data and determine the invention belongs to technical field of network security, more particularly to a kind of support batch processing The cloud data public audit method of bit function.

Background technology

Possessing property of data proves that (Provable Data Possession, PDP) scheme can allow user without local In the case of backup, it is not necessary to fetch data, just the number on insincere server can be stored with probability remote verification very high According to whether complete, communication bandwidth is saved.At present, most of PDP schemes are directed to single user and deposit on a single server Data carry out completeness check.But in the situation of reality, cloud storage provide service be towards many users, meanwhile, cloud Service provider is not single, and what each cloud service provider was possessed is also not only individual server.In order to more suitable Should be real, in recent years, the PDP schemes under multi-user's list server, single user multiserver, multi-user's multiserver scene are successively It is suggested.Support that the data integrity batch processing checkschema of multi-user's multiserver substantially reduces computing cost, but After corrupt data, the source of wrong data often accurately cannot be quickly determined.So it is an object of the invention to：In multi-user Under environment of multi-server, while realizing that batch processing remote data integrity is verified, moreover it is possible to realize the positioning to wrong data, i.e., Find which user is wrong data belong to, and be stored on which server, be so easy to allow user faster to find that oneself is deposited Corrupted data on which server.

Related work

2013, Wang et al. under multi-user's list server environment, was carried using BLS signature construction homomorphism checking labels A kind of batch processing checkschema of protection user data privacy is gone out, and has judged that the data of which user go out using binary chop It is wrong.2016, Mao et al. was also with BLS short signatures, it is proposed that under a kind of cloudy server environment of single user at support batch The data integrity verifying scheme of reason, but scheme does not account for the problem of wrong data positioning.

2014, Liu et al. proposed the batch processing verification side under a kind of multi-user's multiserver scene using Bilinear map Case, and displacement attack is resisted using orderly Merkle Hash Tree.Ren et al. uses the Co-GDH on elliptic curve Signature constructs homomorphism checking label, proposes that a kind of disclosing verifies and protect the batch processing checkschema of privacy, and utilize data Fresh information table realizes that data dynamically update.2016, Zhou et al. proposed one kind and is based on using Bilinear map and CDH problems The batch processing PDP schemes of ID.Above scheme fast and effeciently can disposably verify multiple users and be stored on multiple servers Data it is whether complete, but they do not consider the orientation problem of wrong data.

In batch processing scheme under multi-user's multiserver scene, also someone is it is proposed that the idea of wrong data positioning. 2013, He et al. proposed a kind of recognizable damage data, support batch processing data using recoverable coding method Integrity check scheme, can all detect the user of all corrupt datas, but without the clothes residing for alignment error data Business device.2015, Shin et al. it is also proposed a kind of batching data integrity check scheme for realizing damage data identification, but It is that after the corrupt data for having multiple servers to return, the program can only determine last erroneous servers, and cannot be true Determine the owner of wrong data.

The present invention proposes a kind of batch processing cloud data for supporting wrong data to position under multi-user's environment of multi-server The audit work of data integrity verifying is entrusted to auditing by third party person (Third Party by public audit method, cloud user Auditor, TPA).After TPA receives the audit request of multiple cloud users, batch processing verifies these clouds user storage and is serviced in multiple The integrality of the data on device.While realizing that batch processing is verified, can be real in once challenging after corrupt data is detected Existing wrong data positioning function, that is, find the owner of error data and the server residing for it.

The content of the invention

The technology of the present invention in view of the shortcomings of the prior art, supports batch processing verification and possesses mistake the invention provides one kind The cloud data public audit method of data positioning function.

It is disclosed by the invention be one kind under multi-user's environment of multi-server, can support wrong data position and batch processing school The cloud data public audit method tested, the present invention includes：CA (Certificate Authority, authentication center) server enters Row initiation parameter is set, and all cloud users can apply for one's own public private key pair to CA；Each cloud user is by theirs The positioning label of blocks of files is sent to TPA by blocks of files and data label storage in Cloud Server；TPA receives multiple clouds After the audit request of user, these users data of the storage on multiple Cloud Servers can be thrown down the gauntlet simultaneously, receive by After the proof that challenge Cloud Server is returned, the proof of challenge and server return that TPA is based on transmission carries out validity batch and tests Card, if by checking, the Data Audit result for illustrating the cloud user being related in challenge is to pass through.Otherwise, TPA verifications positioning mark Sign, pass through for positioning label Verification, illustrate that corresponding data are complete, i.e., auditing result is to pass through；Tested for positioning label What card did not passed through, illustrate that data are destroyed, the rope of cloud user index and place server belonging to TPA output error data Draw.Last TPA is that the cloud user for passing through sends the successful Audit Report of audit to auditing result.Do not pass through to auditing result Cloud user sends the index of wrong data subordinate server.

Compared with prior art, beneficial effects of the present invention：

Realize wrong data positioning：The present invention is not only realized under multi-user's environment of multi-server, multiple cloud users The person that can entrust auditing by third party carries out batch processing audit to the data stored in multiple Cloud Servers.Examined in batch processing in addition In the case that meter does not pass through, only doing and judge that the data that specific user is stored on particular server are by once compare operation It is no to be destroyed.Additionally, the present invention can also find out all error datas, while user and the place clothes belonging to alignment error data Business device, is easy to the position for allowing user faster to find out damaged data, reduces user and finds the time of wrong data, and more easily determines The degree of reliability of Cloud Server.

The present invention is realized under multi-user's environment of multi-server, the data integrity validation of batch processing is supported, while going back structure Made it is a kind of label is positioned to realize the positioning function of wrong data, can make after batch processing verification the user of corrupted data and Shi Faxian its corrupt data, and the position of damaged data can be learnt, improve the efficiency at user's detection document lending position.

Brief description of the drawings

Fig. 1 is specific implementation method flow chart of the present invention.

Fig. 2 is the data label generating process schematic diagram of the specific embodiment of the invention.

Fig. 3 is the positioning label generating process schematic diagram of the specific embodiment of the invention.

Fig. 4 is the public audit and wrong data position fixing process schematic diagram of the specific embodiment of the invention.

Fig. 5 is cloud user DO₁With a_1tIt is parameter, for Cloud Server CS₁4 data block M of upper storage₁₁₁, M₁₁₂, M₁₁₃, M₁₁₄MHT (Merkle Hash Tree, Merkle Hash tree) TR of structure_11t。

Specific embodiment

Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is carried out clear, complete Site preparation is described, and the every other embodiment that those skilled in the art are obtained under the premise of creative work is not made all belongs to In the scope of protection of the invention.

Method of the present invention flow is as shown in figure 1, its step is：

1st, CA servers carry out initiation parameter setting；

● with k as security parameter, two ranks of selection are the multiplication loop group G of q₁And G₂, q is a Big prime and meets q> 2^k, take G₁Generation unit be g, in group G₁And G₂One bilinear map e of upper selection:G₁×G₁→G₂。

● four cryptography Hash functions H of selection₁,H₂,H₃,H₄With a pseudo-random function f, wherein H₁:{ 0,1 }^*→G₁, H₂:{ 0,1 }^*→Z_q, H₃:{ 0,1 }^*→G₁, H₄:{ 0,1 }^*→Z_q(H₁And H₃, H₂And H₄It is respectively different Hash functions),Wherein Z_q=0,1,2 ..., and q-1 }, each user index can be expressed as w_iBit String, each server index can be expressed as w_jThe string of bit, each blocks of files index can be expressed as w_kThe string of bit.

● random selectionAs subregion coefficient, and make λ=k as each user to identical number According to the quantity for building MHT (Merkle Hash Tree, Merkle Hash tree).

● random selectionUsed as main private key msk, and it is mpk=g to make Your Majesty's key^x。

● by common parameter params=(G₁,G₂,q,g,e,H₁,H₂,H₃,H₄,f,{v_l, λ) and Your Majesty's key mpk=g^xIt is public Open, by the secret preservations of main private key msk=x.

2nd, cloud user DO_iApply for the public private key pair of oneself to CA

●DO_iGeneration key application request Concurrency delivers to CA servers, and CA servers are DO_iGeneration key is to (pk_i, sk_i), wherein public key pk_i=H₁(ID_i), private key sk_i=H₁(ID_i)^x=pk_i ^x, i is cloud user DO_iIndex, ID_iIt is DO_iBody Part identifier.

3rd, CA servers are by private key sk_iDO is sent to by safe lane_i。

4、DO_iBlocks of files to be uploaded is pre-processed (Fig. 2 is data label generating process)

●DO_iFixed length segmentation is carried out to file to be uploaded, M is made_ijkRepresent cloud user DO_iIt is stored in server CS_jOn kth Individual block, each block is made up of s subregion, makes F_ijklRepresent DO_iIt is stored in CS_jOn k-th piece in l-th subregion.

●DO_iTo each data block M_ijkOne label value σ of generation_ijk=(S_ijk,T_ijk), specific generation method is：DO_iWith Machine is chosenTo each blocks of files M of oneself_ijkCalculateh_i=H₂(ID_i), hpk=H₃ (mpk), and calculate

5、DO_iDuring blocks of files and data label uploaded into corresponding Cloud Server

DO_iBy its all of blocks of files { M_ijkAnd corresponding data label { σ_ijkBe sent to accordingly by server index Server.

6th, each server verifies availability such as Fig. 2 of its data label for receiving, and each server receives user's transmission Data block and data label after, by verifying whether following equation into Rob Roy determines whether data label correct.

If equation is set up, illustrate that the data label that user uploads can use, the data block that server storage verification passes through With data label；If equation is invalid, Cloud Server requirement user upload again.

7、DO_iGeneration positioning label simultaneously sends it to TPA (Fig. 3 is positioning label generating process)

● set storage DO_iThe server indexed set for uploading file data is combined into J_i, and DO_iIn server CS_j(j∈J_i) on deposit The blocks of files block number of storage is N_ij。DO_iRandom selectionDO_iTo each server CS_j(j∈J_i), Respectively with a_it(1≤t≤λ) is MHT parameters, and it is stored in CS_jOn N_ijIndividual data block, builds λ MHT.Each tree is used TR_ijt(1≤t≤λ) is represented, TR_ijtRoot node R_ijtRepresent.

Such as user DO₁In server CS₁On house 4 data block M altogether₁₁₁、M₁₁₂、M₁₁₃、M₁₁₄, use a_1t(1≤t ≤ λ) as parameter, TR_11tStructure such as Fig. 5, the root of tree is R_11t。

●DO_iBuild a positioning concordance listWherein a_it(1≤t≤λ) It is MHT parameters, makes chr_ijt=R_ijt(j∈J_i, 1≤t≤λ) and represent DO_iIt is stored in CS_jT-th positioning mark of upper all data Sign.If chr_ijtDo not exist, i.e.,Then make chr_ijt=-1.Wherein η represents the number of server.DO_iThe positioning rope of structure Draw Table I ndex_iAs shown in table 2.

●DO_iConcordance list will be positioned, that is, is positioned label and is sent to TPA.

Table 2 is user DO_iThe positioning concordance list Index of structure_i

8th, cloud user DO_iAudit request is initiated to TPA

● audit request is DO_iThe indexed set { (i, j, k) } of all data blocks of upper transmitting file, including cloud user DO_iIndex I, stores DO_iThe Cloud Server CS of data_jIndex j ∈ J_i, it is stored in Cloud Server CS_jOn data block index k.

9th, TPA is according to the audit request of user generation challenge (step 9~13 detailed process is reacted by Fig. 4)

● after receiving the audit request of multiple cloud users, all audit requests are done union by TPA, obtain total audit request Set Q=∪ { (i, j, k) }.

● TPA selects c block and is verified from total audit request set Q, order(1≤n≤c,(i_n,j_n, k_n) ∈ Q) c selected block is represented, build set I={ (i by element of the index of this c block_n,j_n,k_n) | n=1 ..., c}。

● TPA builds mapping f₁:I→Z_q,MeetWork as i_s=i_tWhen, haveOrder set

● TPA is randomly selectedTPA builds mapping MeetWork as i_s=i_tWhen, haveWherein MHT parametersBy cloud userGenerated in the 7th step, and TPA is sent to by positioning concordance list.Make MHT parameter sets

● always challenge chal=(I, K, α).

● the index set { j } for setting Cloud Server where the c data block chosen by TPA represents that TPA will be challenged always with U Chal is pressed by the difference of challenge Cloud Server, is divided into individual point of challenge { chal of | U |_j, | U | represents the element number in set U, MeetEach chal_j=(I_j,K_j,α_j), wherein I_j={ (i_n,j_n,k_n)|(i_n,j_n,k_n) ∈ I and j_n =j },

● TPA is by chal_jIt is sent to server CS_j。

10th, the server for receiving challenge calculates corresponding proof

● receive challenge chal_jCloud Server CS_jTo I_jIn each data block index (i_n,j_n,k_n), respectively with phase AnswerIt is key, is calculated using pseudo-random function fThat is each data One r of block index correspondence_n.WhereinChosen in the first step by CA and open.

● Cloud Server CS_jTo I_jIn belong to same user (such as user DO_i) all data block { (i_n,j_n,k_n)|(i_n, j_n,k_n)∈I_jAnd i_n=i, j_n=j } l ∈ [1, s] individual subregion, calculateWrapped Contain the s set { F of element_ij′_l| l=1 ..., s }, whereinRepresent that index is i_nCloud userStorage is in index It is the Cloud Server CS of j_jOn kth_nL-th subregion of individual data block.Cloud Server CS_jTo I_jIn all of user do above-mentioned Identical is operated, and all set for obtaining are done into the new set { F ' of union composition_ijl|i∈O_j, l=1 ..., s }, wherein O_j Represent I_jIn the set of the index of all cloud users that includes.

● to I_jIn all data blocks data label CS_jCalculate It is i-th_nIndividual cloud user is stored in jth_nIndividual service Kth on device_nThe data label of individual data block, be comprising two partsWith

● Cloud Server CS_jFor the cloud user DO that each is challenged_i(i∈O_j), to all data being stored thereon Block, with α_jIn with cloud user DO_iData block index corresponding a_iτIt is parameter, one is built according to method as shown in Figure 5 MHT, is expressed as TR_ijτ, its tree root is R_ijτ.Wherein α_jBy chal_j=(I_j,K_j,α_j) be given.All O_jThe data block of medium cloud user MHT tree roots user corresponding with its of structure, server index constitute set { (i, j, R_ijτ)|i∈O_j}。

● Cloud Server CS_jConstruction proves P_j=(S '_j,T′_j,{F′_ijl|i∈O_j, l=1 ..., s }, { (i, j, R_ijτ)|i ∈O_j})。

11st, all Cloud Servers challenged will demonstrate that and be sent to verifier TPA

12nd, TPA batch processings verification is proved

● after TPA receives all proofs returned by challenge server, these proofs are carried out with batch processing verification, verification step It is rapid as follows：First calculateWhether then verification equation (1) sets up, wherein equation (1) O represents the index set of involved cloud user in total challenge chal of verifier generation in.

If 1) equation (1) is set up, illustrate that batch processing verification passes through, i.e., the Data Audit knot of the cloud user being related in total challenge Fruit is to be verified.

If 2) equation (1) is invalid, to Cloud Server CS_jSet { (i, j, R that (j ∈ U) is returned_ijτ)|i∈O_jIn Each element (i, j, R_ijτ), TPA utilizes (i, j) and τ (τ is chosen by TPA in the 9th step), Query Location concordance list Index_iIn τ rows, the value chr in the row of jth+1_ijτ, and verify whether equation (2) is set up

If equation (2) is set up, cloud user DO is illustrated_iIt is stored in Cloud Server CS_jOn data it is complete, i.e. DO_iIt is stored in CS_jOn Data Audit result to be verified.

If equation (2) is invalid, cloud user DO is illustrated_iIt is stored in Cloud Server CS_jOn data destroyed, that is, audit Result does not pass through for checking.The index (i, j) of cloud user index and place server belonging to TPA output error data.

13rd, TPA is that the corresponding cloud user being verified sends the successful Audit Report of audit to auditing result.Tied to audit The index of the relative users transmission error block subordinate server that fruit does not pass through for checking.

Claims

1. a kind of to support batch processing to verify and possess the cloud data public audit method of wrong data positioning function, its step is：

1) cloud user DO_iTo the public private key pair of CA servers application oneself；

2) cloud user DO_iBy file division to be uploaded for some pieces and for each block generates a data label；

3) cloud user DO_iDuring each block and its data label uploaded into corresponding Cloud Server；

4) Cloud Server verifies the availability of its data label for receiving, if verification pass through, store the data label and its Corresponding piece；Then, cloud user DO_iGeneration uploads the positioning label and audit request of blocks of files and sends it to third party and examines Meter TPA；

5) after TPA receives the audit request, the data to multiple cloud user on multiple Cloud Servers throw down the gauntlet, receive by After the proof that the Cloud Server of challenge is returned, TPA verifies the correctness of the proof, if by verification, TPA is used to all clouds Family sends verification successful information；Otherwise TPA verification positioning labels, corresponding cloud user is returned to by the index of wrong data.

2. the method for claim 1, it is characterised in that each block is made up of s subregion；M_ijkRepresent cloud user DO_iDeposit It is placed on Cloud Server CS_jOn k-th data block, F_ijklRepresent DO_iIt is stored in Cloud Server CS_jOn k-th data block in L-th subregion.

3. method as claimed in claim 2, it is characterised in that to block M_ijkGenerate a data label σ_ijk=(S_ijk,T_ijk) Method is：Cloud user DO_iRandomly select a parameter u_i, to block M_ijkCalculateh_i=H₂(ID_i), hpk=H₃ (mpk), and calculateWherein, g is group G₁Generation unit, mpk for CA Your Majesty's key, ID_iIt is cloud user DO_iIdentity, sk_iIt is DO_iPrivate key, H₁()、H₂()、H₃()、H₄() is respectively four different Kazakhstan Uncommon function, v_lIt is subregion coefficient.

4. method as claimed in claim 3, it is characterised in that Cloud Server passes through formulaThe data mark that verification is received Availability is signed, e () is a bilinear map.

5. the method as described in claim 3 or 4, it is characterised in that the method that generation uploads the positioning label of blocks of files is：

51) storage DO is set_iThe Cloud Server indexed set for uploading blocks of files is combined into J_i, and cloud user DO_iIn Cloud Server CS_jUpper storage Blocks of files block number be N_ij；Cloud user DO_iλ parameter of random selection, a_itIt is wherein t-th parameter；

52)DO_iTo each Cloud Server CS_jRespectively with every a_itIt is MHT parameters, it is stored in Cloud Server CS_jOn N_ij Individual block builds a MHT；λ MHT is obtained altogether；Wherein, t=1 ..., λ, j ∈ J_i；The t MHT TR_ijtRepresent, TR_ijt Root node R_ijtRepresent；

53) chr is made_ijt=R_ijtIf, total η of Cloud Server, cloud user DO_iBuild a positioning concordance listWherein, chr_ijt=R_ijtRepresent DO_iIt is stored in CS_jThe t of upper all data Individual positioning label, j ∈ J_i；If chr_ijtDo not exist, i.e.,Then make chr_ijt=-1；The positioning concordance list is the positioning mark Sign.

6. method as claimed in claim 5, it is characterised in that after TPA is according to the audit request, on multiple Cloud Servers The method that the data of multiple cloud users throw down the gauntlet is：

61) audit request that TPA will be received does union, obtains an audit request set Q；

62) TPA selects c block and is verified from the audit request Q of all cloud users, and builds the index of the c block selected Set I={ (i_n,j_n,k_n) | n=1 ..., c }；Represent n-th audit request (i in I_n,j_n,k_n) data specified Block；Wherein i_nIt is data blockAffiliated user index, j_nIt is storage blockServer index, k_nForBlock index；

63) TPA builds mappingMeetWork as i_s=i_tWhen, haveMake key Set

64) TPA is randomly selectedBuild mappingMeetWork as i_s=i_t When, haveMake parameter sets

65) the total challenge chal=(I, K, α) of TPA generations；

66) the index set { j } of Cloud Server where the block challenged is represented with U, TPA presses by challenge cloud total challenge chal The difference of server, is divided into individual point of challenge { chal of | U |_j, haveTPA will divide challenge chal_j=(I_j, K_j,α_j) it is sent to Cloud Server CS_j；Wherein, I_j={ (i_n,j_n,k_n)|(i_n,j_n,k_n) ∈ I and j_n=j },

7. method as claimed in claim 6, it is characterised in that the method that the Cloud Server challenged generates the proof is：

71) challenge chal is received_jCloud Server CS_jTo I_jIn each data block index (i_n,j_n,k_n), respectively with corresponding 'sIt is key, is calculated using pseudo-random function fTo I_jIn belong to same L ∈ [1, s] individual subregion of all data blocks of user, calculatesGathered { F '_ijl| i∈O_j, l=1 ..., s }, wherein,Represent that index is i_nCloud userIt is the Cloud Server CS of j to store in index_j On kth_nL-th subregion of individual data block, O_jRepresent I_jIn the set of the index of all cloud users that includes；Then cloud service Device CS_jUsing I_jIn all data blocks data labelCalculate

72) Cloud Server CS_jFor the cloud user DO that each is challenged_i(i∈O_j), to all data blocks being stored thereon, with α_jIn with cloud user DO_iData block index corresponding a_iτIt is parameter, builds a MHT, is expressed as TR_ijτ, its tree root is R_ijτ, Wherein α_jBy chal_j=(I_j,K_j,α_j) be given；

73) by O_jIn the MHT tree roots that build of all blocks by challenge cloud user, and the corresponding cloud user of each tree root, cloud service Device index constitutes set { (i, j, R_ijτ)|i∈O_j, obtain Cloud Server CS_jProof P_j=(S '_j,T′_j,{F′_ijl|i∈O_j,l =1 ..., s }, { (i, j, R_ijτ)|i∈O_j})。

8. method as claimed in claim 7, it is characterised in that the method for the correctness of the verification proof is：TPA receives institute After having the proof that the Cloud Server challenged is beamed back, first calculateThen verify Equation：It is No establishment；If so, then verification passes through；If not, then to Cloud Server CS_jSet { (i, j, the R of return_ijτ)|i∈O_jIn Each element (i, j, R_ijτ), TPA utilizes (i, j) and τ Query Location concordance lists Index_iIn τ rows jth+1 arrange in value chr_ijτ, and verify equationWhether set up, if so, then verification passes through, and the cloud otherwise belonging to output error data is used Family indexes the index (i, j) with place server.