论文信息 - Cryptoanalysis of an Authenticated Data Structure Scheme With Public Privacy-Preserving Auditing

Cryptoanalysis of an Authenticated Data Structure Scheme With Public Privacy-Preserving Auditing

In this letter, we point out that the privacy-preserving adaptive trapdoor hash authentication tree scheme (published in IEEE TIFS, doi: 10.1109/TIFS.2020.2986879) can be invalidated by an adversarial cloud server: if the outsourced data is arbitrarily modified, the cloud server still can pass the third-party auditor’s auditing.

[1] Qian Liu,et al. An Adaptive Authenticated Data Structure With Privacy-Preserving for Big Data Stream in Cloud , 2020, IEEE Transactions on Information Forensics and Security.

[2] Chunxiang Xu,et al. Secure and efficient privacy-preserving public auditing scheme for cloud storage , 2014, Comput. Electr. Eng..

[3] Reza Curtmola,et al. Provable data possession at untrusted stores , 2007, CCS '07.

[4] Hovav Shacham,et al. Compact Proofs of Retrievability , 2008, Journal of Cryptology.

[5] Xuemin Sherman Shen,et al. Blockchain-Based Public Integrity Verification for Cloud Storage against Procrastinating Auditors , 2019, IEEE Transactions on Cloud Computing.

[6] Zoe L. Jiang,et al. Privacy-Preserving Public Auditing for Secure Cloud Storage , 2013, IEEE Transactions on Computers.