DIRA: Enabling decentralized data integrity and reputation audit via blockchain

Multi-cloud storage is a promising platform to offer resilient solution for clients in financial or confidentiality aspects. The research of provable data possession (PDP) schemes has long been a popular topic in the perspective of enhancing trust between clients and clouds. For multi-cloud, the works almost rely on centralized agent server called organizer to control the clouds and third party auditor (TPA) to realize public verification and reputation system. However, such centralized structure brings in the risk of collusion attack that malicious clouds can collaborate with TPA to deceive the client. This paper tries to explore a new way to construct decentralized integrity and reputation audit (DIRA) scheme, by taking advantage of improved blockchain with two-step transaction validation and removing all the centralized structure from the multi-cloud storage. The analysis shows that the DIRA scheme obtains the resistance to collusion attack.

[1]  Ertem Esiner,et al.  FlexDPDP , 2016, ACM Trans. Storage.

[2]  Mary Baker,et al.  The LOCKSS peer-to-peer digital preservation system , 2005, TOCS.

[3]  Gail-Joon Ahn,et al.  Cooperative Provable Data Possession for Integrity Verification in Multicloud Storage , 2012, IEEE Transactions on Parallel and Distributed Systems.

[4]  Reza Curtmola,et al.  Provable data possession at untrusted stores , 2007, CCS '07.

[5]  Cheng-Zhong Xu,et al.  Enabling Non-repudiable Data Possession Verification in Cloud Storage Systems , 2014, 2014 IEEE 7th International Conference on Cloud Computing.

[6]  Cong Wang,et al.  Dynamic Data Operations with Deduplication in Privacy-Preserving Public Auditing for Secure Cloud Storage , 2017, 22017 IEEE International Conference on Computational Science and Engineering (CSE) and IEEE International Conference on Embedded and Ubiquitous Computing (EUC).

[7]  Ari Juels,et al.  Pors: proofs of retrievability for large files , 2007, CCS '07.

[8]  Albert Y. Zomaya,et al.  Remote Data Auditing in Cloud Computing Environments , 2015, ACM Comput. Surv..

[9]  Yining Qi,et al.  Reputation Audit in Multi-cloud Storage through Integrity Verification and Data Dynamics , 2016, 2016 IEEE 9th International Conference on Cloud Computing (CLOUD).

[10]  Cong Wang,et al.  Enabling Public Auditability and Data Dynamics for Storage Security in Cloud Computing , 2011, IEEE Transactions on Parallel and Distributed Systems.

[11]  Roberto Tamassia,et al.  Dynamic provable data possession , 2009, IACR Cryptol. ePrint Arch..

[12]  Reza Curtmola,et al.  Remote data checking for network coding-based distributed storage systems , 2010, CCSW '10.

[13]  Marten van Dijk,et al.  Iris: a scalable cloud file system with efficient integrity checks , 2012, ACSAC '12.

[14]  Hovav Shacham,et al.  Compact Proofs of Retrievability , 2008, Journal of Cryptology.

[15]  Ari Juels,et al.  Proofs of retrievability: theory and implementation , 2009, CCSW '09.