User-oriented cloud storage data integrity protection method

Abstract

The invention discloses a user-oriented cloud storage data integrity protection method. The method includes the steps of 1, uploading, wherein a user side segments and numbers a file to generate intra-block redundancy check codes, the hash value of each file block is calculated and saved as a range-based 2-3 tree, the hash values are linked into one value and signed with private keys, and inter-block redundancy check codes are generated and encrypted with stream substitution secret keys; 2, verification, wherein a cloud management node sends a verification request to a corresponding cloud storage server, corresponding original data and algebraic signatures of the inter-block redundancy check codes corresponding to the original data are calculated and returned to the user side for data integrity verification, and the step 3 is executed if data destruction is found; 3, recovery, wherein the user side acquires all the file blocks on corresponding branch trees from a cloud side according to tree information and performs error recovery on the file blocks through erasure codes of the file blocks. According to the method, integrity verification and recovery are performed on the dynamic data stored in the cloud side from the user perspective.

Description

technical field [0001] The present invention proposes a dynamic data integrity protection method in a cloud storage environment—ECAS-FDPOR (Erasure Code and Algebraic Signatures-FDPOR), which verifies the integrity of dynamic data stored in the cloud from the user's perspective, and can protect the damaged data when the data is damaged. Data recovery to a certain extent. The technical field of the present invention relates to cloud storage systems, data integrity, erasure codes, and algebraic signatures. Background technique [0002] The continuous development of Internet technology and the use of computer technology have opened a new era of cloud storage services. When users use cloud storage services, the cloud provider is responsible for data storage, organization, management, reliability, and availability guarantees, so that users do not have to build their own data centers and reduce user costs. However, while cloud storage technology brings great storage convenience ...

AI Technical Summary

Problems solved by technology

The problem with the solution is that it is necessary to calculate the hash value of all data block data and store the verification tag during verification, which leads to the calculation of the hash value of all data for a part of a data block challenge and the storage of the verification tag takes up a lot of time. The problem of necessary storage overhead; in terms of data recovery, the scheme applies error correction code (ECC) to the granularity of the data block. Although it has certain recovery ability, the recovery ability and recovery range need to be improved

Erasure codes are used in the above EDS2 and HAIL schemes, and ECC (error-correcting code) is used in the FDPOR scheme. Compared with erasure codes, ECC is simpler to implement, but has limited recovery capabilities.

Images