Identity-based privacy protection integrity detection method and system in cloud storage

Abstract

The invention discloses an identity-based privacy protection integrity detection method and system in a cloud storage. The method comprises the following steps of (1) a system initialization stage that a trusted third-party PKG generates a main private key and a public parameter; (2) a secret key extraction stage that the trusted third-party PKG generates a private key for a user according to useridentity; (3) a label generation stage that the user generates a data label for each data block by using the private key and uploads data and the corresponding data label to a cloud server; (4) a challenge inquiry stage that a verifier sends a challenge to the cloud server; (5) an evidence generation stage that the cloud server computes an integrity evidence according to challenge information andreturns the integrity evidence to the verifier; and (6) a verification stage that the verifier verifies the data integrity according to the evidence. According to the method and the system, the public key certificate management and calculation cost of the system is reduced based on an identity signature, and meanwhile, the identity privacy and the data privacy of the user are protected in a process of verifying the data integrity, and the safety of the system is improved.

Description

technical field [0001] The invention relates to cloud computing security technology, in particular to an identity-based privacy protection integrity detection method and system in cloud storage. Background technique [0002] Cloud storage is a very important service form in cloud computing. It is a service that puts storage resources on cloud servers for people to access. Users can easily access data anytime and anywhere by connecting to the cloud through any networked device. [0003] It is used to store their data on the cloud server in order to reduce the maintenance and computing burden on the data locally. [0004] Because the cloud server is untrustworthy, it may not save storage space, lose some data that users rarely or hardly access, and may hide the loss of data in order to maintain its own reputation, so it needs to verify the cloud before using the data. Check the data on a regular basis. [0005] At present, most of the cloud storage integrity detection metho...

AI Technical Summary

Problems solved by technology

However, the reliability of the results of this detection method is not high. Whether it comes from the user or the cloud server, there is a bias. bring a certain burden

[0007] In order to achieve fairness and reduce the burden on users, the third-party audit (TPA) is used to replace the user to complete the integrity detection task. Since the third-party audit (TPA) is semi-trusted, it may Obtain data as much as possible due to curiosity. At the same time, TPA must obtain the user's public key to complete the detection task during the integrity detection process, which will also expose the user's identity and privacy.

Images