Integrity dynamic auditing method based on improved multi-branch tree in cloud environment

Abstract

The invention discloses an integrity dynamic auditing method based on an improved multi-branch tree in a cloud environment, which comprises two parts of an identity-based dynamic integrity auditing method and an improved multi-branch tree construction method, adopts an identity-based integrity auditing architecture, and provides an improved multi-branch tree authentication structure. Data block information is stored on non-leaf nodes of an authentication tree to improve the node utilization rate, an auxiliary root node is selected to describe the integrity of the node and all descendant nodes below the node, the concept of the locality principle is introduced into construction of a multi-branch tree, and the access frequency is added to the node to record the access frequency of the data block. When the cloud service provider carries out data block query on the verification request sent by the TPA, the authentication tree is traversed according to the access frequency, the whole authentication tree does not need to be traversed, searching is only carried out at the corresponding auxiliary root node, and then the length of an authentication path is shortened. And the communication overhead in the verification process is reduced while dynamic auditing is realized.

Description

technical field [0001] The invention belongs to the technical field of cloud computing security, and specifically relates to a dynamic integrity audit method based on an improved multi-branch tree in a cloud environment. The method proposes two technologies, an identity-based dynamic integrity audit method and an improved multi-branch tree construction. It can realize the dynamic update of files by users in the process of cloud integrity audit, and can improve the efficiency of integrity audit in cloud environment and reduce computing and communication overhead. Background technique [0002] With the rapid development of information technology and network technology, user data is growing explosively. The emergence of cloud services solves the limitations of local computing and storage of large-scale data. However, when data is outsourced and stored in the cloud, users lose access to Absolute control of data, cloud data may be tampered or destroyed intentionally or unintentio...

AI Technical Summary

Problems solved by technology

Although the existing data integrity audit methods have paid attention to these three aspects, most of the data integrity inspection structures based on third-party audits rely on the public key infrastructure. Users need to generate and manage public key certificates, and auditors need to Verify the certificate, which increases the overhead of users and third-party auditors, and affects the efficiency of integrity auditing. Most dynamic auditing schemes use the Merkle hash tree authentication structure. With the increase of data blocks, there is a gap in the authentication process. Therefore, it takes a long time for the cloud service provider to query the data block during the verification and update process, which brings additional computing and communication overhead to the cloud service provider.

Images