Efficient real-time auditing and proof of violation for cloud storage systems

Gwan Hwan Hwang; Hung Fu Chen

doi:10.1109/CLOUD.2016.25

Efficient real-time auditing and proof of violation for cloud storage systems

Gwan Hwan Hwang, Hung Fu Chen

Department of Computer Science and Information Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

6 Citations (Scopus)

Abstract

In this paper we study how to develop an efficient real-time auditing and proof of violation (POV) scheme for cloud storage systems. A POV scheme enables a user or a service provider to produce cryptographic proofs which can be used to prove either the occurrence of the violation of properties or the innocence of the service provider. POV schemes are solutions for obtaining mutual nonrepudiation between users and the service provider in the cloud. After each file operation, a realtime auditing should be performed so that the violation of the service provider can be found instantly. Existing solutions need to cache the hash values of files in client devices and thus the overhead for storing and synchronizing hash values in client devices which share files is huge. We propose a novel scheme in which client devices do not need to cache any hash values of files. A small portion called slice of a binary hash tree is transferred to the client device for real-time auditing and it can support POV whenever the audit does not pass. Experimental results are presented that demonstrate the feasibility of the proposed scheme and show that our scheme outperforms previous work by one to two order of magnitude. Service providers of cloud storage can use the proposed scheme to provide a mutual nonrepudiation guarantee in their service-level agreements.

Original language	English
Title of host publication	Proceedings - 2016 IEEE 9th International Conference on Cloud Computing, CLOUD 2016
Editors	Ian Foster, Ian Foster, Nimish Radia
Publisher	IEEE Computer Society
Pages	132-139
Number of pages	8
ISBN (Electronic)	9781509026197
DOIs	https://doi.org/10.1109/CLOUD.2016.25
Publication status	Published - 2016 Jul 2
Event	9th International Conference on Cloud Computing, CLOUD 2016 - San Francisco, United States Duration: 2016 Jun 27 → 2016 Jul 2

Publication series

Name	IEEE International Conference on Cloud Computing, CLOUD
Volume	0
ISSN (Print)	2159-6182
ISSN (Electronic)	2159-6190

Other

Other	9th International Conference on Cloud Computing, CLOUD 2016
Country/Territory	United States
City	San Francisco
Period	2016/06/27 → 2016/07/02

Keywords

Cloud security
Cloud storage
Nonrepudiation
Proof of violation
Real-time auditing
Service-level agreement

ASJC Scopus subject areas

Artificial Intelligence
Information Systems
Software

Access to Document

10.1109/CLOUD.2016.25

Cite this

Hwang, G. H., & Chen, H. F. (2016). Efficient real-time auditing and proof of violation for cloud storage systems. In I. Foster, I. Foster, & N. Radia (Eds.), Proceedings - 2016 IEEE 9th International Conference on Cloud Computing, CLOUD 2016 (pp. 132-139). Article 7820234 (IEEE International Conference on Cloud Computing, CLOUD; Vol. 0). IEEE Computer Society. https://doi.org/10.1109/CLOUD.2016.25

Efficient real-time auditing and proof of violation for cloud storage systems. / Hwang, Gwan Hwan; Chen, Hung Fu.
Proceedings - 2016 IEEE 9th International Conference on Cloud Computing, CLOUD 2016. ed. / Ian Foster; Ian Foster; Nimish Radia. IEEE Computer Society, 2016. p. 132-139 7820234 (IEEE International Conference on Cloud Computing, CLOUD; Vol. 0).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Hwang, GH & Chen, HF 2016, Efficient real-time auditing and proof of violation for cloud storage systems. in I Foster, I Foster & N Radia (eds), Proceedings - 2016 IEEE 9th International Conference on Cloud Computing, CLOUD 2016., 7820234, IEEE International Conference on Cloud Computing, CLOUD, vol. 0, IEEE Computer Society, pp. 132-139, 9th International Conference on Cloud Computing, CLOUD 2016, San Francisco, United States, 2016/06/27. https://doi.org/10.1109/CLOUD.2016.25

@inproceedings{bdf0bf7aca21405581827eff3897531a,

title = "Efficient real-time auditing and proof of violation for cloud storage systems",

abstract = "In this paper we study how to develop an efficient real-time auditing and proof of violation (POV) scheme for cloud storage systems. A POV scheme enables a user or a service provider to produce cryptographic proofs which can be used to prove either the occurrence of the violation of properties or the innocence of the service provider. POV schemes are solutions for obtaining mutual nonrepudiation between users and the service provider in the cloud. After each file operation, a realtime auditing should be performed so that the violation of the service provider can be found instantly. Existing solutions need to cache the hash values of files in client devices and thus the overhead for storing and synchronizing hash values in client devices which share files is huge. We propose a novel scheme in which client devices do not need to cache any hash values of files. A small portion called slice of a binary hash tree is transferred to the client device for real-time auditing and it can support POV whenever the audit does not pass. Experimental results are presented that demonstrate the feasibility of the proposed scheme and show that our scheme outperforms previous work by one to two order of magnitude. Service providers of cloud storage can use the proposed scheme to provide a mutual nonrepudiation guarantee in their service-level agreements.",

keywords = "Cloud security, Cloud storage, Nonrepudiation, Proof of violation, Real-time auditing, Service-level agreement",

author = "Hwang, {Gwan Hwan} and Chen, {Hung Fu}",

note = "Publisher Copyright: {\textcopyright} 2016 IEEE.; 9th International Conference on Cloud Computing, CLOUD 2016 ; Conference date: 27-06-2016 Through 02-07-2016",

year = "2016",

month = jul,

day = "2",

doi = "10.1109/CLOUD.2016.25",

language = "English",

series = "IEEE International Conference on Cloud Computing, CLOUD",

publisher = "IEEE Computer Society",

pages = "132--139",

editor = "Ian Foster and Ian Foster and Nimish Radia",

booktitle = "Proceedings - 2016 IEEE 9th International Conference on Cloud Computing, CLOUD 2016",

}

TY - GEN

T1 - Efficient real-time auditing and proof of violation for cloud storage systems

AU - Hwang, Gwan Hwan

AU - Chen, Hung Fu

PY - 2016/7/2

Y1 - 2016/7/2

N2 - In this paper we study how to develop an efficient real-time auditing and proof of violation (POV) scheme for cloud storage systems. A POV scheme enables a user or a service provider to produce cryptographic proofs which can be used to prove either the occurrence of the violation of properties or the innocence of the service provider. POV schemes are solutions for obtaining mutual nonrepudiation between users and the service provider in the cloud. After each file operation, a realtime auditing should be performed so that the violation of the service provider can be found instantly. Existing solutions need to cache the hash values of files in client devices and thus the overhead for storing and synchronizing hash values in client devices which share files is huge. We propose a novel scheme in which client devices do not need to cache any hash values of files. A small portion called slice of a binary hash tree is transferred to the client device for real-time auditing and it can support POV whenever the audit does not pass. Experimental results are presented that demonstrate the feasibility of the proposed scheme and show that our scheme outperforms previous work by one to two order of magnitude. Service providers of cloud storage can use the proposed scheme to provide a mutual nonrepudiation guarantee in their service-level agreements.

AB - In this paper we study how to develop an efficient real-time auditing and proof of violation (POV) scheme for cloud storage systems. A POV scheme enables a user or a service provider to produce cryptographic proofs which can be used to prove either the occurrence of the violation of properties or the innocence of the service provider. POV schemes are solutions for obtaining mutual nonrepudiation between users and the service provider in the cloud. After each file operation, a realtime auditing should be performed so that the violation of the service provider can be found instantly. Existing solutions need to cache the hash values of files in client devices and thus the overhead for storing and synchronizing hash values in client devices which share files is huge. We propose a novel scheme in which client devices do not need to cache any hash values of files. A small portion called slice of a binary hash tree is transferred to the client device for real-time auditing and it can support POV whenever the audit does not pass. Experimental results are presented that demonstrate the feasibility of the proposed scheme and show that our scheme outperforms previous work by one to two order of magnitude. Service providers of cloud storage can use the proposed scheme to provide a mutual nonrepudiation guarantee in their service-level agreements.

KW - Cloud security

KW - Cloud storage

KW - Nonrepudiation

KW - Proof of violation

KW - Real-time auditing

KW - Service-level agreement

UR - http://www.scopus.com/inward/record.url?scp=85014218195&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85014218195&partnerID=8YFLogxK

U2 - 10.1109/CLOUD.2016.25

DO - 10.1109/CLOUD.2016.25

M3 - Conference contribution

AN - SCOPUS:85014218195

T3 - IEEE International Conference on Cloud Computing, CLOUD

SP - 132

EP - 139

BT - Proceedings - 2016 IEEE 9th International Conference on Cloud Computing, CLOUD 2016

A2 - Foster, Ian

A2 - Radia, Nimish

PB - IEEE Computer Society

T2 - 9th International Conference on Cloud Computing, CLOUD 2016

Y2 - 27 June 2016 through 2 July 2016

ER -

Efficient real-time auditing and proof of violation for cloud storage systems

Abstract

Publication series

Other

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this