A mutual nonrepudiation protocol for cloud storage with interchangeable accesses of a single account from multiple devices

Gwan Hwan Hwang*, Jenn Zjone Peng, Wei Sian Huang

*此作品的通信作者

研究成果: 書貢獻/報告類型會議論文篇章

14 引文 斯高帕斯(Scopus)

摘要

Obtaining mutual nonrepudiation between the user and service provider is crucial in cloud storage. One of the solutions for mutual nonrepudiation is based on logging attestations, which are signed messages. For every request, clients and service provider exchange attestations. These attestations will be used in an auditing protocol to verify their behavior. The chain-hashing scheme chains attestations and stores them in service provider for supporting write serializability and read freshness of files. However, the chain-hashing scheme is inefficient when files in an account can be accessed by multiple client devices interchangeably. In this paper we first show that the chain-hashing scheme cannot resist roll-back attack from service provider unless client devices keep all the attestations or there exists a way to broadcast the last attestation to all the client devices. We propose a scheme that can guarantee mutual nonrepudiation between the user and service provider without requiring the client devices to exchange any messages, and each client device only has to store the last attestation it received. We also propose how to apply the hash tree to remove accumulated attestations. The results from related experiments demonstrate the feasibility of the proposed scheme. A service provider of cloud storage can use the proposed scheme to provide a mutual nonrepudiation guarantee in their service-level agreement.

原文英語
主出版物標題Proceedings - 12th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2013
頁面439-446
頁數8
DOIs
出版狀態已發佈 - 2013
事件12th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2013 - Melbourne, VIC, 澳大利亚
持續時間: 2013 7月 162013 7月 18

出版系列

名字Proceedings - 12th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2013

其他

其他12th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2013
國家/地區澳大利亚
城市Melbourne, VIC
期間2013/07/162013/07/18

ASJC Scopus subject areas

  • 電腦網路與通信

指紋

深入研究「A mutual nonrepudiation protocol for cloud storage with interchangeable accesses of a single account from multiple devices」主題。共同形成了獨特的指紋。

引用此