摘要
针对传统云端数据完整性验证方案中存在过度依赖完全可信第三方审计者(TPA)、复杂的密钥管理和不支持数据访问者授权等问题,该文提出一种基于区块链和雾计算的去中心化数据完整性审计方案。为了实现审计方案的去中心化,使用雾节点和智能合约代替第三方审计者。利用区块链设计智能合约保障方案中各个实体的公平交易;将审计过程生成的证据存储在区块链中以防止各个实体的不诚实行为。引入无证书密码体制,解决了传统审计方案中复杂的密钥托管和证书管理问题。此外,通过加密累加器实现访问用户授权和身份认证。分析结果表明,该方案满足签名的不可伪造性,与同类方案相比具有较高的计算性能。
Focusing on the problems of over-reliance on Third-Party Auditors(TPA),complex key and certificate management and data leakage in traditional cloud data integrity auditing scheme,a decentralized data integrity verification audit scheme based on blockchain and edge computing is proposed.In order to achieve the decentralization of the audit scheme,fog nodes and smart contracts are used to replace the third-party auditors.Using blockchain to design smart contracts to ensure fair transactions among entities.The proofs generated by audit process are stored in the blockchain,which can prevent the dishonest behavior of each entity.The certificateless cryptosystem is introduced to solve the complex key escrow and certificate management problems in the traditional audit scheme.In addition,the access authorization and identity authentication of cloud data users is realized through encrypted accumulators.The analysis results show that this scheme satisfies the robustness of audit and the unforgeability of signatures,and has higher computing performance compared with similar schemes.
作者
杨小东
王秀秀
李茜茜
周航
王彩芬
YANG Xiaodong;WANG Xiuxiu;LI Xixi;ZHOU Hang;WANG Caifen(College of Computer Science and Engineering,Northwest Normal University,Lanzhou 730070,China;College of Big Data and Internet,Shenzhen Technology University,Shenzhen 518118,China)
出处
《电子与信息学报》
EI
CSCD
北大核心
2023年第10期3759-3766,共8页
Journal of Electronics & Information Technology
基金
国家自然科学基金(61662069,61562077)
中国博士后科学基金(2017M610817)
兰州市科技计划项目(2013-4-22)
西北师范大学青年教师科研能力提升计划(NWNU-LKQN-14-7)。
关键词
云存储
完整性验证
区块链
雾计算
无证书
Cloud storage
Integrity verification
Blockchain
Fog computing
Certificateless
