TY - GEN
T1 - A practical third-party auditor prototype for cloud storage service
AU - Yeh, Lo Yao
N1 - Publisher Copyright:
© 2016 IEEE.
PY - 2016/7/2
Y1 - 2016/7/2
N2 - Cloud storage service is a prominent application for recent years. Several famous cloud service providers (CSPs) offer some free volume to users and provide the file synchronization as a convenient function. However, whether the files stored at a CSP are secure or not is a main concern for users. However, it is reported that some famous CSPs lack sound security protection, like no password verification or the missing of stored files. Therefore, how to ensure the security strength of CSPs is an important issue. Nevertheless, most of current CSPs did not provide convictive security mechanism to beef up their security. For example, most of CSPs only claim that they will encrypt the stored files in their storage servers, but the encryption key are picked by the CSPs themselves. In this paper, a practical third-party auditor (TPA) prototype for cloud storage service is proposed to strengthen the properties of confidentiality, integrity, and availability. Moreover, the TPA cannot realize the content of the stored file during verification. Our scheme also provides a useful function to measure the failure time of the CSP.
AB - Cloud storage service is a prominent application for recent years. Several famous cloud service providers (CSPs) offer some free volume to users and provide the file synchronization as a convenient function. However, whether the files stored at a CSP are secure or not is a main concern for users. However, it is reported that some famous CSPs lack sound security protection, like no password verification or the missing of stored files. Therefore, how to ensure the security strength of CSPs is an important issue. Nevertheless, most of current CSPs did not provide convictive security mechanism to beef up their security. For example, most of CSPs only claim that they will encrypt the stored files in their storage servers, but the encryption key are picked by the CSPs themselves. In this paper, a practical third-party auditor (TPA) prototype for cloud storage service is proposed to strengthen the properties of confidentiality, integrity, and availability. Moreover, the TPA cannot realize the content of the stored file during verification. Our scheme also provides a useful function to measure the failure time of the CSP.
KW - availability
KW - Cloud storage service
KW - file integrity
KW - third-party auditor
UR - http://www.scopus.com/inward/record.url?scp=85016943114&partnerID=8YFLogxK
U2 - 10.1109/ICSESS.2016.7883187
DO - 10.1109/ICSESS.2016.7883187
M3 - 會議論文篇章
AN - SCOPUS:85016943114
T3 - Proceedings of the IEEE International Conference on Software Engineering and Service Sciences, ICSESS
SP - 796
EP - 799
BT - ICSESS 2016 - Proceedings of 2016 IEEE 7th International Conference on Software Engineering and Service Science
A2 - Babu, M. Surendra Prasad
A2 - Wenzheng, Li
PB - IEEE Computer Society
T2 - 7th IEEE International Conference on Software Engineering and Service Science, ICSESS 2016
Y2 - 26 August 2016 through 28 August 2016
ER -