A Secure and Decentralized Auditing Scheme for Cloud Ensuring Data Integrity and Fairness in Auditing

Tariqul Islam, Kamrul Hasan, Saheb Singh, Joon S. Park

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

With the advent of cloud storage services many users tend to store their data in the cloud to save storage cost. However, this has lead to many security concerns, and one of the most important ones is ensuring data integrity. Public verification schemes are able to employ a third party auditor to perform data auditing on behalf of the user. But most public verification schemes are vulnerable to procrastinating auditors who may not perform auditing on time. These schemes do not have fair arbitration also, i.e. they lack a way to punish the malicious Cloud Service Provider (CSP) and compensate user whose data has been corrupted. On the other hand, CSP might be storing redundant data that could increase the storage cost for the CSP and computational cost of data auditing for the user. In this paper, we propose a Blockchain-based public auditing and deduplication scheme with a fair arbitration system against procrastinating auditors. The key idea requires auditors to record each verification using smart contract and store the result into a Blockchain as a transaction. Our scheme can detect and punish the procrastinating auditors and compensate users in the case of any data loss. Additionally, our scheme can detect and delete duplicate data that improve storage utilization and reduce the computational cost of data verification. Experimental evaluation demonstrates that our scheme is provably secure and does not incur overhead compared to the existing public auditing techniques while offering an additional feature of verifying the auditor's performance.

Original languageEnglish (US)
Title of host publicationProceedings - 2022 IEEE 9th International Conference on Cyber Security and Cloud Computing and 2022 IEEE 8th International Conference on Edge Computing and Scalable Cloud, CSCloud-EdgeCom 2022
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages74-79
Number of pages6
ISBN (Electronic)9781665480666
DOIs
StatePublished - 2022
Event9th IEEE International Conference on Cyber Security and Cloud Computing and 8th IEEE International Conference on Edge Computing and Scalable Cloud, CSCloud-EdgeCom 2022 - Xi�an, China
Duration: Jun 25 2022Jun 27 2022

Publication series

NameProceedings - 2022 IEEE 9th International Conference on Cyber Security and Cloud Computing and 2022 IEEE 8th International Conference on Edge Computing and Scalable Cloud, CSCloud-EdgeCom 2022

Conference

Conference9th IEEE International Conference on Cyber Security and Cloud Computing and 8th IEEE International Conference on Edge Computing and Scalable Cloud, CSCloud-EdgeCom 2022
Country/TerritoryChina
CityXi�an
Period6/25/226/27/22

Keywords

  • Blockchain
  • Confidentiality
  • Convergent Encryption
  • Deduplication
  • Procrastinating Auditor
  • Public Data Auditing

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Information Systems
  • Information Systems and Management
  • Safety, Risk, Reliability and Quality

Fingerprint

Dive into the research topics of 'A Secure and Decentralized Auditing Scheme for Cloud Ensuring Data Integrity and Fairness in Auditing'. Together they form a unique fingerprint.

Cite this