sadgur: secure auditing, deduplication and group user ... batch auditing and reduces the time cost...

Download SADGUR: SECURE AUDITING, DEDUPLICATION AND GROUP USER ... batch auditing and reduces the time cost of

Post on 02-Nov-2019

0 views

Category:

Documents

0 download

Embed Size (px)

TRANSCRIPT

  • International Journal of Computer Engineering and Applications, Volume XIII, Issue II, Feb. 19, www.ijcea.com ISSN 2321-3469

    Geeta C M, Mithila Lakshmi G, Shreyas Raju R G, Raghavendra S, Rajkumar Buyya, Venugopal K R,

    S S Iyengar, and L M Patnaik 1

    SADGUR: SECURE AUDITING, DEDUPLICATION AND GROUP

    USER REVOCATION OF SHARED DATA IN CLOUD

    Geeta C M1, Mithila Lakshmi G1, Shreyas Raju R G1, Raghavendra S2, Rajkumar Buyya3,

    Venugopal K R4, S S Iyengar5, and L M Patnaik6

    1Department of Computer Science and Engineering, University Visvesvaraya College of

    Engineering, Bangalore University, Contact:geetacmara@gmail.com

    2Department of Computer Science and Engineering, Vivekananda College of Engineering and

    Technology, Puttur, India

    3Cloud Computing and Distributed Systems (CLOUDS) Lab, School of Computing and Information

    Systems, The University of Melbourne, Australia

    4Bangalore University, Bengaluru, India

    5Department of Computer Science and Engineering, Florida International University, USA

    6INSA, National Institute of Advanced Studies, Indian Institute of Science Campus, Bengaluru, India

    ABSTRACT:

    With cloud storage and sharing facilities provided by the cloud, customers can effectively change

    and distribute information as a cluster. To convince distributed information sincerity be certified

    publicly customers in the cluster need to estimate signatures on complete chunks in distributed

    information. Distinct chunks in combined information are signed by distinct customers because of

    information alterations carried out by individual user. For safety purpose, when a customer is

    discarded from the cluster, the chunks that have been formerly signed by the renunciated client

    required to be re-signed by the prevailing client. This approach is inefficient due to the huge

    amount of distributed information in the cloud. By exploiting the approach of proxy re-signatures,

    the cloud is authorized to re-sign chunks in support of current customers while customer

    repudiation. When individual customers deploy the identical information to the cloud storage,

    repository space has identical copies, hence deduplication technology is normally utilized to lower

    the volume and bandwidth prerequisites of utilities by removing repetitious information and saving

    only a single copy of them. Aiming at realizing both information honesty and deduplication in

    cloud, we introduce a novel Secure Auditing, Deduplication and Group User Revocation of Shared

  • SADGUR: SECURE AUDITING, DEDUPLICATION AND GROUP USER REVOCATION OF SHARED DATA IN CLOUD

    Geeta C M, Mithila Lakshmi G, Shreyas Raju R G, Raghavendra S, Rajkumar Buyya, Venugopal K R,

    S S Iyengar, and L M Patnaik 2

    Data in Cloud (SADGUR). Our scheme is collusion resistant, supports efficient customer

    revocation, CSP efficiently re-signs the revoked customer blocks. Performance analysis show that

    our mechanism achieves protected file level and block level deduplication and has reduced the time

    cost of tag generation, supports efficient batch auditing and average auditing time cost is decreased

    compared to the existing mechanism.

    Keywords: Cloud Computing, Deduplication, Public Auditing, Proof of Retrievability, Proof of

    Ownership, User Revocation.

    [1] INTRODUCTION

    Distributed repository is a characteristic of networked organization repository where

    information is hoarded in virtualized pools of repository that are globally accommodated by third

    parties. Distributed repository grants customers with advantages, varying from reduction in cost and

    decreased benefits, to portability conveniences and extensible utilities. These important

    characteristics overwhelm the clients to make use of and save their respective documents to the

    distributed repository. Though distributed depository scheme has been widely ratified, it is

    unsuccessful to furnish few fundamental advanced requirements for instance, the proficiency of

    verifying sincerity of cloud data and identifying duplicated documents by distributed servers.

    With information repository and distributing facilities (e.g., Drop-box and Google Drive)

    managed by the CSP, clients can comfortably function jointly as a cluster by distributing information

    with one another. Additionally, once a customer generates distributed information in the cloud, each

    customer in the cluster not only retrieves and change distributed information,

    but also distributes the most recent version of the distributed information with all the customers of

    the cluster. Even though cloud suppliers assure a protected and trustworthy setting to the customers,

    the sincerity of information in the cloud may be negotiated, because of the presence of

    hardware/software breakdown and individual mistakes [1]. To preserve the honesty of information in

    the cloud, a signature is appended to each chunk of the document, and the sincerity of data depends

    upon the preciseness of all the signatures. Hence, a public examiner systematically verifies the

    information sincerity in the cloud without retrieving the complete information, known as public

    auditing.

    Almost all of the existing schemes [2], [3], aim on confirming the sincerity of individual

    information. But, none of these schemes consider the adeptness of customer repudiation when

    verifying the reliability of distributed information in the cloud. With distributed data, when a

    customer alters a chunk, he further estimates a fresh signature for the altered chunk. As a result of

    the changes made by distinct customers, different chunks are signed by distinct customers. For safety

    purpose, while a customer misconducts, the customer need to be repudiated from the cluster.

    Therefore, the repudiated customer is not able to retrieve and alter the distributed data. As a result,

    though the content of distributed information is not altered while client renunciation, the chunks that

    were earlier signed by the renunciated client, are re-signed by the Cloud Service Provider (CSP). By

    exploiting the concept of agent re-signatures [4], the CSP is authorized to re-sign blocks in support

    of current customers during customer repudiation. Therefore, the honesty of the whole data can be

    validated utilizing public keys of clients in the cluster.

    Since the cloud services have been utilized globally, it is associated with increasing size of

    information hoarded at distant distributed servers. Amidst these remote cached documents, almost all

    of them are identical; as per the study by EMC [5], 75 percent of present digital information are

  • International Journal of Computer Engineering and Applications, Volume XIII, Issue II, Feb. 19, www.ijcea.com ISSN 2321-3469

    Geeta C M, Mithila Lakshmi G, Shreyas Raju R G, Raghavendra S, Rajkumar Buyya, Venugopal K R,

    S S Iyengar, and L M Patnaik 3

    identical documents. This evidence introduces a innovation namely deduplication, where the

    distributed servers deduplicate by maintaining only one copy for each file (or chunk) and create a

    link to the document (or chunk) for each user who claims or

    inquires to save the identical document (or chunk). We propose Secure Auditing, Deduplication and

    Group User Revocation of Shared Data in Cloud (SADGUR) scheme in which the CSP

    performs efficient deduplication on the information uploaded by cluster manager as well as checks

    for deduplication of the existing customers chunks. Further, the public verifier efficiently performs

    shared information sincerity verification and also supports batch auditing.

    1.1 Motivation

    Presently the customers and organizations are attracted by the storage and data sharing

    facilities administered by the cloud. When a group of customers are sharing data, there may

    be a possibility of a customer to perform malicious activity. So the cluster manager detects such a

    customer and repudiates him from the group. In addition to this, one basic challenge of

    today’s cloud repository service is the administration of the ever-increasing capacity of information.

    Instead of preserving infinite data duplicates, deduplication removes repetitive

    information by maintaining only one genuine document and pointing other repetitive information to

    that document. This paper focuses on shared data auditing with efficient customer repudiation and

    also perform efficient integrity auditing and deduplication of the information uploaded by cluster

    manager as well as checks for deduplication of the existing customer’s chunks. The scheme supports

    batch auditing and reduces the time cost of tag generation.

    1.2 Contribution

    In this paper, we introduce a new Secure Auditing, Deduplication and Group User

    Revocation of Shared Data in Cloud (SADGUR) that supports secure file level and chunk

    level deduplication, safe integrity auditing of revoked customer chunks and integrity verification of

    shared information by public verifier. Notably, our contributions can be outlined as follows:

     We present a novel Secure Auditing, Deduplication and Group User Revocation of Shared

    Data in Cloud (SADG

Recommended

View more >