Skip to main content
SpringerLink
Log in

On the Insecurity of a Certificateless Public Verification Protocol for the Outsourced Data Integrity in Cloud Storage

  • Conference paper
  • First Online:
Advances in Internet, Data & Web Technologies (EIDWT 2022)

Part of the book series: Lecture Notes on Data Engineering and Communications Technologies ((LNDECT,volume 118))

  • 512 Accesses

Abstract

Cloud auditing is an important method to check the integrity of the outsourced cloud storage. Until now, there are many cryptographic ways to implement the cloud audit protocol, such as PKI based cloud audit protocol, identity based cloud audit protocol and certificateless based cloud audit protocol. In this short paper, we focus on a certificateless based cloud audit protocol proposed by Huang et al. in 2017. Although this is a valuable protocol, we show this protocol has some flaw. Concretely the certificateless signature can be forged, and thus the audit protocol is not secure.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 219.00
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 279.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

  1. Ateniese, G., et al.: Provable data possession at untrusted stores. In: CCS 2007, pp. 598–609 (2007)

    Google Scholar 

  2. Shacham, H., Waters, B.: Compact proofs of retrievability. In: Pieprzyk, J. (ed.) ASIACRYPT 2008. LNCS, vol. 5350, pp. 90–107. Springer, Heidelberg (2008). https://doi.org/10.1007/978-3-540-89255-7_7

    Chapter  Google Scholar 

  3. Cash, D., Küpçü, A., Wichs, D.: Dynamic proofs of retrievability via oblivious RAM. In: Johansson, T., Nguyen, P.Q. (eds.) EUROCRYPT 2013. LNCS, vol. 7881, pp. 279–295. Springer, Heidelberg (2013)

    Chapter  Google Scholar 

  4. Huang, L., Zhou, J., Zhang, G., Sun, J., Wang, T., Vajdi, A.: Certificateless public verification for the outsourced data integrity in cloud storage. J. Circ. Syst. Comput. 27(11), 1850181 (2018)

    Article  Google Scholar 

Download references

Acknowledgements

This work is supported by Natural Science Basic Research Plan in Shaanxi Province of China [No. 2018JM6028], the Foundation of Guizhou Provincial Key Laboratory of Public Big Data [No. 2019BDKFJJ008], Engineering University of PAPs Funding for Scientific Research Innovation Team [No. KYTD201805] and Engineering University of PAPs Funding for Key Researcher [No. KYGG202011].

Author information

Authors and Affiliations

  1. Engineering University of People’s Armed Police, Xi’an, People’s Republic of China

    Xu An Wang, Xiaozhong Pan, Lixian Wei & Yize Zhao

Authors
  1. Xu An Wang
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Xiaozhong Pan
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Lixian Wei
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Yize Zhao
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Department of Information and Communication Engineering, Fukuoka Institute of Technology, Fukuoka, Japan

    Leonard Barolli

  2. Department of Information and Computer Engineering, Okayama University of Science, Okayama, Japan

    Elis Kulla

  3. Department of Information and Communication Engineering, Fukuoka Institute of Technology, Fukuoka, Japan

    Makoto Ikeda

Rights and permissions

Reprints and permissions

Copyright information

© 2022 The Author(s), under exclusive license to Springer Nature Switzerland AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Wang, X.A., Pan, X., Wei, L., Zhao, Y. (2022). On the Insecurity of a Certificateless Public Verification Protocol for the Outsourced Data Integrity in Cloud Storage. In: Barolli, L., Kulla, E., Ikeda, M. (eds) Advances in Internet, Data & Web Technologies. EIDWT 2022. Lecture Notes on Data Engineering and Communications Technologies, vol 118. Springer, Cham. https://doi.org/10.1007/978-3-030-95903-6_8

Download citation

Publish with us

Policies and ethics

Search

Navigation