A New Data Integrity Verification Mechanism for SaaS

Shi, Yuliang; Zhang, Kun; Li, Qingzhong

doi:10.1007/978-3-642-16515-3_30

Yuliang Shi²⁰,
Kun Zhang²⁰ &
Qingzhong Li²⁰

Part of the book series: Lecture Notes in Computer Science ((LNISA,volume 6318))

Included in the following conference series:

International Conference on Web Information Systems and Mining

3069 Accesses
5 Citations

Abstract

Recently, the Software-as–a-Service (SaaS) model has been gaining more and more attention. In SaaS model, both applications and databases will be deployed in servers managed by untrustworthy service providers. Thus, the service providers might maliciously delete, modify or falsify tenants’ data due to some reasons, which brings great challenge to adoption of SaaS model. So this paper defines data integrity concept for SaaS data storage security, which could be measured in terms of durable integrity, correct integrity and provenance integrity. Basing on the meta-data driven data storage model and data chunking technology, SaaS data integrity issues will be mapped as a series of integrity issues of data chunks. Via cyclic group, data chunks traversal approach for verification is presented, and then SaaS data integrity verification can be realized based on the integrity verification of data chunks. Also, we demonstrate the correctness of the mechanism through analysis in this paper.

The research is supported by the National Natural Science Foundation of China under Grant No.60673130 and No.90818001, the Natural Science Foundation of Shandong Province of China under Grant No.Y2007G24 and No.Y2007G38.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 39.99; Price excludes VAT (USA)

Softcover Book: USD 54.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

References

Wang, C., Wang, Q., Ren, K., Lou, W.: Ensuring data storage security in cloud computing. In: 17th IEEE International Workshop on Quality of Service (IWQoS 2009), pp. 1–9. IEEE Press, New York (2009)
Google Scholar
Wang, Q., Wang, C., Li, J., Ren, K., Lou, W.: Enabling Public Verifiability and Data Dynamics for Storage Security in Cloud Computing. In: Backes, M., Ning, P. (eds.) ESORICS 2009. LNCS, vol. 5789, pp. 355–370. Springer, Heidelberg (2009)
Chapter Google Scholar
Bowers, K., Juels, A., Oprea, A.: HAIL: a high-availability and integrity layer for cloud storage. In: Proceedings of the 2009 ACM Conference on Computer and Communications Security (CCS 2009), pp. 187–198. ACM, New York (2009)
Google Scholar
Tian, X., Wang, X., Gao, M., Zhou, A.: Database as a Service – Security and Privacy Preserving. Journal of Software 21(5), 991–1006 (2010)
Article Google Scholar
Xie, M., Wang, H., Yin, J., Meng, X.: Integrity Auditing of Outsourced Data. In: Proceedings of the 33^rd International Conference on Very Large Data Bases (VLDB 2007), pp. 782–793. ACM, New York (2007)
Google Scholar
Wang, H., Yin, J., Perng, C., Yu, P.: Dual encryption for query integrity assurance. In: Proceedings of the 17^th ACM Conference on Information and Knowledge Management (CIKM 2008), pp. 863–872. ACM, New York (2008)
Google Scholar
Juels, A., Kaliski Jr., B.: PORs: proofs of retrievability for large files. In: Proceedings of the 2007 ACM Conference on Computer and Communications Security (CCS 2007), pp. 584–597. ACM, New York (2007)
Google Scholar
Ateniese, G., Burns, R., Curtmola, R., Herring, J., Kissner, L., Peterson, Z., Song, D.: Provable data possession at untrusted stores. In: Proceedings of the 2007 ACM Conference on Computer and Communications Security (CSS 2007), pp. 598–609. ACM, New York (2007)
Google Scholar
Zhang, K., Shi, Y., Li, Q., Bian, J.: Data Privacy Preserving Mechanism based on Tenant Customization for SaaS. In: Proceedings of 2009 International Conference on Multimedia Information Networking and Security (MINES 2009), pp. 599–603. IEEE Computer Society, Los Alamitos (2009)
Chapter Google Scholar

Download references

Author information

Authors and Affiliations

School of Computer Science and Technology, Shandong University, Jinan, P.R. China
Yuliang Shi, Kun Zhang & Qingzhong Li

Authors

Yuliang Shi
View author publications
You can also search for this author in PubMed Google Scholar
Kun Zhang
View author publications
You can also search for this author in PubMed Google Scholar
Qingzhong Li
View author publications
You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

Department of Business Administration, Caritas Francis Hsu College, 18 Chui Ling Road, Tseung Kwan O, Hong Kong, China
Fu Lee Wang
Department of Computer and Inforamtion Science, University of Macau, Av. Padre Tomás Pereira, Taipa, Macau, SAR, China
Zhiguo Gong
School of Computer, Shanghai University, 99 Shangda Road, 200444, Shanghai, China
Xiangfeng Luo
School of Computer, Nanjing University of Posts and Telecommunications, 210003, Nanjing, China
Jingsheng Lei

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Shi, Y., Zhang, K., Li, Q. (2010). A New Data Integrity Verification Mechanism for SaaS. In: Wang, F.L., Gong, Z., Luo, X., Lei, J. (eds) Web Information Systems and Mining. WISM 2010. Lecture Notes in Computer Science, vol 6318. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-16515-3_30

Download citation

DOI: https://doi.org/10.1007/978-3-642-16515-3_30
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-16514-6
Online ISBN: 978-3-642-16515-3
eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics