On indistinguishability in remote data integrity checking

Author

Xinyu FAN
Guomin YANG, Singapore Management UniversityFollow
Yi MU
Yong YU

Publication Type

Journal Article

Version

publishedVersion

Publication Date

9-2015

Abstract

With a rapid growth of data storage in the cloud, data integrity checking in a remote data storage system has become an important issue. A number of protocols, which allow remote integrity checking by a third party, have been proposed. Although those protocols are provably secure, the data privacy issues in those protocols have not been considered. We believe that these issues are equally important since the communication flows of integrity proofs from the cloud server should not reveal any useful information of the stored data. In this paper, we introduce a new definition of data privacy called ‘INDPrivacy’ by an indistinguishability game. It is found that many existing remote integrity proofs are insecure under an IND-Privacy game. It is also found that by adopting witness indistinguishable proofs, the IND-Privacy is achievable. We provide an instantiation that captures data integrity, soundness and IND-privacy.

Keywords

cloud storage, data integrity, data privacy, witness indistinguishability

Discipline

Information Security

Research Areas

Information Systems and Management

Publication

Computer Journal

Volume

58

Issue

4

First Page

823

Last Page

830

ISSN

0010-4620

Identifier

10.1093/comjnl/bxt137

Publisher

Oxford University Press (OUP): Policy B - Oxford Open Option B

Citation

FAN, Xinyu; YANG, Guomin; MU, Yi; and YU, Yong. On indistinguishability in remote data integrity checking. (2015). Computer Journal. 58, (4), 823-830.
Available at: https://ink.library.smu.edu.sg/sis_research/7343

Creative Commons License

This work is licensed under a Creative Commons Attribution-NonCommercial-No Derivative Works 4.0 International License.

Additional URL

http://doi.org/10.1093/comjnl/bxt137