Journal of Cloud Computing: Advances, Systems and Applications (Jan 2021)

A threshold hybrid encryption method for integrity audit without trusted center

  • Yange Chen,
  • Hequn Liu,
  • Baocang Wang,
  • Baljinnyam Sonompil,
  • Yuan Ping,
  • Zhili Zhang

DOI
https://doi.org/10.1186/s13677-020-00222-6
Journal volume & issue
Vol. 10, no. 1
pp. 1 – 14

Abstract

Read online

Abstract Cloud storage with sharing services is increasingly popular among data owners. However, it is difficult for the users to know if the cloud server providers (CSPs) indeed protect their data. To verify data integrity and preserve data and key privacy in the group, this paper proposes a new threshold hybrid encryption for integrity auditing method without trusted center. The proposed method is developed based on the Advanced Encryption Standard (AES) and the Elliptic Curve Cryptography (ECC) with Shamir secret sharing. In this way, the key can be distributed and managed without trusted center, preserving the privacy of the key of the AES and users’ private key. Besides, we design and implement a novel integrity auditing and re-signature method which verifies the data integrity and solves the collusion question of the cloud and the revoked users. Security analysis and performance evaluation demonstrate that the proposed scheme realizes the correctness, security, and efficiency with a low communication and computation cost.

Keywords