Please use this identifier to cite or link to this item: http://hdl.handle.net/10397/55942
Title: Comments on a public auditing mechanism for shared cloud data service
Authors: Yu, Y
Ni, J
Au, MH 
Mu, Y
Wang, B
Li, H
Keywords: Servers
Computer security
Auditing
Cloud computing
Issue Date: 2014
Publisher: Institute of Electrical and Electronics Engineers
Source: IEEE transactions on services computing, 2014, v. 8, no. 6, p. 998-999 How to cite?
Journal: IEEE transactions on services computing 
Abstract: Recently, a public auditing protocol for shared data called Panda (IEEE Transactions on Services Computing, doi: 10.1109/TSC.2013.2295611) was proposed to ensure the correctness of the outsourced data. A distinctive feature of Panda is the support of data sharing and user revocation. Unfortunately, in this letter, we show that Panda is insecure in the sense that a cloud server can hide data loss without being detected. Specifically, we show that even some stored file blocks have been lost, the server is able to generate a valid proof by replacing a pair of lost data block and its signature with another block and signature pair. We also provide a solution to the problem while preserving all the desirable features of the original protocol.
URI: http://hdl.handle.net/10397/55942
EISSN: 1939-1374
DOI: 10.1109/TSC.2014.2355201
Appears in Collections:Journal/Magazine Article

Access
View full-text via PolyU eLinks SFX Query
Show full item record

WEB OF SCIENCETM
Citations

10
Last Week
0
Last month
Citations as of Aug 14, 2017

Page view(s)

33
Last Week
1
Last month
Checked on Aug 13, 2017

Google ScholarTM

Check

Altmetric



Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.