Comments on "Public Integrity Auditing for Dynamic Data Sharing With Multiuser Modification"

Comments on "Public Integrity Auditing for Dynamic Data Sharing With Multiuser Modification"

Recently, a practical public integrity auditing scheme supporting multiuser data modification (IEEE TRANSACTIONS ON INFORMATION FORENSICS AND SECURITY, DOI 10.1109/TIFS.2015.2423264) was proposed. Although the protocol was claimed secure, in this paper, we show that the proposal fails to achieve sou...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:IEEE transactions on information forensics and security 2016-03, Vol.11 (3), p.658-659
Hauptverfasser: Yong Yu, Yannan Li, Jianbing Ni, Guomin Yang, Yi Mu, Susilo, Willy
Format: Artikel
Sprache:eng
Schlagworte:
Authentication
Cloud computing
Cloud storage
Computer information security
Cryptographic protocols
data integrity
Data retrieval
Dynamics
Forensic engineering
Integrity
Proposals
Protocols
Servers
soundness
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Recently, a practical public integrity auditing scheme supporting multiuser data modification (IEEE TRANSACTIONS ON INFORMATION FORENSICS AND SECURITY, DOI 10.1109/TIFS.2015.2423264) was proposed. Although the protocol was claimed secure, in this paper, we show that the proposal fails to achieve soundness, the most essential property that an auditing scheme should provide. Specifically, we show that a cloud server can collude with a revoked user to deceive a third-party auditor (TPA) that a stored file keeps virgin even when the entire file has been deleted.
ISSN:1556-6013
1556-6021
DOI:10.1109/TIFS.2015.2501728