基于DDCT表的多副本完整性审计方案

在云存储环境下，云数据采用多副本存储已经成为一种流行的应用.针对恶意云服务提供商威胁云副本数据安全问题，提出一种基于DDCT（Dynamic Divide and Conquer Table）表的多副本完整性审计方案.首先引入DDCT表来解决数据动态操作问题，同时表中存储副本数据的块号、版本号和时间戳等信息；接下来为抵制恶意云服务商攻击，设计一种基于时间戳的副本数据签名认证算法；其次提出了包括区块头和区块体的副本区块概念，区块头存储副本数据基于时间戳识别认证的签名信息，区块体存放加密的副本数据；最后委托第三方审计机构采用基于副本时间戳的签名认证算法来审计云端多副本数据的完整性.通过安全性分析和实验对比，本方案不仅有效的防范恶意存储节点之间的攻击，而且还能防止多副本数据泄露给第三方审计机构.

Multi-copy Integrity Audit Scheme Based on DDCT Table

In the cloud storage environment,the multiple copies are more popular.However,aiming at the problems of data dynamic operation and malicious cloud service provider attacks encountered in multi-copy data integrity audit,a multi-copy integrity audit scheme based on dynamic divide and conquer table (DDCT) is proposed.Firstly,the dynamic divide and conquer table is introduced to solve the problem of dynamic data operation,and the block number,version number and timestamp of the copy data are stored in the table.In order to resist the malicious cloud service provider attacks,a time-based replica data signature authentication algorithm is designed.Secondly,it proposes the concept of replica block including block header and block body.The block header stores the authenticated signature information which is based on timestamp,and the block body stores the encrypted data.Finally,the third-party auditing agency uses a replica timestamp-based signature authentication algorithm to audit the integrity of the multi-copy data.Through security analysis and experimental comparison,this solution protects data information from third-party auditors while effectively preventing malicious cloud service provider attacks.