| As the most basic service cloud computing provides,cloud storage attracts many users in various fields through its high-cost performance,high convenience,and robust scalability.As massive amounts of data are in the cloud,many redundant data are stored in the cloud,significantly increasing the operating costs of cloud storage providers(CSP).Data deduplication is widely used to reduce operational costs to eliminate redundant data in the cloud.In addition,with the improvement of users’ security and privacy awareness,users often encrypt data before uploading,and the deduplication of secret data has become a research hotspot.However,since the traditional encryption algorithm will hinder the smooth progress of data deduplication,most existing solutions are based on convergence encryption to achieve dense data deduplication.However,there are still some problems to be solved.Firstly,the dense state data deduplication scheme faces some security threats,such as collusion attacks,probe attacks,and forward and backward security threats.Second,as cloud storage users grow,there are a lot of operations,such as uploading,deleting,and sharing data,leading to frequent changes in data ownership.Therefore,realizing the efficient management of data ownership has essential research significance.In this paper,we focus on ensuring the security and efficiency of the data deduplication scheme.Specifically,the main work of this paper is as follows:(1)A multi-mode parallel data deduplication scheme based on edge computing is proposed and applied to the Internet of Things(Io T)environment.The edge computing nodes are introduced and run in a multi-mode parallel mode to reduce the computing pressure of the central server and ensure the system’s security.File-level data deduplication is combined with block-level data deduplication,and edge computing nodes only need to perform file-level data deduplication.A tag tree is constructed to facilitate data sharing among Io T devices and improve the efficiency of data ownership management.The RAndom REsponse(RARE)technology and blockchain are introduced to improve security.The security and performance analysis shows that the scheme can meet the security requirements and has practicability.(2)A secure data deduplication scheme that supports efficient dynamic ownership management is proposed.Based on the dynamic KEK(Key-Encrypting Key)tree,a variable dynamic KEK tree is proposed,which reduces the computing and storage pressure of the cloud storage server and helps CSP dynamically manage data ownership.The convergent all-or-nothing conversion technology is introduced and improved,which not only realizes the lightweight data ownership management but also improves the ability of the system to resist collusion attacks.In this scheme,users can guarantee data reliability by verifying data integrity.The security and performance analysis shows that the proposed scheme can meet the security requirements and has practicability. |
PDF Full Text Request