Blockchain-based publicly verifiable data deletion scheme for cloud storage

doi:10.1016/j.jnca.2017.11.011

Journal of Network and Computer Applications

Volume 103, 1 February 2018, Pages 185-193

https://doi.org/10.1016/j.jnca.2017.11.011 Get rights and content

Abstract

With the rapid development of cloud storage, more and more data owners store their data on the remote cloud, that can reduce data owners’ overhead because the cloud server maintaining the data for them, e.g., storing, updating and deletion. However, that leads to data deletion becomes a security challenge because the cloud server may not delete the data honestly for financial incentives. Recently, plenty of research works have been done on secure data deletion. However, most of the existing methods can be summarized with the same protocol essentially, which called “one-bit-return” protocol: the storage server deletes the data and returns a one-bit result. The data owner has to believe the returned result because he cannot verify it. In this paper, we propose a novel blockchain-based data deletion scheme, which can make the deletion operation more transparent. In our scheme, the data owner can verify the deletion result no matter how malevolently the cloud server behaves. Besides, with the application of blockchain, the proposed scheme can achieve public verification without any trusted third party.

Introduction

Cloud computing is the fusion and development of the parallel computing, distributed computing and gird computing, and it connects large scale storage and computing resources together through the Internet (Miao et al., 2014, Wang et al., 2015). With an attractive computing paradigm, cloud computing allows clients to conveniently and ubiquitously enjoy various data services such as cloud storage service, outsourcing computing service, on-demand self-service, etc. (Buyya et al., 2009, Chen et al., 2015, Chen et al., 2014, Chen et al., 2016, Miao et al., 2017). In the cloud storage service paradigm, the resource-constraint users can outsource the expensive storage into the remote cloud and enjoy unstinted storage services.

Despite the tremendous benefits, cloud storage inevitably suffers from some new security problems. Firstly, the outsourced data may often contain some sensitive information, which should be kept so secret that it does not expose to the cloud server. Thus, the secrecy of outsourced data is a security challenge: the cloud server should learn nothing about what it stores actually. The traditional encryption technique should be thought a solution to this problem. However, it is merely a partial solution because performing meaningful operation over the ciphertext is very difficult. Secondly, the data owner stores data on the remote cloud and the cloud server manages the data for him. When the data owner wants to delete the data, he sends a deletion command to the cloud server and the server executes the deletion operation. However, the cloud server is semi-trusted, that is, it may not delete the data honestly for financial incentives. Therefore, how to delete the data permanently and verify the deletion outcome efficiently is another security problem. That is, the verification should only contain some simple computations. Trivially, it must be far more efficient than maintaining the data task itself at least.

The primitive of secure data deletion (also called data erasure) has been extensively studied in the past decade (Cachin et al., 2013, Hao et al., 2016, Luo et al., 2016, Perito and Tsudik, 2010, Sun et al., 2008, Wright et al., 2008, Wright et al., 2003). Most of the existing data deletion methods can be summarized with the same protocol essentially, which called “one-bit-return” protocol. That is, the data owner usually sends a command to delete data from physical medium, and then receives a one-bit reply (Success/Failure) indicating the result of the deletion operation. For example, operation system achieves deletion by removing the link. When receives the deletion command, data management system deletes the link of the file from the underlying file system, and then returns a one-bit result (Success/Failure) to the data owner. While the deletion result of being returned can be misleading. The system only deletes the link of the file, however, the content of the file still remains on the disk, attackers can recover the file by scanning the disk (Garfinkel and Shelat, 2003).

Obviously, deletion by unlinking is not sufficient in the real applications. To delete the content of the file, researchers apply overwriting technology to design secure data deletion schemes. They delete the content of the file by overwriting the physical disks with random data, and many protocols have been proposed (Diesburg and Wang, 2010, Gutmann, 1996, Gutmann, 2001, Hughes et al., 2009, Kissel et al., 2006). By overwriting the storage medium, although the problem of secure data deletion has been theoretically solved in general, the proposed schemes still have two inherent limitations. Firstly, most of the proposed schemes with overwriting method can not support verification. In those protocols, the data owner has to believe the data management system because they can not verify the result of the deletion. Although some schemes provide verification, they need to introduce a trusted third party. The other inherent limitation is that the proposed protocols are much inefficient for practical applications. Therefore, it is still significant to design secure data deletion schemes to delete data permanently and efficiently.

Bonehand and Lipton (1996) presented the first cryptograph-based scheme to solve the secure data deletion problem in 1996. In their scheme, they encrypt all the data before saving it and then delete the plaintext. Later, they delete the decryption key to make the ciphertext invalid, and with a series of follow-up works (Geambasu et al., 2009, Peterson and Burns, 2005, Reardon et al., 2013, Reardon et al., 2013, Tang et al., 2012, Yuan and Yu, 2013). The cryptography-based solution is efficient since it can delete a large amount of data by just deleting a very short decryption key. Especially in distributed storage, we can delete all the duplicate copies of the data that are backed up in distributed locations at once time. However, in those schemes, data owner also can not verify the result of the deletion operation. They have to trust the returned result. Besides, the ciphertext is still stored in the physical medium. Therefore, it is necessary for us to seek for publicly verifiable data deletion protocol.

Although various of data deletion schemes have been presented, most of them have some inherent limitations. Firstly, in most of the existing schemes, they assume that the cloud server is fully trusted and the server will delete the data honestly. However, in cloud computing the cloud server may be dishonest and it does not delete the data sincerely for financial incentives. Therefore, some schemes introduce a trusted third party, and both the data owner and the cloud server believe the trusted third party unconditionally. Nevertheless, it is very difficult to find such a trusted third party. Besides, plenty of the existing solutions can not support public verification. However, to guarantee the deletion result correct and trace if the server is malevolent, the data owner hope the schemes are publicly verifiable. That is, not only the data owner can audit the deletion result, but also anyone else can verify the outcome. Therefore, we propose our blockchain-based publicly verifiable data deletion scheme, which not only supports public verification but also does not contain any trusted third party. To the best of our knowledge, it seems that there is no research work on efficient data deletion schemes that support public verification without any trusted third party in the malicious server model.

Our Contributions. In this paper, we propose a new blockchain-based publicly verifiable data deletion scheme for cloud storage. In our protocol, the data owner O does not fully trust the cloud server S. We use the idea of Blockchain to guarantee that no matter how a malicious S behaves, anyone can verify the result of the deletion operation. The main contributions of this paper are as follows:

•
We construct a novel blockchain-based publicly verifiable data deletion scheme. If the cloud server does not delete the data honestly, our scheme enables the data owner can detect the malevolent operation of the cloud server. Different from the previous works, there is not any trusted third party in our solution.
•
We introduce the primitive of Blockchain to solve the public verification problem in the secure data deletion scheme. Taking the advantages of Blockchain system, the proposed protocol can achieve public verification. Besides, our solution is also efficient in communication as well as in computation.

The problem of how to delete digital data securely is particularly important. For the past decades, plenty of researchers have paid considerable attention to this problem, and a series of schemes have been proposed. Although deletion by unlinking is efficient, it just deletes the link and the contents still remain in the disk (Garfinkel and Shelat, 2003).

To delete the content of the file from the physical medium, Gutmann (1996) suggests that the storage medium should be overwritten with random data. In 2010, Paul and Saxena (2010) present a novel data deletion protocol, which called “Proof of Erasability” (PoE). In their protocol, they delete data by overwriting the disk with random patterns, and the host program will return the same patterns of data to the data owner as a proof after deleting. Perito and Tsudik (2010) present a solution called “Proof of Secure Erasure” (PoSE-s). In the protocol, the host program sends a string of random patterns to the embedded device. They assume that the embedded device’ storage is so limited that it can only hold the received random patterns. Therefore, the original data will be overwritten. This scheme works the same way in essential as the PoE in Paul and Saxena (2010) except the additional assumption of limited memory.

Similarly, Luo et al. (2016) propose a permutation-based assured deletion scheme. In the scheme, the cloud storage service provider is economy and offers elastic storage service for data owner. Since the cloud server is economical rational, they assume that the server only maintains the latest version of user's data. Besides, when data owner performs updating all the backups will be consistent. Based on this assumption, they disguise the overwriting performances as data updating operations to delete data. After that, the outcome will be verified through a challenge-response protocol. The data owner can judge whether the server is honest by challenge-response time.

In 1996, Bonehand and Lipton (1996) propose the first cryptography-based protocol to solve secure data deletion problem. In 2010, Tang et al. (2010) present a policy-based file assured deletion scheme (FADE). In their scheme, they encrypt the file with a data key firstly. Then further encrypt the data key with the control keys corresponding to the policy. Finally, they remove the policy to delete the corresponding control key. Subsequently, Xiong et al. (2014) propose a secure data self-destructing protocol, which is key-policy attribute-based encryption with time-specified attributes. Perlman (2005) is among the first in proposing the use of trusted third party (TTP) to address the data deletion problem. In the solution, the data owner encrypts the data with a data key, and then the data key is encrypted with a control key by a separate TTP. The TTP destroys the control key to make the data which corresponding to the control key unrecoverable. In 2016, Hao et al. (2016) present a secure data deletion scheme which based on a “trust-but-verify” paradigm - Trusted Platform Module (TPM). Their scheme can make the deletion process more transparent and the deletion result publicly verifiable. Data owner can verify the correctness of encryption and honesty of deletion without accessing to the source code of the TPM.

The rest of the paper is organized as follows: Section 2 defines some preliminaries. We defines the problem, including system model and design goals in Section 3. In Section 4, we propose our secure blockchain-based data deletion scheme. The analysis of the secure data deletion protocol is discussed in Section 5, including security analysis, comparison and performance evaluation. Finally, we give a brief conclusion of prior art in the last section.

Section snippets

Preliminaries

In this section, we first introduce the basic definitions and construction of Merkle Hash Tree. Then we will describe the Timestamping Service. Finally, we give a short description of Blockchain, which is very important for achieving the public verification.

System model

The proposed blockchain-based publicly verifiable data deletion scheme consists of three entities: the data owner, the cloud server, and the timestamp server. The architecture of blockchain-based publicly verifiable data deletion scheme is shown in the Fig. 3.

•
$Data Owner .$ The data owner is the entity that wants to upload and store the data on the remote cloud to reduce the burden of managing the data locally by himself. The uploaded file is only owned by the data owner. Moreover, when he does not

High description

In this paper, we consider the secure data deletion model in cloud computing, which is similar to Hao et al. (2016), Luo et al. (2016). In this scenario, they suffer from a trust problem between the data owner O and the cloud server S. That is, O does not believe that S deletes the file sincerely as his request. To solve this trust problem, researchers both in academic and industry have made extreme efforts and proposed many schemes. In the previous literatures, many solutions introduced a

Security analysis

In this section, we analyze the security of the proposed secure data deletion protocol in this paper. As we mentioned before, we assume that the data owner O does not fully trust the cloud server S. Besides, we also consider that a malicious data owner O colludes with S and delete data illegally.

Theorem 1

The proposed data deletion scheme satisfies the property of correctness.

Proof

If the cloud server S is assumed to be honest, and it deletes the data sincerely, then the evidence is $τ = ({proof}_{i}, {root}_{j}, h_{j})$ .

Conclusion

In this paper, we propose a new publicly verifiable data deletion scheme for cloud storage based on Blockchain. In the proposed scheme, the data owner O and the cloud server S do not fully trust each other. Different from the existing schemes, we adopt Blockchain system to guarantee that a data owner O could detect the cheat no matter when a dishonest S behaves malevolently. Besides, if S is malicious and it cheats O, the O can prove that S is dishonest by verifying the proof of deletion

Acknowledgement

This work was supported by the National Natural Science Foundation of China (Nos. 61572382, 61772405 and 61702401), China 111 Project (No. B16037), and the Natural Science Basic Research Plan in Shaanxi Province of China (No.2016JZ021).

References (37)

R. Buyya et al.
Cloud computing and emerging it platforms: vision, hype, and reality for delivering computing as the 5th utility
Future Gener. Comput. Syst.
(2009)
H. Huang et al.
Bitcoin-based fair payments for outsourcing computations of fog devices
Future Gener. Comput. Syst.
(2018)
M. Miao et al.
Publicly verifiable databases with efficient insertion/deletion operations
J. Comput. Syst. Sci.
(2017)
D. Bayer et al.
Improving the efficiency and reliability of digital time-stamping
Seq. II: Methods Commun. Secur. Comput. Sci.
(1993)
Bonehand, D., Lipton, R.J., 1996. A revocable backup system. In: Proceedings of the Sixth USENIX Security Symposium,...
Cachin, C., Haralambiev, K., Hsiao, H.C., Sorniotti, A., 2013. Policy-based secure deletion. In: The 2013 ACM SIGSAC...
X. Chen et al.
New publicly verifiable databases with efficient updates
IEEE Trans. Dependable Secur. Comput.
(2015)
X. Chen et al.
New algorithms for secure outsourcing of modular exponentiations
IEEE Trans. Parallel Distrib. Syst.
(2014)
X. Chen et al.
Verifiable computation over large database with incremental updates
IEEE Trans. Comput.
(2016)
S.M. Diesburg et al.
A survey of confidential data storage and deletion methods
ACM Comput. Surv.
(2010)

S.L. Garfinkel et al.

Remembrance of data passed: a study of disk sanitization practices

IEEE Secur. Priv.

(2003)

Geambasu, R., Kohno, T., Levy, A.A., Levy, H.M., 2009. Vanish: Increasing data privacy with self-destructing data. In:...

Gutmann, P., 1996. Secure deletion of data from magnetic and solid-state memory. In: Proceedings of the Sixth USENIX...

Gutmann, P., 2001. Data remanence in semiconductor devices. In: Proceedings of the 10th USENIX Security Symposium, pp....

S. Haber et al.

How to time-stamp a digital document

J. Cryptol.

(1991)

Haber, S., Stornetta, W.S., 1997. Secure names for bit-strings. In: Proceedings of the 4th ACM Conference on Computer...

F. Hao et al.

Deleting secret data with public verifiability

IEEE Trans. Dependable Secur. Comput.

(2016)

G.F. Hughes et al.

Disposal of disk and tape data by secure sanitization

IEEE Secur. Priv.

(2009)

Cited by (135)

PPFchain: A novel framework privacy-preserving blockchain-based federated learning method for sensor networks
2023, Internet of Things (Netherlands)
Internet of Things (IoT) has been widely used in many smart applications such as smart cities, smart agriculture, healthcare, industry, etc. In addition, the importance of IoT-based architectures has increased with the emergence of innovative technologies such as 5G networks and quantum computing. Electrochemical sensors (ECS) have recently been used in IoT-based architectures thanks to their easy integration into smart systems in many fields such as pharmaceutical, food, medical diagnosis, clinical, genetic analysis, wearable, forensic identification, and monitoring of environmental variables. However, Although IoT-based systems have ensured the availability of sensor data in traditional architecture, there are many challenges, such as low latency, availability, real-time data traceability, and security. In addition, new challenges regarding security and privacy have emerged in the system as the ever-growing smart connected IoT devices generate a significant amount of heterogeneous data. Given these challenges, in this paper, we propose PPFchain, a new federated learning-enabled blockchain-based framework to ensure the security and privacy of sensor-IoT-based architectures using sampled ECS data. PPFchain has a lightweight, low-cost, high-performance architecture in the IoT-based blockchain network. In the architecture, we used the federated model and cryptographic primitives for user and data privacy in off-chain fog nodes considering performance. Moreover, we compared with traditional blockchain models using various performance metrics for system performance in a distributed architecture, such as an event and storage-based smart contract. In addition, the results show that the PPFchain provides accuracy, efficiency, and enhanced security.
RVC: A reputation and voting based blockchain consensus mechanism for edge computing-enabled IoT systems
2023, Journal of Network and Computer Applications
By deploying edge servers around devices, edge computing brings computing resources far away from the cloud center close to the Internet of Things (IoT), which reduces latency and promotes the rapid development of IoT. Since edge servers and devices (hereafter referred to as NODEs) are highly scattered, blockchain is becoming one of the most promising solutions to enhance security issues for IoT. In the blockchain, a consensus mechanism determines how to achieve an agreement among nodes, hence it is an essential element for the operation and efficiency of the blockchain. However, due to the exponentially increasing of nodes in IoT, the consensus efficiency of the traditional consensus mechanism will be greatly reduced, and due to the lack of detection process for malicious nodes, its security will also reduce. To solve the above problems, in this paper, a Reputation and Voting based Consensus mechanism (RVC) is proposed. To reduce the time consumption of the consensus process, RVC adopts a reputation evaluation algorithm without complex hash calculations to select block proposers, which both consider the behaviors in edge computing and blockchain consensus. To prevent malicious nodes from participating in consensus, a filtering algorithm is designed for RVC, which can detect and filter nodes with malicious behaviors. Simulation results show that, RVC outperforms some traditional work. On time consumption, compared with AirBC and hybrid blockchain, RVC improved by 73.6% and 93.7% respectively. And on consensus security, RVC improved by 14% compared with LVBS. When the network scale and the proportion of malicious nodes change exponentially, RVC shows good scalability in terms of time consumption, successful consensus rate and transaction throughput.
A BIPMU-based network security situation assessment method for wireless network
2023, Computer Standards and Interfaces
With the rapid development of information technology, wireless network has been accepted by the public and widely used in the daily life and work. Especially with the comprehensive deployment of 5G network technology, the application scope of wireless network is continuously increasing, which can greatly reduce the IT infrastructure overhead and human resource investment. Although the tremendous advantages, wireless network inevitably suffers from some severe security challenges. For example, the network data is characterized by large volumes, variety and high dimensions, which would greatly affect the efficiency and accuracy of network security situation assessment (NSSA). To solve this problem, we first design a novel model based on parsimonious memory unit (PMU), namely, bidirectional parsimonious memory unit (BIPMU). Compared with PMU, BIPMU can not only learn and characterize data through its time series relationship, but also comprehensively and effectively manage the potential connection of long-term and short-term dependence on time series data. Subsequently, we adopt BIPMU to design a novel NSSA method to evaluate the real-time security situation of wireless network. Finally, we develop a prototype implementation of our proposed NSSA method and provide the performance evaluation. The experimental results demonstrate that compared with the previous NSSA methods, our proposed NSSA method is much more attractive in efficiency and accuracy.
Adrestus: Secure, scalable blockchain technology in a decentralized ledger via zones
2022, Blockchain: Research and Applications
Citation Excerpt :
Thus, it eliminates the chance to malicious changes of the intermediate blocks in the ledger. Furthermore, the blockchain solution is used in the implementation of cryptocurrencies, which can lower transaction costs of payments and handle them in a more transparent and automated way [11]. This can be achieved by removing the middleman, i.e., banks, which do the job of recording users' transactions and establishing a tamper-proof digital platform for storing and sharing data with users' privacy.
Nowadays, an increasing number of blockchain architectures provide well-promising protocols for pseudonymous online payments via proposed cryptocurrencies. Most of them suffer from a number of extensibility and scalability issues, as their capacity regarding the number of transactions they are capable of processing per second is limited. Security is also a challenge for this kind of architectures. This paper presents the design and implementation of the Adrestus system, a blockchain-based transaction system with a novel consensus mechanism that is able to tolerate Byzantine faults and is designed to scale without compromising system security. One of the main components of the Adrestus design is a consistent hashing mechanism for the efficient assignment of transactions on parallel regions, called zones, and for solving load balancing problems. We claim that the Adrestus blockchain system scales linearly without compromising system security and achieves its goals without introducing the unnecessary overhead and by eliminating energy and computational waste. Preliminary theoretical simulations and results reflect that Adrestus exceeds the average throughput of the most well-known cryptocurrencies like Bitcoin, and thus, it achieves a higher performance. In this paper, we present this proposed approach along with simulation results and examine the conditions for the proposed fault-tolerant system to meet safety and liveness.
Emerging Trends in Blockchain Technology and Applications: A Review and Outlook
2022, Journal of King Saud University - Computer and Information Sciences
At present times, Blockchain technology is gaining more attraction with every passing day, as it has revolutionized the traditional trade due to its distributed ledger feature, every record in this ledger is secured by rules of cryptography which makes it more secure and tamper-free. This naturally led to the emergence of various types of cryptocurrency, such as Bitcoin, which builds on a technology commonly known as Blockchain. The rapid evolution of research on Blockchain calls for more research studies for investigating and analyzing the current knowledge in this field through a systematic technical study that shows the impact and significance of the related literature since the inception of the technology in 2013. From this point, in this paper, a state-of-the-art review is conducted on the most influential articles, conference papers, and review papers related to Blockchain published from 2013 to 2020 and indexed by the Web of Science Core Collection^TM (WoS) world’s literature database. To attain the desired objective, after presenting an inevitable, brief overview of Blockchain technology, the collected papers have closely been analyzed along seven key research questions. Subsequently, vital valuable findings, such as the top 10 influential papers, yearly publications and citation trends, the favorite publication venues, the hottest research areas, and the most supportive funding bodies are reported, which may offer several implications about the status quo and emerging trends and frontiers of Blockchain, to guide towards establishing a baseline for both fresh and experienced researchers and practitioners before initiating a future research project on Blockchain. Furthermore, a rigorous discussion is provided on Blockchain application in diversified domains, along with different versatile use cases. Lastly, a brief insight is presented into open challenges and potential future advancements in the field of Blockchain. Summing up, this paper is meant to assist newbies in exploring and designing new Blockchain solutions, bearing in mind existing demands and challenges.
Provable data deletion from efficient data integrity auditing and insertion in cloud storage
2022, Computer Standards and Interfaces
Citation Excerpt :
However, many of these protocols mainly pay attention to proof of outsourced data integrity without involving the requirements of data insertion and data deletion. Hao et al. [12] and Yang et al. [13] declare that it is impossible to achieve data deletion by utilizing software-based methods unless thoroughly destroying the physical mediums absolutely. Many studies utilize cryptography to realize provable data deletion, in which all of the files are encrypted before outsourcing to the remote cloud server, and then data owners delete the files by destroying the related data decryption keys.
With the widespread popularity of cloud storage, a growing number of data owners are willing to outsource their massive data to remote cloud servers, thus effectively avoiding the heavy burden of storing and managing the massive data by themselves in local physical storage mediums. Despite the tremendous advantages, cloud storage inescapably suffers from some severe security challenges resulting from the separation of outsourced data management and its ownership, such as data integrity, data deletion, and data insertion. In this paper, we aim to deal with the problems of integrity auditing, dynamic insertion and provable deletion over outsourced data. Specifically, we design a novel authentication data structure, namely, number-rank-based Merkle hash tree (NR-MHT), which can achieve data dynamic operations. Meanwhile, NR-MHT can maintain many data blocks in each leaf node, thus effectively solving the problem of the height indefinitely increases with the total number of data blocks. Subsequently, we adopt NR-MHT to propose a new provable data deletion scheme based on efficient data integrity auditing and dynamic data insertion. In our presented scheme, the data owner can not only permanently delete the unnecessary outsourced data blocks to save storage expenditures but also efficiently insert new data blocks to dynamically update the outsourced data set. Meanwhile, we analyze the security to formally demonstrate that our presented scheme can satisfy all of the expected security requirements without interacting with a third party auditor. Finally, we also develop a prototype implementation of our presented scheme and provide an accurate efficiency evaluation. The numerical analysis and experimental results show that compared with the existing schemes, our presented scheme is more attractive in efficiency and practicability.

View all citing articles on Scopus

View full text

Blockchain-based publicly verifiable data deletion scheme for cloud storage

Abstract

Introduction

Section snippets

Preliminaries

System model

High description

Security analysis

Conclusion

Acknowledgement

Future Gener. Comput. Syst.

Future Gener. Comput. Syst.

J. Comput. Syst. Sci.

Improving the efficiency and reliability of digital time-stamping

Seq. II: Methods Commun. Secur. Comput. Sci.

New publicly verifiable databases with efficient updates

IEEE Trans. Dependable Secur. Comput.

New algorithms for secure outsourcing of modular exponentiations

IEEE Trans. Parallel Distrib. Syst.

Verifiable computation over large database with incremental updates

IEEE Trans. Comput.

A survey of confidential data storage and deletion methods

ACM Comput. Surv.

Remembrance of data passed: a study of disk sanitization practices

IEEE Secur. Priv.

How to time-stamp a digital document

J. Cryptol.

Deleting secret data with public verifiability

IEEE Trans. Dependable Secur. Comput.

Disposal of disk and tape data by secure sanitization

IEEE Secur. Priv.