计算机科学

计算机科学 ›› 2024, Vol. 51 ›› Issue (11A): 240400040-10.doi: 10.11896/jsjkx.240400040

• 信息安全 • 上一篇    下一篇

面向云存储的机载软件持有性证明

岳猛1, 文程1, 洪雪婷2, 严思敏1   

  1. 1 中国民航大学安全科学与工程学院 天津 300300
    2 中国移动通信集团安徽有限公司芜湖分公司 安徽 芜湖 241100
  • 出版日期:2024-11-16 发布日期:2024-11-13
  • 通讯作者: 岳猛(myue_23@163.com)
  • 基金资助:
    国家自然科学基金(621724183);天津市应用基础研究多元投入重点项目(21JCZDJC00830)

Airborne Software Provable Data Possession for Cloud Storage

YUE Meng1, WEN Cheng1, HONG Xueting2, YAN Simin1   

  1. 1 School of Safety Science and Engineering,Civil Aviation University of China,Tianjin 300300,China
    2 China Mobile Group Anhui Company Limited Wuhu Branch,Wuhu,Anhui 241100,China
  • Online:2024-11-16 Published:2024-11-13
  • About author:YUE Meng,born in 1984,Ph.D,professor,Ph.D supervisor,is a member of CCF(No.I8925M).His main research interests include network intrusion detection and defense and civil aviation information security.
  • Supported by:
    National Natural Science Foundation of China(621724183) and Tianjin Natural Science Foundation(21JCZDJC00830).

PDF (PC)

139

摘要: 随着民用航空机载软件数量的不断增长,传统的软件分发方式面临效率低、成本高、安全性差的问题。为了提高机载软件的分发效率,将云存储与机载软件相结合,提出了一种基于Cloud-P2P的机载软件存储架构,实现了机载软件的分布式云存储以及机载软件共享。在此基础上,提出了一种数据持有性证明协议,通过将标识与公钥绑定,降低了共谋风险,并通过抽样审计完成对云上机载软件的完整性验证,减小了验证成本。安全性分析表明,所提方案具有不可伪造性和抗重放攻击的能力,并且证明了数据持有性证明协议的正确性。与现有的数据完整性审计方案相比,计算开销减少了10%,通信开销减少了20%。该研究对保证机载软件的高效安全分发具有实际意义。

关键词: 机载软件, 云存储, P2P, 数据持有性证明, 抽样审计

Abstract: With the increasing number of civil aviation airborne software,the traditional software distribution methods face the problems of low efficiency,high cost and poor security.In order to improve the distribution efficiency of airborne software,we combine cloud storage with airborne software and propose an airborne software storage architecture based on Cloud-P2P,which realizes distributed cloud storage of airborne software and airborne software sharing.On this basis,a provable data possession is proposed,which reduces the risk of complicity by binding the logo to the public key,and completes the integrity verification of the airborne software through sampling audit,reducing the verification cost.Security analysis shows that this scheme is unforgeable and resistant to replay attacks,and proves the correctness of the data-holding proof protocol.Compared with existing data integrity auditing schemes,the computational overhead is reduced by 10% and the communication overhead is reduced by 20%.This research has practical implications for ensuring efficient and secure distribution of airborne software.

Key words: Airborne software, Cloud storage, P2P, Provable data possession, Sampling audit

中图分类号: 

  • V328.3
[1]Best Practices for Loadable Software Management and Configuration Control[R].International Air Transport Association Engineering and Maintenance Group,2013:1-3.
[2]QUAN Y Q.Research on Architecture Design and Safety Ana-lysis of Avionics Architecture Databus Network for Commercial Aircraft[C]//Proceedings of 2018 3rd International Workshop on Materials Engineering and Computer Sciences(IWMECS 2018).2018:39-45.
[3]AMARNATH J,SURYA M,BHARGAV P,et al.Cloud com-puting in Aircraft Data Network[C]//2011 Integrated Communications,Navigation,and Surveillance Conference Proceedings.Herndon:IEEE Press,2011:E7-1-E7-8.
[4]FAN C,HAN Z,ZHAO L.Research on Cloud Storage Techno-logy of Avionics System[J].Electronics Optics & Control,2022,29(3):69-74,80.
[5]Arinc Report 835-1:Guidance for Security of Loadable Software Parts Using Digital Signatures[S].ARINC Airlines Electronic Engineering Committee.2014:10-29.
[6]LIU J,HUANG K,RONG H,et al.Privacy-Preserving Public Auditing for Regenerating-Code-Based Cloud Storage[J].IEEE Transactions on Information Forensics and Security,2015,10(7):1513-1528.
[7]BARSOUM A F,HASAN M A.Provable Multicopy DynamicData Possession in Cloud Computing Systems[J].IEEE Transactions on Information Forensics and Security,2015,10(3):485-497.
[8]YU J,REN K,WANG C,et al.Enabling Cloud Storage Auditing with Key-Exposure Resistance[J].IEEE Transactions on Information Forensics and Security,2015,10(6):1167-1179.
[9]YANG K,JIA X.An Efficient and Secure Dynamic AuditingProtocol for Data Storage in Cloud Computing[J].IEEE Transactions onParallel and Distributed Systems,2013,24(9):1717-1726.
[10]ZHU Y,HU H,AHN G J,et al.Efficient Audit Service Outsourcing for Data Integrity in Clouds[J].Journal of Systems and Software,2012,865(5):1083-1095.
[11]WANG J,CHEN X,HUANG X,et al.Verifiable Auditing for Outsourced Database in Cloud Computing[J].IEEE Transactions on Computers,2015,64(11):3293-3303.
[12]LIU C,RANJAN R,YANG C,et al.MuRDPA:Top-Down Levelled Multi-Replica Merkle Hash Tree Based Secure Public Auditing for Dynamic Big Data Storage on Cloud[J].IEEE Transactions on Computers,2015,64(9):2609-2622.
[13]WANG H Q.Identity-Based Distributed Provable Data Possession in Multicloud Storage[J].IEEE Transactions on Services Computing,2015,8(2):328-340.
[14]WANG H Q,WU Q H,QIN B,et al.Identity-Based RemoteData Possession Checking in Public Clouds[J].IET Information Security,2014,8(2):114-121.
[15]GUDEME J R,PASUPULETI S K,KANDUKURI R.Attribute-Based Public Integrity Auditing for Shared Data with Efficient User Revocation in Cloud Storage[J].Journal of Ambient Intelligence and Humanized Computing,2020,12(2):2019-2032.
[16]YU Y,LI Y N,YANG B,et al.Attribute-Based Cloud Data Integrity Auditing for Secure Outsourced Storage[J].IEEE Transactions on Emerging Topics in Computing,2020,8(2):377-390.
[17]ZHANG Y,YU J,HAO R,et al.Enabling Efficient User Revocation inIdentity-Based Cloud Storage Auditing for Shared Big Data[J].IEEE Transactions on Dependable and Secure Computing,2020,17(3):608-619.
[18]REHMAN A,LIU J,YASIN M Q,et al.Securing Cloud Storage by Remote Data Integrity Check with Secured Key Generation[J].Chinese Journal of Electronics,2021,30(3):489-499.
[19]YOOSUF M S,ANITHA R.LDuAP:lightweight dual auditing protocol to verify dataintegrity in cloud storage servers[J].Journal of Ambient Intelligence and Humanized Computing,2022,13:3787-3805.
[20]LI WH,HAN C,ZHAO Y K,et al.Distributed Integrated Modular Avionics System Architecture Design[C]//Proceedings of the Ninth China Aviation Society Youth Science and Technology Forum.Beijing:China Aviation Publishing & Media CO.2020:971-977.
[21]LIU Y,JIN X,WEI X H.System Management Function Design Based on Distributed Avionics System[J].Electronics Optics & Control,2022,29(9):74-77,95.
[22]Arinc Report 667-2:Guidance for Management of Field Loadable Software[S].ARINC Airlines Electronic Engineering Committee.2017:9-23.
[23]Arinc Report 665-3:Loadable Software Standards[S].ARINC Airlines Electronic Engineering Committee.2005:6-26.
Viewed
Full text


Abstract

Cited
  Shared   
  Discussed   
No Suggested Reading articles found!
渝ICP备16013121号-4
地址:重庆市渝北区洪湖西路18号    邮编:401121  
电话:023-63500828(编辑部) 023-67039612(会议/专题) 023-67039623(财务/发票)
E-mail:jsjkx12@163.com
本系统由北京玛格泰克科技发展有限公司设计开发