Computer Science ›› 2020, Vol. 47 ›› Issue (2): 313-319.doi: 10.11896/jsjkx.181102161

Replica Dynamic Storage Based on RBEC

HONG Hai-cheng,CHEN Dan-wei   

  1. (School of Computer Science,Nanjing University of Posts and Telecommunications,Nanjing 210023,China)
  • Received:2018-11-23 Online:2020-02-15 Published:2020-03-18
  • About author:HONG Hai-cheng,born in 1994,master.His main research interests include network security and network dynamic defense technology;CHEN Dan-wei,born in 1970,Ph.D,professor.His main research interests include Virtualization and cloud technologyand Computer communication network and security.
    This work was supported by the Key Program of the National Natural Science Foundation of China (61602114) and National Key R&D Program of China (2017YFB0801703).

Abstract: With the rapid development of cloud storage technology,the existing cloud storage architectures and storage patterns are presented in a static way to users and attackers,making the data face more security threats.This paper proposed a duplicate dynamic storage scheme based on Random Binary Extension Code (RBEC).The scheme uses a network code to store the data blocks on the cloud nodes.The data information of the nodes can be changed randomly and time-varying by the node data transformation based on Binary Random Extension Code.By changing the attack surface,it can increase the complexity and cost of the attacker,reduce the vulnerability exposure and the probability of being attacked,and improve the flexibility of the system.The theoretical analysis and simulation results show that the coding computation time cost of this method is not high in the whole dynamic transformation,and its main time cost is the transmission of data encoding blocks between nodes.In addition,the performance of this method was compared with the general regenerative code mimetic transformation schemes.Because of the characteristics of REBC,that is,the probability of the regenerated encoding matrix satisfying the MDS property is almost 1,the performance overhead of this method is better than that of general regenerative code which may transform many times in the encoding process.

Key words: Attack surface, Moving target defense, Network coding, Random binary extensive code, Replica storage

  • TP393
