English

Secure Consistency Verification for Untrusted Cloud Storage by Public Blockchains

Cryptography and Security 2019-07-31 v3 Distributed, Parallel, and Cluster Computing

Abstract

This work presents ContractChecker, a Blockchain-based security protocol for verifying the storage consistency between the mutually distrusting cloud provider and clients. Unlike existing protocols, the ContractChecker uniquely delegates log auditing to the Blockchain, and has the advantages in reducing client cost and lowering requirements on client availability, lending itself to modern scenarios with mobile and web clients. The ContractChecker collects the logs from both clients and the cloud server, and verifies the consistency by cross-checking the logs. By this means, it does not only detects the attacks from malicious clients and server forging their logs, but also is able to mitigate those attacks and recover the system from them. In addition, we design new attacks against ContractChecker exploiting various limits in real Blockchain systems (e.g., write unavailability, Blockchain forks, contract race conditions). We analyze and harden the security of ContractChecker protocols against the proposed new attacks. For evaluating the cost, we build a functional prototype of the ContractChecker on Ethereum/Solidity. By experiments on private and public Ethereum testnets, we extensively evaluate the cost of the ContractChecker in comparison with that of existing client-based log auditing works. The result shows the ContractChecker can scale to hundreds of clients and save client costs by more than one order of magnitude.

Keywords

Cite

@article{arxiv.1904.06626,
  title  = {Secure Consistency Verification for Untrusted Cloud Storage by Public Blockchains},
  author = {Kai Li and Yuzhe Tang and Beom Heyn Kim and Jianliang Xu},
  journal= {arXiv preprint arXiv:1904.06626},
  year   = {2019}
}

Comments

SecureComm 19, ContractChecker, 21 pages, 4 figures

R2 v1 2026-06-23T08:38:51.023Z