University of Toronto
With cloud storage services, it is commonplace for data to be not only stored in the cloud, but also shared across multiple users. However, public auditing for such shared data - while preserving identity privacy - remains to be an open challenge. In this paper, the authors propose the first privacy-preserving mechanism that allows public auditing on shared data stored in the cloud. In particular, they exploit ring signatures to compute the verification information needed to audit the integrity of shared data. With their mechanism, the identity of the signer on each block in shared data is kept private from a Third Party Auditor (TPA), who is still able to verify the integrity of shared data without retrieving the entire file.