Cloud storage auditing helps users to check the integrity of their data stored on the cloud. However, if the client's auditing secret key is exposed to the malicious cloud, the client's data may be deleted by the malicious cloud without being detected. In this paper, we propose a public auditing protocol with intrusion-resilience to relieve damage caused by the key-exposure problem. The proposed protocol divides the lifetime of files stored on the cloud into several time periods, and each time period is further divided into several refreshing periods. The auditing secret key is updated in each time period, and secret values used to update the auditing secret key change in every refreshing period. These two update operations are completed by the client and the third party auditor (TPA). This protocol is secure against the adversary as long as the client and TPA are not compromised in the same refreshing period. Security proof under random oracle model proves the protocol is secure, and the experimental results indicate that the performance of the protocol is acceptable.

中文翻译：

---

具有入侵防御能力的云存储系统的公共审计协议

云存储审核可帮助用户检查其存储在云中的数据的完整性。但是，如果客户端的审核密钥暴露给了恶意云，则客户端的数据可能会被恶意云删除而不会被检测到。在本文中，我们提出了一种具有入侵防御能力的公共审计协议，以缓解由密钥暴露问题引起的损害。提出的协议将存储在云中的文件的生存期分为几个时间段，每个时间段又分为几个刷新时间段。审核秘密密钥在每个时间段中都会更新，用于更新审核秘密密钥的秘密值会在每个刷新周期中更改。这两个更新操作由客户端和第三方审核员（TPA）完成。只要客户端和TPA在相同的刷新周期内不受影响，此协议就可以抵御对手。随机预言机模型下的安全证明证明了该协议是安全的，实验结果表明该协议的性能是可以接受的。