CN-117200979-B - Video data ownership proving method based on double data ownership proving

Abstract

The invention relates to a video data ownership proving method based on double data ownership proving. The method comprises the steps of 1) enabling a cloud server to disclose public parameters related to video cloud data ownership certification, 2) enabling an owner of data to calculate a data ownership certification label based on double data ownership certification, and uploading the label, a safety ownership certification coefficient and the data to the cloud server, 3) enabling the cloud server to initiate challenges to subsequent owners, 4) enabling the subsequent owners to calculate ownership certification and sending the ownership certification to the cloud server, and 5) enabling the cloud server to verify whether response of the subsequent owners is correct, and judging whether the user is received as a real data owner or not. Aiming at the requirement of managing the ownership of streaming media cloud data, the invention compresses the space-time integrity of the video cloud data to one dimension by utilizing the double data ownership certification on the basis of the existing image cloud data ownership certification method, and solves the certification of the ownership of the video cloud data while considering the cloud storage service performance.

Inventors

• YOU WEIJING
• WU CHENCHEN
• XU LI

Assignees

• 福建师范大学

Dates

Publication Date

20260512

Application Date

20230316

Claims (3)

1. 1. A video data ownership proving method based on double data ownership proving, comprising the following steps: (1) Cloud server Publishing parameters related to a video cloud data ownership proving process, wherein the publishing parameters comprise 、 、 Wherein Is a large prime number with a length meeting the communication security requirements, Is comprised of Finite fields of individual elements whose generator is , Is a digital watermark length meeting the security requirement, a cloud server Selecting a message digest length as disclosed Is a secure message digest function of (1) And a random secret value generated by the user Pseudo-random function of control output Video cloud data Associating multiple owners, cloud server Using owner lists Managing multi-user to video cloud data Is to be taken possession of; (2) User' s Video data to be uploaded is along the coordinate axis 、 、 A kind of electronic device The axial direction is divided into Slice, each data slice edge The axial direction is divided into A plurality of data blocks, each data block edge The axial direction is divided into The data segments are normalized pixel points, namely video cloud data are divided into Each data segment is a pixel point, and each pixel point is marked as And requests to upload video cloud data If video cloud data If the file is not stored in the cloud server, the user uploading the file is recorded as Continuing to execute the step (3), if the video cloud data In the existing cloud server, the user uploading the file at the time is recorded as And skipping the step (4) to continue execution; (3) User' s A video cloud data ownership certificate tag is generated, which comprises the following steps: (3-1) From the slave Randomly selecting a group of private integrity certification coefficients And calculate the corresponding common integrity certification coefficient Then obtain through secure message locking encryption MLE Along the first edge In-sheet Direction calculation first Integrity certification label for individual data blocks ; 、 Sum of Are all Elements on the surface; (3-2) In addition from Randomly selecting a group of integrity certification coefficients Edge of the flange Direction aggregation of on-chip data block integrity labels into data piece integrity labels ; And Are all Elements on the surface; (3-3) Video cloud data 、 、 Sum of Transmitting to cloud server, and then deleting local video cloud data ; 、 Sum of Are all Elements on the surface; (4) By cloud server To follow-up appearance Initiating challenges, i.e. cloud servers Randomly select a group of edges Directional distribution of data pieces, hereinafter denoted as And for each spot check the data sheet slave Selecting a random value on the group The round of challenges set as And will 、 Send to ; And All } are Elements on the surface; (5) According to the present round of challenges In response, i.e. obtained by locking the encrypted MLE with a secure message Edge of the flange All are read in sequence in direction The first of the directional data pieces Line data, and along Calculation of direction traversal Inner edge of sheet In the direction of Integrity certification value on columns And an auxiliary value And will , And Send back to cloud server ; , And All } are Elements on the surface; (6) Cloud server According to Response determination of (a) Whether or not the complete video cloud data is held, i.e. calculate and judge the equation Whether or not the equation is satisfied, if so, the cloud server Accept and accept For video cloud data And will be Joining owner list If the equation is not satisfied, the cloud server Not accept For video cloud data Is a legal owner of (c).
2. 2. The method for proving ownership of video data based on double data ownership proving according to claim 1, wherein in step (2), the method for querying existence of video cloud data comprises the following steps of Computing video cloud data Is a message digest of (a) And send to cloud server Cloud server To be used for To find corresponding video cloud data 。
3. 3. The method of claim 1, wherein in step (3-1) and step (5), the secure message locking encryption MLE selects to use a message locking encryption method based on an inadvertent transmission code or based on secret sharing.

Description

Video data ownership proving method based on double data ownership proving Technical Field The invention belongs to the technical field of cloud service security attributes, and particularly relates to a video data ownership proving method based on double data ownership proving. Background With the continuous development of cloud computing technology, efficient, convenient, high-quality and low-cost cloud storage services have gradually become key infrastructures of modern information systems, and more streaming media data including videos are hosted to the cloud. In order to continuously meet the increasing storage demands, cloud service providers adopt a data deduplication technology in cloud storage service, and the utilization efficiency of cloud storage space is improved by removing repeated data content in cloud storage. At this time, the correspondence between the cloud data and the user is changed from one-to-one to one-to-many, so how to accurately manage the ownership of the cloud data becomes a core security problem in data deduplication. Data deduplication is generally divided into two working modes, server-side deduplication and client-side deduplication, wherein cloud service providers prefer bandwidth-friendly client-side deduplication. In client deduplication, a user obtains ownership of cloud data by properly answering a challenge of a cloud server, a process called "proof of ownership of cloud data". At present, some research results are provided around the ownership proof of cloud data, but the cloud data has extremely strong isomerism, small-flow text data, metadata and large-flow image and audio/video data coexist, and the existing ownership proof method can cause obvious performance degradation when directly acting on the large-flow data, so that the requirement of the streaming media era on confirming ownership of the large-flow data is difficult to meet. In this regard, researchers have proposed the ownership proving method (DEduplication watermarking, DEW) based on digital watermark to the image cloud data, regard image cloud data as the access point, consider the right demand and usability requirement of the image cloud data, combine Message locking encryption (Message-Locked Encryption, MLE) and random factor design can be among a plurality of data owners the digital watermark that the asynchronization shared, project the ownership as the digital watermark in the image cloud data first, then combine digital watermark and ownership proving process organically, finish the effective management of the cloud data ownership. However, this method is only used for processing two-dimensional image cloud data, and is not suitable for processing video cloud data with a time dimension in addition to a spatial two-dimensional one. At present, the ownership of video cloud data is effectively proved to be not paid enough attention and well solved. Disclosure of Invention The invention aims at providing a video data ownership proving method based on double data ownership proving aiming at the ownership proving requirement of video cloud data, and solves the problem of efficient ownership proving of the video cloud data. In order to achieve the above purpose, the technical scheme of the invention is that a video data ownership proving method based on double data ownership proving comprises the following steps: (1) The method comprises the steps that a cloud server S issues public parameters related to a video cloud data ownership proving process, wherein the public parameters comprise q, Z q, g and L, q is a prime number with a length meeting the communication security requirement, Z q is a finite field containing q elements, the generation element is g, and L is a digital watermark length meeting the security requirement; the cloud server S publicly selects a safe message digest function H (-) with a message digest length of L and a pseudo random function H v (-) which is controlled by a random secret value v generated by a user to output, and the video cloud data f associates a plurality of owners, and the cloud server S uses an owner list L owner to manage the ownership of the video cloud data f by multiple users; (2) Dividing video data to be uploaded into z pieces along the z-axis direction of coordinate axes x, y and z by a user O, dividing each data piece into N data blocks along the y-axis direction, dividing each data block into s data segments along the x-axis direction, namely standardized pixel points, namely dividing video cloud data into N=z multiplied by N multiplied by s data segments, namely pixel points, marking each pixel point as m kij, requesting to upload video cloud data f, marking a user uploading a file at this time as O 1 if the video cloud data f does not exist in a cloud server, continuing to execute the step (3), marking the user uploading the file at this time as O t if the video cloud data f exists in the cloud server, and continuing to execute the step (4); (3) User