The separation of data ownership and management rights in cloud storage architectures results in losing control over outsourced data, making it challenging to achieve deterministic deletion and verify-deletion results. This predicament precipitates security vulnerabilities that impede the advancement of cloud services. This study proposes a deterministic storage and deletion mechanism for trusted cloud service environments (DSDM-TCSEs). This mechanism establishes a three-layer cloud data interaction framework, adopting blockchain as the communication intermediary layer, and employs techniques such as overwrite key negotiation strategy and CP-ABE encryption to achieve fine-grained storage, deletion control, and deletion result verification of cloud data, effectively isolating the cloud service provider and protecting data privacy. It also proposes an efficient evidence strategy based on a cuckoo filter and data noise vectors for rapid construction and verification. Experimental results show that this method improves the speed of evidence construction and verification by 83% compared to related schemes and saves 5% storage overhead when the number of attributes is large, demonstrating good time and space performance and providing a solid guarantee for achieving deterministic storage and deletion in trusted cloud services.

中文翻译：

---

DSDM-TCSE：适用于可信云服务环境的确定性存储和删除机制


云存储架构中数据所有权和管理权的分离导致失去对外包数据的控制，这使得实现确定性删除和验证-删除结果变得具有挑战性。这种困境催生了阻碍云服务发展的安全漏洞。本研究提出了一种可信云服务环境 （DSDM-TCSE） 的确定性存储和删除机制。该机制建立了三层云数据交互框架，采用区块链作为通信中介层，采用覆盖密钥协商策略和 CP-ABE 加密等技术，实现对云数据的细粒度存储、删除控制和删除结果验证，有效隔离云服务提供商，保护数据隐私。它还提出了一种基于 cuckoo 滤波器和数据噪声向量的高效证据策略，用于快速构建和验证。实验结果表明，该方法相比相关方案，证据构建和验证的速度提高了 83%，在属性数量较多时节省了 5% 的存储开销，表现出良好的时空性能，为在可信云服务中实现确定性存储和删除提供了坚实的保障。