Ensure Hierarchal Identity Based Data Security in Cloud Environment

Cloud computing has emerged as a new promising field in the internet. It can be thought as a new architecture for the next generation of IT enterprises. It allows the user to access virtualized resources over the internet which can be dynamically scaled. Here, the owner's data is stored at a distributed data centre, which are responsible for its security constraints such as access control and data transmission to user. As the owner does not have physical access on their own data, the data centres are not trustworthy, this resulted in the cloud data security demand. Today, many cloud service providers (CSPs) are using the asymmetric and public key cryptography (PKG) for authenticating and data security purposes using the digital identity of the user. To this end, this article focuses on cloud data storage and its delivery to authorized user. For this purpose, a hierarchal identity-based cryptography method is used for data security and checking the data integrity, in order to make sure that there is no alteration or modification done by a malicious attacker or CSP for its own benefit.

Download Full-text

On Data Security and Encryption Algorithms in Cloud Environment

Applied Mechanics and Materials ◽

10.4028/www.scientific.net/amm.701-702.1106 ◽

2014 ◽

Vol 701-702 ◽

pp. 1106-1111 ◽

Cited By ~ 1

Author(s):

Xin Zheng Zhang ◽

Ya Juan Zhang

Keyword(s):

Cloud Computing ◽

Data Storage ◽

Data Security ◽

Service Providers ◽

Cloud Service ◽

Working Environment ◽

Cloud Environment ◽

Cloud Data ◽

Security Issues ◽

Encryption Algorithms

As information and processes are migrating to the cloud, Cloud Computing is drastically changing IT professionals’ working environment. Cloud Computing solves many problems of conventional computing. However, the new technology has also created new challenges such as data security, data ownership and trans-code data storage. We discussed about Cloud computing security issues, mechanism, challenges that Cloud service providers and consumers face during Cloud engineering. Based on concerning of security issues and challenges, we proposed several encryption algorithms to make cloud data secure and invulnerable. We made comparisons among DES, AES, RSA and ECC algorithms to find combinatorial optimization solutions, which fit Cloud environment well for making cloud data secure and not to be hacked by attackers.

Download Full-text

Adaptive Secure Cross-Cloud Data Collaboration with Identity-Based Cryptography and Conditional Proxy Re-Encryption

Security and Communication Networks ◽

10.1155/2018/8932325 ◽

2018 ◽

Vol 2018 ◽

pp. 1-12 ◽

Cited By ~ 3

Author(s):

Qinlong Huang ◽

Yue He ◽

Wei Yue ◽

Yixian Yang

Keyword(s):

Service Providers ◽

Cloud Service ◽

Security And Privacy ◽

Broadcast Encryption ◽

Cloud Data ◽

Identity Based ◽

Identity Based Cryptography ◽

And Performance ◽

Cryptographic Techniques ◽

Data Collaboration

Data collaboration in cloud computing is more and more popular nowadays, and proxy deployment schemes are employed to realize cross-cloud data collaboration. However, data security and privacy are the most serious issues that would raise great concerns from users when they adopt cloud systems to handle data collaboration. Different cryptographic techniques are deployed in different cloud service providers, which makes cross-cloud data collaboration to be a deeper challenge. In this paper, we propose an adaptive secure cross-cloud data collaboration scheme with identity-based cryptography (IBC) and proxy re-encryption (PRE) techniques. We first present a secure cross-cloud data collaboration framework, which protects data confidentiality with IBC technique and transfers the collaborated data in an encrypted form by deploying a proxy close to the clouds. We then provide an adaptive conditional PRE protocol with the designed full identity-based broadcast conditional PRE algorithm, which can achieve flexible and conditional data re-encryption among ciphertexts encrypted in identity-based encryption manner and ciphertexts encrypted in identity-based broadcast encryption manner. The extensive analysis and experimental evaluations demonstrate the well security and performance of our scheme, which meets the secure data collaboration requirements in cross-cloud scenarios.

Download Full-text

Mitigating the Threat due to Data Deduplication Attacks in Cloud Migration using User Layer Authentication with Light Weight Cryptography

International Journal of Innovative Technology and Exploring Engineering - Special Issue ◽

10.35940/ijitee.c8463.019320 ◽

2020 ◽

Vol 9 (3) ◽

pp. 2539-2545

Keyword(s):

Data Security ◽

Service Providers ◽

Data Integrity ◽

Cloud Service ◽

Behavioral Pattern ◽

Data Migration ◽

Data Deduplication ◽

Cloud Data ◽

Template Attacks ◽

The Impact

The widespread adoption of multi-cloud in enterprises is one of the root causes of cost-effectiveness. Cloud service providers reduce storage costs through advanced data de-duplication, which also provides vulnerabilities for attackers. Traditional approaches to authentication and data security for a single cloud need to be upgraded to be best suitable for cloud-to-cloud data migration security in order to mitigate the impact of dictionary and template attacks on authentication and data integrity, respectively. This paper proposes a scheme of user layer authentication along with lightweight cryptography. The proposed simulates its mathematical model to analyze the behavioral pattern of time-complexity of data security along with user auth protection. The performance pattern validates the model for scalability and reliability against both authentication and data integrity.

Download Full-text

Dynamic Public Data Auditing Schemes on Cloud: A Survey

International Journal of Advanced Research in Computer Science and Software Engineering ◽

10.23956/ijarcsse.v8i1.518 ◽

2018 ◽

Vol 8 (1) ◽

pp. 76 ◽

Cited By ~ 1

Author(s):

R.Santha Maria Rani ◽

Dr.Lata Ragha

Keyword(s):

Cloud Computing ◽

Data Storage ◽

Service Providers ◽

Hash Table ◽

Cloud Service ◽

Third Party ◽

Cloud Data ◽

Merkle Hash Tree ◽

Public Data ◽

Data Auditing

Cloud computing provides elastic computing and storage resource to users. Because of the characteristic the data is not under user’s control, data security in cloud computing is becoming one of the most concerns in using cloud computing resources. To improve data reliability and availability, Public data auditing schemes is used to verify the outsourced data storage without retrieving the whole data. However, users may not fully trust the cloud service providers (CSPs) because sometimes they might be dishonest. Therefore, to maintain the integrity of cloud data, many auditing schemes have been proposed. In this paper, analysis of various existing auditing schemes with their consequences is discussed. Keywords: — Third Party Auditor (TPA), Cloud Service Provider (CSP), Merkle-Hash Tree (MHT), Provable data Possession (PDP), Dynamic Hash Table (DHT).

Download Full-text

An efficient and secure data storage in cloud computing using modified RSA public key cryptosystem

International Journal of Electrical and Computer Engineering (IJECE) ◽

10.11591/ijece.v10i1.pp530-537 ◽

2020 ◽

Vol 10 (1) ◽

pp. 530

Author(s):

Y. Kiran Kumar ◽

R. Mahammad Shafi

Keyword(s):

Cloud Computing ◽

Data Storage ◽

Data Privacy ◽

Service Providers ◽

Cloud Service ◽

Public Key ◽

Public Key Cryptosystem ◽

Cloud Data ◽

Cloud Data Storage ◽

Software Licensing

<span lang="EN-US">Cloud Computing is the ability to improve the utility or train new human resources without investing in new infrastructure, or add capabilities to existence without the latest software licensing. It expanded the capabilities of Information Technology (IT). From the past few years, cloud computing has developed from a good business concept in the best rising sectors of the IT industry. But more information on individuals and companies was put in the cloud, and concerns began to think about how secure the cloud environment was. Despite cloud surrounding structures, enterprise users still do not want to expand their business in the cloud. Security reduces the growth of cloud computing and continues to spread the market with complexity with data privacy and data protection. The security of cloud computing has constantly been an significant aspect of improved quality of service from cloud service providers. Data storage in the cloud has a problem related to data security. However, cloud computing construct many new security challenges which have not been well examine. In order to ensure that the user's data in the cloud is secure, we have proposed an effective mechanism with a distinctive feature of data integrity and privacy. This paper focusing on problems relating to the cloud data storage techniques and security in virtual environment. We recommend a method for providing data storage and security in cloud using public key Cryptosystem, which uses the concept of the modified RSA algorithm to provide better security for the data stored in the cloud. </span>

Download Full-text

Data Partitioning and Reduplication for Providing Integrity to Data in the Cloud

Journal of Computational and Theoretical Nanoscience ◽

10.1166/jctn.2020.9021 ◽

2020 ◽

Vol 17 (9) ◽

pp. 4070-4074

Author(s):

H. M. Nishkala ◽

S. H. Anu ◽

D. A. Bindushree ◽

S. L. Manoj

Keyword(s):

Data Security ◽

Privacy Protection ◽

Service Providers ◽

Cloud Service ◽

Major Elements ◽

Data Partitioning ◽

Security And Privacy ◽

Data Loss ◽

Cloud Data ◽

Cloud Service Providers

Cloud Computing is a boon to the field of information and technology. The two major elements of client worries are Data security and Privacy Protection. Data may be revised and improved when client stores the information in the cloud so there might be danger of data loss. Therefore client information is moved to the data hub which cannot be controlled by the clients. Hence high safety efforts are required to secure data inside the cloud. Here data is divided into fragments and they are converted into encrypted file. This encrypted file is issued to arbitrarily chosen cloud service providers by the cloud data owners. Even after the successful attack, attackers do not get the meaning full information. If cloud data clients access to get any document that relating to encrypted file is regenerated from the fragments and clients must download it. When the applicant coordinates the strategy with the original details, then only file can be decoded. Therefore it demonstrates that prospective strategy improves the data integrity and confidentiality.

Download Full-text

Reliable and Secure Distributed Cloud Data Storage Using Reed-Solomon Codes

International Journal of Software Engineering and Knowledge Engineering ◽

10.1142/s0218194015400355 ◽

2015 ◽

Vol 25 (09n10) ◽

pp. 1611-1632 ◽

Cited By ~ 2

Author(s):

Haiping Xu ◽

Deepti Bhalerao

Keyword(s):

Data Storage ◽

Service Providers ◽

Cloud Service ◽

Cloud Data ◽

Server Side ◽

Reed Solomon Codes ◽

Redundant Data ◽

Cloud Data Storage ◽

Client Side ◽

Distributed Cloud

Despite the popularity and many advantages of using cloud data storage, there are still major concerns about the data stored in the cloud, such as security, reliability and confidentiality. In this paper, we propose a reliable and secure distributed cloud data storage schema using Reed-Solomon codes. Different from existing approaches to achieving data reliability with redundancy at the server side, our proposed mechanism relies on multiple cloud service providers (CSP), and protects users’ cloud data from the client side. In our approach, we view multiple cloud-based storage services as virtual independent disks for storing redundant data encoded with erasure codes. Since each CSP has no access to a user’s complete data, the data stored in the cloud would not be easily compromised. Furthermore, the failure or disconnection of a CSP will not result in the loss of a user’s data as the missing data pieces can be readily recovered. To demonstrate the feasibility of our approach, we developed a prototype distributed cloud data storage application using three major CSPs. The experimental results show that, besides the reliability and security related benefits of our approach, the application outperforms each individual CSP for uploading and downloading files.

Download Full-text

Towards performance evaluation of cloud service providers for cloud data security

International Journal of Information Management ◽

10.1016/j.ijinfomgt.2016.03.005 ◽

2016 ◽

Vol 36 (4) ◽

pp. 618-625 ◽

Cited By ~ 29

Author(s):

Muthu Ramachandran ◽

Victor Chang

Keyword(s):

Performance Evaluation ◽

Data Security ◽

Service Providers ◽

Cloud Service ◽

Cloud Data ◽

Cloud Service Providers

Download Full-text

Multi-Layered Dynamic Encryption Security Scheme for Cloud Data Storage

INTERNATIONAL JOURNAL OF COMPUTERS & TECHNOLOGY ◽

10.24297/ijct.v16i3.6150 ◽

2017 ◽

Vol 16 (3) ◽

pp. 6233-6239

Author(s):

Stephen Rodriguez ◽

Paolina Centonze

Keyword(s):

Mobile Devices ◽

Data Storage ◽

Service Providers ◽

Journal Article ◽

Cloud Service ◽

Security Requirements ◽

Cloud Data ◽

Security Scheme ◽

Cloud Service Providers ◽

Dynamic Encryption

This journal article discusses our Dynamic Encryption Key Security Scheme (DEKSS) and the purpose it serves in providing a new security architecture for protecting databases used in technology stacks involving Mobile and Cloud based devices. Our security scheme is a novel architectural strategy that implements a full-stack architecture for the dispatching and management of data between several Cloud Service Providers (CSP) and any number of mobile devices. This strategy can promise data security needs for both mobile devices and cloud service providers without impacting the security requirements of the other party. While there are limitations in being truly secure, such as those recognized by WhiteHat security in their annual report[1], we believe that our security scheme can effectively circumvent potential threats and secure data through folding data using any number of encryption layers for every table and column of data to be stored. Through this approach, we have found our work to be applicable to a variety of different audiences within the cloud security space.

Download Full-text