SECURE COLLABORATIVE INTEGRITY VERIFICATION FOR HYBRID CLOUD ENVIRONMENTS

A hybrid cloud is a cloud computing environment in which an organization provides and manages some internal resources and has others provided externally. However, this new environment could bring irretrievable losses to the clients due to a lack of integrity verification mechanism for distributed data outsourcing. To support scalable service and data migration, in this paper we address the construction of a collaborative integrity verification mechanism in hybrid clouds where we consider the existence of multiple cloud service providers to collaboratively store and maintain the clients' data. We propose a collaborative provable data possession scheme adopting the techniques of homomorphic verifiable responses and hash index hierarchy. In addition, we articulate the performance optimization mechanisms for our scheme and prove the security of our scheme based on multi-prover zero-knowledge proof system, which can satisfy the properties of completeness, knowledge soundness, and zero-knowledge. Our experiments also show that our proposed solution only incurs a small constant amount of communications overhead.

Download Full-text

Improvement of Privacy and Security in Hybrid Cloud with Attribute Group Based Access Control

International Journal of Scientific Research in Computer Science Engineering and Information Technology ◽

10.32628/cseit19518 ◽

2019 ◽

pp. 57-61

Author(s):

Kayalvili S ◽

Sowmitha V

Keyword(s):

Cloud Computing ◽

Access Control ◽

Data Storage ◽

Service Providers ◽

Cloud Service ◽

Security Requirements ◽

Security And Privacy ◽

Data Outsourcing ◽

Privacy And Security ◽

Control Approach

Cloud computing enables users to accumulate their sensitive data into cloud service providers to achieve scalable services on-demand. Outstanding security requirements arising from this means of data storage and management include data security and privacy. Attribute-based Encryption (ABE) is an efficient encryption system with fine-grained access control for encrypting out-sourced data in cloud computing. Since data outsourcing systems require flexible access control approach Problems arises when sharing confidential corporate data in cloud computing. User-Identity needs to be managed globally and access policies can be defined by several authorities. Data is dual encrypted for more security and to maintain De-Centralization in Multi-Authority environment.

Download Full-text

Mitigating the Threat due to Data Deduplication Attacks in Cloud Migration using User Layer Authentication with Light Weight Cryptography

International Journal of Innovative Technology and Exploring Engineering - Special Issue ◽

10.35940/ijitee.c8463.019320 ◽

2020 ◽

Vol 9 (3) ◽

pp. 2539-2545

Keyword(s):

Data Security ◽

Service Providers ◽

Data Integrity ◽

Cloud Service ◽

Behavioral Pattern ◽

Data Migration ◽

Data Deduplication ◽

Cloud Data ◽

Template Attacks ◽

The Impact

The widespread adoption of multi-cloud in enterprises is one of the root causes of cost-effectiveness. Cloud service providers reduce storage costs through advanced data de-duplication, which also provides vulnerabilities for attackers. Traditional approaches to authentication and data security for a single cloud need to be upgraded to be best suitable for cloud-to-cloud data migration security in order to mitigate the impact of dictionary and template attacks on authentication and data integrity, respectively. This paper proposes a scheme of user layer authentication along with lightweight cryptography. The proposed simulates its mathematical model to analyze the behavioral pattern of time-complexity of data security along with user auth protection. The performance pattern validates the model for scalability and reliability against both authentication and data integrity.

Download Full-text

Migration of Data between Cloud and Non-Cloud Datastores

Migrating Legacy Applications ◽

10.4018/978-1-4666-2488-7.ch009 ◽

2012 ◽

pp. 206-225

Author(s):

Shreyansh Bhatt ◽

Sanjay Chaudhary ◽

Minal Bhise

Keyword(s):

Relational Databases ◽

Service Providers ◽

Cloud Service ◽

Data Access ◽

Data Migration ◽

Cloud Service Providers ◽

Application Data ◽

And Migration ◽

Legacy Applications ◽

Recent Attention

The on demand services and scalability features of cloud computing have attracted many customers to move their applications into the cloud. Therefore, application, data access, storage, and migration to and from cloud have garnered much recent attention, especially with well-established legacy applications. Cloud service providers are following different standards to host applications and data. In the present chapter, the authors focus on data migration from various datastores to cloud and vice versa. They have discussed various challenges associated with this reciprocal migration and proposed a simple yet powerful model whereby data can be migrated between various datastores, especially cloud datastores. The results show an efficient way to move data from conventional relational databases to Google App Engines and how data residing in the Google App Engines can be stored on relational databases and vice versa. They provide a generalized architecture to store data in any cloud datastore. The authors use RDF/RDFS as an intermediate model in the migration process.

Download Full-text

Multi-Dimensional Performance Optimization in Cloud Computing

Journal of Computational and Theoretical Nanoscience ◽

10.1166/jctn.2017.6325 ◽

2017 ◽

Vol 14 (1) ◽

pp. 335-340

Author(s):

Yu Shengji ◽

Xiang Yanping

Keyword(s):

Cloud Computing ◽

Performance Optimization ◽

Service Providers ◽

Cloud Service ◽

Function Technique ◽

Service Time Distribution ◽

Network Resource ◽

Optimal Network ◽

Multi Agent ◽

Computing Platforms

The challenge of multi-dimensional performance optimization has been extensively addressed in the literature based on deterministic parameters. Since resources in Cloud Computing platforms are geographically separated and heterogeneous, it is rather difficult to apply a uniform distribution algorithm for achieving various optimization goals. Based on the analysis of cloud service performance measures, this paper proposes an approach for optimal network resource distribution managed by the multi-agent system (MAS), which is aimed to satisfy both the users’ and the service providers’ requirements. Moreover, a communication algorithm that uses the universal generating function technique is proposed to obtain the service time distribution efficiently.

Download Full-text

HNSciCloud, a Hybrid Cloud for Science

EPJ Web of Conferences ◽

10.1051/epjconf/201921409006 ◽

2019 ◽

Vol 214 ◽

pp. 09006

Author(s):

João Fernandes ◽

Bob Jones ◽

Sergey Yakubov ◽

Andrea Chierici

Keyword(s):

Service Providers ◽

Cloud Service ◽

Data Access ◽

Cloud Services ◽

Use Cases ◽

Hybrid Cloud ◽

Network Bandwidth ◽

It Resources ◽

Cloud Service Providers ◽

Research Organisations

Helix Nebula Science Cloud (HNSciCloud) has developed a hybrid cloud platform that links together commercial cloud service providers and research organizations’ in-house IT resources via the GEANT network. The platform offers data management capabilities with transparent data access where applications can be deployed with no modifications on both sides of the hybrid cloud and with compute services accessible via eduGAIN [1] and ELIXIR [2] federated identity and access management systems. In addition, it provides support services, account management facilities, full documentation and training. The cloud services are being tested by a group of 10 research organisations from across Europe [3], against the needs of use-cases from seven ESFRI infrastructures [4]. The capacity procured by ten research organisations from the commercial cloud service providers to support these use-cases during 2018 exceeds twenty thousand cores and two petabytes of storage with a network bandwidth of 40Gbps. All the services are based on open source implementations that do not require licenses in order to be deployed on the in-house IT resources of research organisations connected to the hybrid platform. An early adopter scheme has been put in place so that more research organisations can connect to the platform and procure additional capacity to support their research programmes.

Download Full-text

A framework for preserving data security in hybrid cloud environment using trusted multiple cloud service providers

2014 Sixth International Conference on Advanced Computing (ICoAC) ◽

10.1109/icoac.2014.7229710 ◽

2014 ◽

Author(s):

K. S. Vijayanand ◽

T. Mala

Keyword(s):

Data Security ◽

Service Providers ◽

Cloud Service ◽

Hybrid Cloud ◽

Cloud Environment ◽

Cloud Service Providers

Download Full-text

Intelligent Hybrid Cloud Data Hosting Services with Effective Cost and High Availability

International Journal of Electrical and Computer Engineering (IJECE) ◽

10.11591/ijece.v7i4.pp2176-2182 ◽

2017 ◽

Vol 7 (4) ◽

pp. 2176 ◽

Cited By ~ 1

Author(s):

Madhu Bala Myneni ◽

L V Narasimha Prasad ◽

D Naveen Kumar

Keyword(s):

Service Providers ◽

Low Cost ◽

Cost Effective ◽

Cloud Service ◽

High Availability ◽

Hybrid Cloud ◽

Cloud Data ◽

Effective Cost ◽

Space Cost ◽

Type Of Transition

<p>In this Paper the major concentration is an efficient and user based data hosting service for hybrid cloud. It provides friendly transaction scheme with the features of cost effective and high availability to all users. This framework intelligently puts data into cloud with effective cost and high availability. This gives a plan of proof of information respectability in which the client has utilize to check the rightness of his information. In this study the major cloud storage vendors in India are considered and the parameters like storage space, cost of storage, outgoing bandwidth and type of transition mode. Based on available knowledge on all parameters of existing cloud service providers in India, the intelligent hybrid cloud data hosting framework are assured to customers for low cost and high availability with mode of transition. It guarantees that the ability at the customer side is negligible and which will be helpful for customers.</p>

Download Full-text

A Practical Conflicting Role-based Cloud Security Risk Evaluation Method

Recent Advances in Computer Science and Communications ◽

10.2174/2666255813666191204145140 ◽

2019 ◽

Vol 13 ◽

Author(s):

Jin Han ◽

Jing Zhan ◽

Xiaoqing Xia ◽

Xue Fan

Keyword(s):

Risk Evaluation ◽

Evaluation Method ◽

Service Providers ◽

Risk Preferences ◽

Cloud Service ◽

Cloud Security ◽

Third Party ◽

Security Evaluation ◽

Security Risk ◽

Cloud Users

Background: Currently, Cloud Service Provider (CSP) or third party usually proposes principles and methods for cloud security risk evaluation, while cloud users have no choice but accept them. However, since cloud users and cloud service providers have conflicts of interests, cloud users may not trust the results of security evaluation performed by the CSP. Also, different cloud users may have different security risk preferences, which makes it difficult for third party to consider all users' needs during evaluation. In addition, current security evaluation indexes for cloud are too impractical to test (e.g., indexes like interoperability, transparency, portability are not easy to be evaluated). Methods: To solve the above problems, this paper proposes a practical cloud security risk evaluation method of decision-making based on conflicting roles by using the Analytic Hierarchy Process (AHP) with Aggregation of Individual priorities (AIP). Results: Not only can our method bring forward a new index system based on risk source for cloud security and corresponding practical testing methods, but also can obtain the evaluation result with the risk preferences of conflicting roles, namely CSP and cloud users, which can lay a foundation for improving mutual trusts between the CSP and cloud users. The experiments show that the method can effectively assess the security risk of cloud platforms and in the case where the number of clouds increased by 100% and 200%, the evaluation time using our methodology increased by only by 12% and 30%. Conclusion: Our method can achieve consistent decision based on conflicting roles, high scalability and practicability for cloud security risk evaluation.

Download Full-text

Improved Proofs Of Retrievability And Replication For Data Availability In Cloud Storage

The Computer Journal ◽

10.1093/comjnl/bxz151 ◽

2020 ◽

Vol 63 (8) ◽

pp. 1216-1230 ◽

Cited By ~ 2

Author(s):

Wei Guo ◽

Sujuan Qin ◽

Jun Lu ◽

Fei Gao ◽

Zhengping Jin ◽

...

Keyword(s):

Service Providers ◽

Cloud Service ◽

Data Availability ◽

Forgery Attack ◽

Common Strategy ◽

Comparable Performance ◽

Replication Scheme ◽

High Level ◽

Cloud Users ◽

Proofs Of Retrievability

Abstract For a high level of data availability and reliability, a common strategy for cloud service providers is to rely on replication, i.e. storing several replicas onto different servers. To provide cloud users with a strong guarantee that all replicas required by them are actually stored, many multi-replica integrity auditing schemes were proposed. However, most existing solutions are not resource economical since users need to create and upload replicas of their files by themselves. A multi-replica solution called Mirror is presented to overcome the problems, but we find that it is vulnerable to storage saving attack, by which a dishonest provider can considerably save storage costs compared to the costs of storing all the replicas honestly—while still can pass any challenge successfully. In addition, we also find that Mirror is easily subject to substitution attack and forgery attack, which pose new security risks for cloud users. To address the problems, we propose some simple yet effective countermeasures and an improved proofs of retrievability and replication scheme, which can resist the aforesaid attacks and maintain the advantages of Mirror, such as economical bandwidth and efficient verification. Experimental results show that our scheme exhibits comparable performance with Mirror while achieving high security.

Download Full-text

A Generic Model for Identifying QoS Parameters Interrelations in Cloud Services Selection Ontology during Runtime

Symmetry ◽

10.3390/sym13040563 ◽

2021 ◽

Vol 13 (4) ◽

pp. 563

Author(s):

Babu Rajendiran ◽

Jayashree Kanniappan

Keyword(s):

Service Providers ◽

Cloud Service ◽

Cloud Services ◽

Operating Costs ◽

Generic Model ◽

Business Organizations ◽

Cloud Environment ◽

Cloud Service Provider ◽

Qos Parameters ◽

Computer Based

Nowadays, many business organizations are operating on the cloud environment in order to diminish their operating costs and to select the best service from many cloud providers. The increasing number of Cloud Services available on the market encourages the cloud consumer to be conscious in selecting the most apt Cloud Service Provider that satisfies functionality, as well as QoS parameters. Many disciplines of computer-based applications use standardized ontology to represent information in their fields that indicate the necessity of an ontology-based representation. The proposed generic model can help service consumers to identify QoS parameters interrelations in the cloud services selection ontology during run-time, and for service providers to enhance their business by interpreting the various relations. The ontology has been developed using the intended attributes of QoS from various service providers. A generic model has been developed and it is tested with the developed ontology.

Download Full-text