scholarly journals Practical Frequency-Hiding Order-Preserving Encryption with Improved Update

2021 ◽  
Vol 2021 ◽  
pp. 1-8
Author(s):  
JiHye Yang ◽  
Kee Sung Kim
Keyword(s):  
Cloud Security ◽  
Security Model ◽  
Order Information ◽  
Additional Information

Order-preserving encryption (OPE) that preserves the numerical ordering of plaintexts is one of the promising solutions of cloud security. In 2013, an ideally secure OPE, which reveals no additional information except for the order of underlying plaintexts, was proposed, along with the notion (mutable encryption) that ciphertexts can be changed. Unfortunately, even the ideally secure OPE can be vulnerable by inferring the underlying frequency of repeated plaintexts. To solve this problem, in 2015, Kerschbaum designed a frequency-hiding OPE (FH-OPE) scheme based on the notion of a randomized order under the strengthened security model. Later, Maffei et al. has shown that Kerschbaum’s model is imprecise, which means no such OPE scheme can exist. Moreover, they provided a new FH-OPE scheme under the corrected security model. However, their scheme requires the order information of all the encrypted plaintexts as an input; therefore, it causes relatively high overhead during encryption. In this work, we propose a more efficient FH-OPE based on Maffei et al.’ s security model and also present an improved update algorithm suitable for duplicate plaintexts.

Achieving Cloud Security Using a Third Party Auditor and Preserving Privacy for Shared Data Over a Public Cloud

2021 ◽  
pp. 1371-1391
Author(s):  
Vitthal Sadashiv Gutte ◽  
Sita Devulapalli
Keyword(s):  
Cloud Security ◽  
Third Party ◽  
Security Model ◽  
Cloud Environment ◽  
Public Cloud ◽  
Shared Data ◽  
Metadata File ◽  
Efficient Mechanisms ◽  
Different Levels ◽  
Access Security

Correctness of data and efficient mechanisms for data security, while transferring the file to and from Cloud, are of paramount importance in today's cloud-centric processing. A mechanism for correctness and efficient transfer of data is proposed in this article. While processing users request data, a set of attributes are defined and checked. States with attributes at different levels are defined to prevent unauthorized access. Security is provided while storing the data using a chunk generation algorithm and verification of chunks using lightweight Third-Party Auditor (TPA). TPA uses digital signatures to verify user's data that are generated by RSA with MD5 algorithms. The metadata file of generated chunks is encrypted using a modified AES algorithm. The proposed method prevents unauthorized users from accessing the data in the cloud environment, in addition to maintaining data integrity. Results of the proposed cloud security model implementation are discussed.

Multitiered cloud security model

2015 ◽  
pp. 83-97 ◽  
Author(s):  
Hing-Yan Lee ◽  
Yao-Sing Tao
Keyword(s):  
Cloud Security ◽  
Security Model

Hybrid Data Security Model for Cloud

2013 ◽  
Vol 3 (3) ◽  
pp. 50-59
Author(s):  
Sandeep K. Sood
Keyword(s):  
Data Storage ◽  
User Authentication ◽  
Security Analysis ◽  
Cost Effective ◽  
Cloud Security ◽  
Main Concern ◽  
Security Model ◽  
Public Cloud ◽  
Private Cloud ◽  
The Public

Security of data is one of the main concern in the implementation of cloud computing. This paper proposes a highly effective and efficient cloud security model. The proposed security model keeps the most critical data on the private cloud and the rest of it on the public cloud. It uses hash codes to check the integrity of the data at the public cloud. The proposed cloud security model provides the provision of defining user roles thereby determining the type of access the user exercises on the data. This model uses dual verification mechanism for user authentication by using username and password on one layer and key authentication on another layer. A cryptographic process is used to make the overall security of the data on the cloud highly robust. A comprehensive security analysis of the model is done against various types of attacks and the results are very promising. This model is compared to various existing cloud security models and the results shows that our technique is faster, much more robust and efficient as compared to other existing models. This model is cost effective because it uses private cloud only for highly sensitive data. Rest of data is stored on the public cloud, where data storage cost is comparatively very less.

scholarly journals An Elliptic Curve Based Schnorr Cloud Security Model in Distributed Environment

2016 ◽  
Vol 2016 ◽  
pp. 1-8 ◽  
Author(s):  
Vinothkumar Muthurajan ◽  
Balaji Narayanasamy
Keyword(s):  
Elliptic Curve ◽  
Data Transfer ◽  
Cloud Model ◽  
Hash Table ◽  
Data Access ◽  
Cloud Security ◽  
Distributed Hash Table ◽  
Security Model ◽  
Cloud Server ◽  
Secure Data

Cloud computing requires the security upgrade in data transmission approaches. In general, key-based encryption/decryption (symmetric and asymmetric) mechanisms ensure the secure data transfer between the devices. The symmetric key mechanisms (pseudorandom function) provide minimum protection level compared to asymmetric key (RSA, AES, and ECC) schemes. The presence of expired content and the irrelevant resources cause unauthorized data access adversely. This paper investigates how the integrity and secure data transfer are improved based on the Elliptic Curve based Schnorr scheme. This paper proposes a virtual machine based cloud model with Hybrid Cloud Security Algorithm (HCSA) to remove the expired content. The HCSA-based auditing improves the malicious activity prediction during the data transfer. The duplication in the cloud server degrades the performance of EC-Schnorr based encryption schemes. This paper utilizes the blooming filter concept to avoid the cloud server duplication. The combination of EC-Schnorr and blooming filter efficiently improves the security performance. The comparative analysis between proposed HCSA and the existing Distributed Hash Table (DHT) regarding execution time, computational overhead, and auditing time with auditing requests and servers confirms the effectiveness of HCSA in the cloud security model creation.

scholarly journals Challenges and Issues in Cloud Security for WBAN applications - A Systematic Survey

2020 ◽  
pp. 34-47
Author(s):  
Gomathy B ◽  
Ramesh SM ◽  
Shanmugavadivel G
Keyword(s):  
Cloud Security ◽  
Privacy Preserving ◽  
Security And Privacy ◽  
Security Model ◽  
Cloud Environment ◽  
Body Area ◽  
Evaluation Strategies ◽  
Security Challenges ◽  
Privacy Issues ◽  
Comprehensive Study

A systematic and comprehensive review of privacy preserving and security challenges in cloud environment is presented in this literature. Since, cloud supports various applications, it requires immediate attention for serious security and privacy issues. Research must focus on efficient security mechanism for cloud-based networks, also it is essential to explore the techniques to maintain the integrity and confidentiality of the data. This paper highlights research challenges and directions concerning the security as a comprehensive study through intensive analysis of various literatures in the last decade, and it is summarized in terms of architecture types, evaluation strategies and security model. We surveyed, investigated and reviewed the articles in every aspect related to security and privacy preserving concepts and identified the following tasks: 1) architecture of wireless body area networks in cloud, 2) security and privacy in cloud based WBAN, 3), Cloud security and privacy issues in cloud 4) diverse authentication and cryptographic approaches, 4) optimization strategies to improve the security performance.

Achieving Cloud Security Using a Third Party Auditor and Preserving Privacy for Shared Data Over a Public Cloud

2020 ◽  
Vol 11 (1) ◽  
pp. 77-95
Author(s):  
Vitthal Sadashiv Gutte ◽  
Sita Devulapalli
Keyword(s):  
Cloud Security ◽  
Third Party ◽  
Security Model ◽  
Shared Data ◽  
Aes Algorithm ◽  
Metadata File ◽  
Efficient Mechanisms ◽  
Different Levels ◽  
Efficient Transfer ◽  
Modified Aes

Correctness of data and efficient mechanisms for data security, while transferring the file to and from Cloud, are of paramount importance in today's cloud-centric processing. A mechanism for correctness and efficient transfer of data is proposed in this article. While processing users request data, a set of attributes are defined and checked. States with attributes at different levels are defined to prevent unauthorized access. Security is provided while storing the data using a chunk generation algorithm and verification of chunks using lightweight Third-Party Auditor (TPA). TPA uses digital signatures to verify user's data that are generated by RSA with MD5 algorithms. The metadata file of generated chunks is encrypted using a modified AES algorithm. The proposed method prevents unauthorized users from accessing the data in the cloud environment, in addition to maintaining data integrity. Results of the proposed cloud security model implementation are discussed.

Sign in / Sign up

Export Citation Format

Share Document