scholarly journals Group Delegated ID-Based Proxy Reencryption for the Enterprise IoT-Cloud Storage Environment

2021 ◽  
Vol 2021 ◽  
pp. 1-12
Author(s):  
Won-Bin Kim ◽  
Daehee Seo ◽  
Donghyun Kim ◽  
Im-Yeong Lee
Keyword(s):  
Cloud Storage ◽  
Data Transfer ◽  
Public Key ◽  
Security Threats ◽  
Cloud Environment ◽  
Process Data ◽  
Data Owner ◽  
Iot Devices ◽  
Cloud Storage Environment ◽  
Problem Data

In general, ID-based proxy reencryption (IBPRE) includes data transfer in a 1 : 1 manner between a sender and receiver. Therefore, only the data owner has the authority to decrypt or reencrypt the data that is encrypted with his/her public key. However, in an environment with data self-sovereignty, such as an enterprise IoT-cloud environment, the data are directly managed by cloud once data is uploaded from user-controlled IoT devices. In such a situation, there is no way of sharing data if the data owner has no access over the data due to being outside the workplace and other issues. In this study, to solve this problem, data can be shared even when the data cannot be accessed by delegating the authority of the data owner to generate the reencryption key to other users. In addition, by solving the security threats that may appear in this process, data sharing can be performed securely and efficiently in the corporate environment.

scholarly journals Three factor authentication system with modified ECC based secured data transfer: untrusted cloud environment

2021 ◽  
Author(s):  
Dilip Venkata Kumar Vengala ◽  
D. Kavitha ◽  
A. P. Siva Kumar
Keyword(s):  
Cloud Storage ◽  
Data Transfer ◽  
Security Threats ◽  
Cloud Environment ◽  
Server Side ◽  
Cloud Server ◽  
Authentication System ◽  
Secured Data ◽  
Compressed Data ◽  
Cloud Storage Services

AbstractCloud computing (CC) is a technology that delivers its service by means of the internet. In the modern scenario, cloud storage services have gained attention. The cloud environment confronts data breaches expansively in cloud storage, which might bring about the disclosure of personal in addition to corporate data. Thus, the requirement arises for the creation of a more foremost authentication system. Customary authentication schemes depend on techniques, like Password Authentications Protocol (PAP), Challenge Handshakes Authentication Protocols (CHAP), as well as One-Time Pads (OTP), which are often susceptible to malevolent attacks as well as security threats. To shun such issues, this paper proposed a Modified ECC centred secure data transfer and a ‘3’-factor authentication scheme in the untrusted cloud environment. The proposed work comprises ‘3’ steps: authentication, data compression, and safe data transfer. In the authentication phase, the SHA-512 algorithm along with CCP is utilized. After that, the user-uploaded data is compressed utilizing CHA on the server-side. Next, MECC encrypts the compressed data, and then, safely uploaded it to the cloud server (CS). In the investigational appraisal, the proposed work is contrasted with the prevailing methods. The outcomes proved that the proposed work renders better security than the prevailing methods.

Survey on DDoS Attacks and Defense Mechanisms in Cloud and Fog Computing

2018 ◽  
Vol 10 (3) ◽  
pp. 61-83 ◽  
Author(s):  
Deepali Chaudhary ◽  
Kriti Bhushan ◽  
B.B. Gupta
Keyword(s):  
Cloud Computing ◽  
Defense Mechanisms ◽  
Low Cost ◽  
Fog Computing ◽  
Smart Devices ◽  
Cloud Environment ◽  
Security Issue ◽  
Process Data ◽  
Ddos Attack ◽  
Iot Devices

This article describes how cloud computing has emerged as a strong competitor against traditional IT platforms by offering low-cost and “pay-as-you-go” computing potential and on-demand provisioning of services. Governments, as well as organizations, have migrated their entire or most of the IT infrastructure to the cloud. With the emergence of IoT devices and big data, the amount of data forwarded to the cloud has increased to a huge extent. Therefore, the paradigm of cloud computing is no longer sufficient. Furthermore, with the growth of demand for IoT solutions in organizations, it has become essential to process data quickly, substantially and on-site. Hence, Fog computing is introduced to overcome these drawbacks of cloud computing by bringing intelligence to the edge of the network using smart devices. One major security issue related to the cloud is the DDoS attack. This article discusses in detail about the DDoS attack, cloud computing, fog computing, how DDoS affect cloud environment and how fog computing can be used in a cloud environment to solve a variety of problems.

Survey on DDoS Attacks and Defense Mechanisms in Cloud and Fog Computing

2019 ◽  
pp. 1927-1951
Author(s):  
Deepali Chaudhary ◽  
Kriti Bhushan ◽  
B.B. Gupta
Keyword(s):  
Cloud Computing ◽  
Defense Mechanisms ◽  
Low Cost ◽  
Fog Computing ◽  
Smart Devices ◽  
Cloud Environment ◽  
Security Issue ◽  
Process Data ◽  
Ddos Attack ◽  
Iot Devices

This article describes how cloud computing has emerged as a strong competitor against traditional IT platforms by offering low-cost and “pay-as-you-go” computing potential and on-demand provisioning of services. Governments, as well as organizations, have migrated their entire or most of the IT infrastructure to the cloud. With the emergence of IoT devices and big data, the amount of data forwarded to the cloud has increased to a huge extent. Therefore, the paradigm of cloud computing is no longer sufficient. Furthermore, with the growth of demand for IoT solutions in organizations, it has become essential to process data quickly, substantially and on-site. Hence, Fog computing is introduced to overcome these drawbacks of cloud computing by bringing intelligence to the edge of the network using smart devices. One major security issue related to the cloud is the DDoS attack. This article discusses in detail about the DDoS attack, cloud computing, fog computing, how DDoS affect cloud environment and how fog computing can be used in a cloud environment to solve a variety of problems.

scholarly journals Probabilistic Security Interface for IOT Devices in the Cloud Network

2020 ◽  
Vol 8 (5) ◽  
pp. 3454-3457
Keyword(s):  
Network Security ◽  
Network Architecture ◽  
Complex Problem ◽  
Security Threats ◽  
Core Network ◽  
Cloud Environment ◽  
The Core ◽  
Cloud Robotics ◽  
Iot Devices ◽  
Cloud Network

In the real world cloud robotics network are highly structured. The network security and IOT devices ability to cope with complex problem in such cloud environment crucially depend on exploiting this network security structured.C2M (Cloud to Machine) is the core network technology to implement cloud robotics. This paper firstly introduce the concept of C2M with Cloud Heritage Technique and the cloud network architecture of C2MHT (Cloud to Machine Heritage Technique) .Then it analyses the cloud security threats of C2M , moving the C2M robotics devices to unauthorized location and note.

scholarly journals E-HIP: An Energy-Efficient OpenHIP-Based Security in Internet of Things Networks

Sensors ◽  
2019 ◽  
Vol 19 (22) ◽  
pp. 4921 ◽  
Author(s):  
Peter Kaňuch ◽  
Dominik Macko
Keyword(s):  
Internet Of Things ◽  
Data Transfer ◽  
Security Protocols ◽  
Security Threats ◽  
Optimized Protocol ◽  
Host Identity ◽  
Iot Devices ◽  
High Level ◽  
Application Specific ◽  
The Internet Of Things

The rapidly growing segment of the Internet of Things (IoT) makes the security threats more prominent than ever. The research around communication security and cybersecurity in such networks is still a challenge, mainly due to the typically limited energy and computation resources of IoT devices. The strong security mechanisms require significant power and thus the energy wastage must be minimized. Optimized application-specific security protocols are commonly used to make the data transfer more efficient, while still offering a high level of security. The supported security features, such as confidentiality, integrity or authenticity, should not be affected by the optimization. Our work is focused on optimizing one of the existing security protocols for the use in the IoT area, namely the Host Identity Protocol (HIP). Based on the analysis of related works, we have identified multiple possibilities for optimization and combined some of them into the proposed E-HIP optimized protocol. For verification purpose, it has been implemented as a modification of the open-source OpenHIP library and applied on a communication between real hardware devices. The secured communication worked correctly. The resulting effect of the proposed optimization has been evaluated experimentally and it represents an increase in energy efficiency by about 20%. Compared to other HIP optimizations, the achieved results are similar; however, the proposed optimizations are unique and can be further combined with some of the existing ones to achieve even higher efficiency.

scholarly journals PRIVACY PRESERVING ADVANCED SECURITY ON UNTRUSTED CLOUD WITH SELF BACKUP PROCESS

2017 ◽  
Vol 5 (4) ◽  
pp. 176-181
Author(s):  
Sadeer Dheyaa Abdulameer
Keyword(s):  
Cloud Storage ◽  
Service Providers ◽  
Time Data ◽  
The Public ◽  
Government Organizations ◽  
Data Owner ◽  
Cloud Storage Service ◽  
Storage Service ◽  
Problem Data ◽  
Data Consumer

Cloud Storage service are frequently required for many corporate and government organizations. Most of cloud storage service providers are un-trusted, so it is not safe to keep the data in cloud for long period. Many are using cloud storage for data sharing that means it is not possible to send a big file in email, maximum 25 GB are allowed, for big files, files are uploaded in cloud storage and link is given to the data consumer. After Data consumer download the file, Data owner has to delete the file from the cloud for the security reasons, but most of time Data Owner forget to delete the file. To overcome this problem data self-destruction is proposed in many papers and now proposed system has Self-Destruction cum Self-Backup Process, which help the file to stay in the public cloud for certain period of times and it will be removed from the cloud storage and securely stored in another storage.  To verify the integrity of the file HMAC is created while file is uploaded and Data Consumer can able to download the file and generate the HMAC, check the integrity of the file.

scholarly journals Attribute-Based User Revocable Data Integrity Audit for Internet-of-Things Devices in Cloud Storage

2020 ◽  
Vol 2020 ◽  
pp. 1-10
Author(s):  
Yaowei Wang ◽  
Chen Chen ◽  
Zhenwei Chen ◽  
Jiangyong He
Keyword(s):  
Internet Of Things ◽  
Cloud Storage ◽  
Security Analysis ◽  
Data Integrity ◽  
Third Party ◽  
Iot Devices ◽  
And Performance ◽  
Data Auditing ◽  
Cloud Storage Environment ◽  
Access To Data

Mobile crowdsensing (MCS) is a sensing paradigm exploiting the capabilities of mobile devices (Internet-of-Things devices, smartphones, etc.) to gather large volume of data. MCS has been widely used in cloud storage environment. However, MCS often faces the challenge of data integrity and user revocation issues. To solve these challenges, this paper uses attribute-based revocable signature mechanisms to construct a data integrity auditing scheme for IoT devices in the cloud storage environment. Users use attribute private keys to generate attribute signatures, and limit the user’s permission to use shared data through access policy control. Only when the user attribute is included in the global attribute set, and the attribute threshold is not less than the specified number, the user can use the attribute key for the data to generate a valid signature that can be authenticated under the control of the signature strategy. At the same time, the group manager (GM) can send secret information to a third-party auditor (TPA) to track the creator of the signature, to withdraw the user’s access to data when the business changes, and realize the safe revocation of user group membership. Formal security analysis and experimental results show that the proposed data-auditing solution is suitable for IoT devices in the cloud storage environment with respect to security and performance.

scholarly journals Study on Encryption Techniques Used to Secure Cloud Storage System

2020 ◽  
pp. 238-244
Author(s):  
Athulya V S ◽  
Dileesh E D
Keyword(s):  
Data Sharing ◽  
Cloud Storage ◽  
Storage System ◽  
Cloud Environment ◽  
Storage Server ◽  
Secure Cloud Storage ◽  
Cloud Storage Environment

Cloud storage is used generally to store data and realize the data sharing with others. A cloud storage system stores large number of data in its storage server. Data that are stored to the cloud have to be secured in order to avoid the data from exploiting. There are several techniques and methods that are used to secure the data before uploading it to the cloud such as cryptographic encryption techniques. In this paper, we study about different encryption technique to protect the cloud storage environment. This paper covers some of the existing cryptographic approaches that can be used to improve the security in cloud environment.

Certificateless Public Verification for the Outsourced Data Integrity in Cloud Storage

2018 ◽  
Vol 27 (11) ◽  
pp. 1850181 ◽  
Author(s):  
Longxia Huang ◽  
Junlong Zhou ◽  
Gongxuan Zhang ◽  
Jin Sun ◽  
Tian Wang ◽  
...  
Keyword(s):  
Cloud Storage ◽  
Public Key Cryptography ◽  
Public Key ◽  
Security Risks ◽  
Certificateless Public Key Cryptography ◽  
Outsourced Data ◽  
Integrity Checking ◽  
Data Owner ◽  
Verification Process ◽  
Public Verification

By advances in cloud storage systems, users have access to the data saved in the cloud and can manipulate the data without limitation of time and place. As the data owner no longer possesses data physically, he is required to ensure the integrity of the data stored in the cloud with the public key given by public key infrastructure (PKI). Thus the security of PKI and certificates are essential. However, there are numerous security risks in the traditional PKI and it is complex to administer the certificates. Certificateless public key cryptography is used in this paper to solve these problems. We also use elliptic curve group to reduce computation overhead. In this paper, we design a certificateless public verification mechanism to check the integrity of data outsourced in the cloud and we further extend it to support a multiuser group by batch verification. Specifically, a public verifier who replaces the data owner to check the integrity in the proposed scheme does not require to manage any certificates during the verification process. Meanwhile, a verifier is not required to download the entire file for integrity checking. Theoretical analyses verify the security of our scheme and experimental results show its efficiency.

scholarly journals Blockchain-Enabled Public Key Encryption with Multi-Keyword Search in Cloud Computing

2021 ◽  
Vol 2021 ◽  
pp. 1-11
Author(s):  
Zhenwei Chen ◽  
Axin Wu ◽  
Yifei Li ◽  
Qixuan Xing ◽  
Shengling Geng
Keyword(s):  
Data Storage ◽  
Cloud Storage ◽  
Keyword Search ◽  
Third Party ◽  
Public Key ◽  
User Needs ◽  
Public Key Encryption ◽  
Smart Contract ◽  
Data Owner ◽  
And Performance

The emergence of the cloud storage has brought great convenience to people’s life. Many individuals and enterprises have delivered a large amount of data to the third-party server for storage. Thus, the privacy protection of data retrieved by the user needs to be guaranteed. Searchable encryption technology for the cloud environment is adopted to ensure that the user information is secure with retrieving data. However, most schemes only support single-keyword search and do not support file updates, which limit the flexibility of the scheme. To eliminate these problems, we propose a blockchain-enabled public key encryption scheme with multi-keyword search (BPKEMS), and our scheme supports file updates. In addition, smart contract is used to ensure the fairness of transactions between data owner and user without introducing a third party. At the data storage stage, our scheme realizes the verifiability by numbering the files, which ensures that the ciphertext received by the user is complete. In terms of security and performance, our scheme is secure against inside keyword guessing attacks (KGAs) and has better computation overhead than other related schemes.

Sign in / Sign up

Export Citation Format

Share Document