PMAB: A Public Mutual Audit Blockchain for Outsourced Data in Cloud Storage

Security and Communication Networks ◽

10.1155/2021/9993855 ◽

2021 ◽

Vol 2021 ◽

pp. 1-11

Author(s):

Hanzhe Yang ◽

Ruidan Su ◽

Pei Huang ◽

Yuhan Bai ◽

Kai Fan ◽

...

Keyword(s):

Cloud Storage ◽

Service Providers ◽

Low Cost ◽

Cloud Service ◽

Third Party ◽

Rigorous Analysis ◽

Security Issues ◽

Outsourced Data ◽

Audit Data ◽

And Performance

With the rapid growth of data, limited by the storage capacity, more and more IoT applications choose to outsource data to Cloud Service Providers (CSPs). But, in such scenarios, outsourced data in cloud storage can be easily corrupted and difficult to be found in time, which brings about potential security issues. Thus, Provable Data Possession (PDP) protocol has been extensively researched due to its capability of supporting efficient audit for outsourced data in cloud. However, most PDP schemes require the Third-Party Auditor (TPA) to audit data for Data Owners (DOs), which requires the TPA to be trustworthy and fair. To eliminate the TPA, we present a Public Mutual Audit Blockchain (PMAB) for outsourced data in cloud storage. We first propose an audit chain architecture based on Ouroboros and an incentive mechanism based on credit to allow CSPs to audit each other mutually with anticollusion (any CSP is not willing to help other CSPs conceal data problems). Then, we design an audit protocol to achieve public audit efficiently with low cost of audit verification. Rigorous analysis explains the security of PMAB using game theory, and performance analysis shows the efficiency of PMAB using the real-world dataset.

A Safe and Resilient Cryptographic System for Dynamic Cloud Groups with Secure Data Sharing and Efficient User Revocation

Turkish Journal of Computer and Mathematics Education (TURCOMAT) ◽

10.17762/turcomat.v12i3.2144 ◽

2021 ◽

Vol 12 (3) ◽

pp. 5164-5175

Author(s):

Prerna Agarwal Et. al.

Keyword(s):

Data Sharing ◽

Service Providers ◽

Cloud Service ◽

Data File ◽

Third Party ◽

Outsourced Data ◽

User Revocation ◽

Cryptographic System ◽

Daunting Challenge ◽

Cloud Users

A comprehensive and functional approach is built in cloud computing, which can be used by cloud users to exchange information. Cloud service providers (CSPs) can transfer through server services through powerful data centres to cloud users. Data is protected through authentication of cloud users and CSPs can have outsourced data file sharing security assurance. The continuing change in cloud users, especially unauthenticated users or third parties poses a critical problem in ensuring privacy in data sharing. The multifunctional exchange of information while protecting information and personal protection from unauthorized or other third-party users remains a daunting challenge

Security Aspects in Cloud Computing

Cyber Security and Threats ◽

10.4018/978-1-5225-5634-3.ch004 ◽

2018 ◽

pp. 54-76

Author(s):

Tabassum N. Mujawar ◽

Ashok V. Sutagundar ◽

Lata L. Ragha

Keyword(s):

Cloud Computing ◽

Service Providers ◽

Cloud Service ◽

Third Party ◽

Storage Security ◽

Security Issues ◽

Access Control Mechanism ◽

And Storage ◽

Privacy Issues ◽

Different Levels

Cloud computing is recently emerging technology, which provides a way to access computing resources over Internet on demand and pay per use basis. Cloud computing is a paradigm that enable access to shared pool of resources efficiently, which are managed by third party cloud service providers. Despite of various advantages of cloud computing security is the biggest threat. This chapter describes various security concerns in cloud computing. The clouds are subject to traditional data confidentiality, integrity, availability and various privacy issues. This chapter comprises various security issues at different levels in environment that includes infrastructure level security, data level and storage security. It also deals with the concept of Identity and Access Control mechanism.

MCACM: A Cloud Storage Access Control Model for Multi-Clouds Environment Based on XACML

Applied Mechanics and Materials ◽

10.4028/www.scientific.net/amm.713-715.2451 ◽

2015 ◽

Vol 713-715 ◽

pp. 2451-2454

Author(s):

Kai Ze Yin ◽

Hai Hang Wang

Keyword(s):

Access Control ◽

Cloud Storage ◽

Service Providers ◽

Cloud Service ◽

Control Model ◽

Cloud Services ◽

Access Control Model ◽

Access Control Models ◽

And Performance ◽

Different Sources

Cloud storage as a popular application in cloud services, are developing from single cloud service provider towards multiple cloud service providers. As a consequence, users need to manage their files from different sources and share in multi-clouds. While the conventional access control models are no longer suitable in multi-clouds environment. Therefore, a multi-clouds access control model based on XACML, named MCACM, is proposed here to implement access control in multi-clouds environment. In this model, cross-clouds access control is enabled through extending standard XACML framework. At last, we implemented a prototype of MCACM, and performance evaluation results show that our scheme is efficient.

A new fully homomorphic cryptosystem based on a super-increasing sequence

Telfor Journal ◽

10.5937/telfor2001050a ◽

2020 ◽

Vol 12 (1) ◽

pp. 50-55

Author(s):

Mohammed Anwar ◽

Abed Salman

Keyword(s):

Private Information ◽

Service Providers ◽

Homomorphic Encryption ◽

Cloud Service ◽

Third Party ◽

Security Issues ◽

Computing Paradigm ◽

Computing Services ◽

Ascii Code ◽

User Data

Cloud computing is a powerful computing paradigm that provides a variety of computing services to its users. An example is storage, which allows individuals and enterprises to outsource their files to remote storage. However, saving private information onto third-party storage increases the security issues of data and privacy protection concerns. For this reason, cloud service providers (CSPs) are required to save an encrypted version of user data. In this paper, a novel encryption technique based on the use of Fully Homomorphic Encryption is presented. The technique uses a superincreasing sequence to derive the key and works on encrypted data with no need for decryption; this yields the same results as performing it on plaintext data. In the proposed technique, the characters are converted to their corresponding ASCII code values, which differs from the binary values produced by other existing techniques.

An effective, secure and efficient tagging method for integrity protection of outsourced data in a public cloud storage

PLoS ONE ◽

10.1371/journal.pone.0241236 ◽

2020 ◽

Vol 15 (11) ◽

pp. e0241236 ◽

Cited By ~ 1

Author(s):

Reem ALmarwani ◽

Ning Zhang ◽

James Garside

Keyword(s):

Cloud Storage ◽

Security Analysis ◽

Third Party ◽

Public Cloud ◽

Data Confidentiality ◽

Public And Private ◽

Outsourced Data ◽

Integrity Protection ◽

And Performance ◽

Constrained Devices

Data Integrity Auditing (DIA) is a security service for checking the integrity of data stored in a PCS (Public Cloud Storage), a third-party based storage service. A DIA service is provided by using integrity tags (hereafter referred to tags). This paper proposes a novel tagging method, called Tagging of Outsourced Data (TOD), for generating and verifying tags of files. TOD has a number of unique properties: (i) it supports both public and private verifiability, and achieves this property with a low level of overhead at the user end, making it particularly attractive to mobile users with resource-constrained devices, (ii) it protects data confidentiality, supports dynamic tags and is resilient against tag forgery and tag tampering (i.e. by authorised insiders) at the same time in more secure and efficient, making the method more suited to the PCS environment, (iii) it supports tags deduplication, making it more efficient, particularly for the user who has many files with data redundancy. Comprehensive security analysis and performance evaluation have been conducted to demonstrate the efficacy and efficiency of the approach taken in the design.

Public Auditing for Secure Cloud Storage based on DHT

Journal of University of Shanghai for Science and Technology ◽

10.51201/jusst/21/10853 ◽

2021 ◽

Vol 23 (11) ◽

pp. 86-98

Author(s):

Raziqa Masood ◽

◽

Q.P. Rana ◽

Keyword(s):

Cloud Computing ◽

Cloud Storage ◽

Service Providers ◽

Cloud Service ◽

Cloud Services ◽

Third Party ◽

Distributed Hash Table ◽

Present System ◽

Two Dimensional ◽

Public Auditing

Today cloud computing has been the most popular service enjoyed by people due to the easy maintenance provided by it. Cloud computing is cost-efficient and people pay according to the services they use. Many organizations are using cloud storage and the reason behind it is that the outsourcing services are provided by the cloud computing. Most of people do not trust the legality of the services provided by cloud (CSPs i.e. cloud service providers) because they are afraid of the security breach of their data. The public auditing of the data by their owners is a technique that can maintain the trust of people on cloud services. This research paper is about cloud storage services based on the distributed hash table (DHT).This is required for dynamic auditing of information as this is new two-dimensional data and Third-party Auditor (TPA) is responsible for recording the information to do dynamic auditing and the dimensional data is located at TPA. The computational costs gets reduced when the authorized information is migrated to the two dimensional data and the Cloud service provider shifts it to the TPA DHT has many structural advantages and the services can be updated efficiently. The comparison with the present system is also made and is assured that it is the security system for the cloud storage. To secure the data information by blinding it, random masking is provided as a proof for securing process. The authentication is done via hashing technique and integrity and performance checks are made with this authentication process.

Federated Cloud Storage Management Through Provable Data Possession using Dynamic Audit Protocol

International Journal of Recent Technology and Engineering - 2 ◽

10.35940/ijrte.b1122.0782s319 ◽

2019 ◽

Vol 8 (2S3) ◽

pp. 662-665

Keyword(s):

Data Storage ◽

Cloud Storage ◽

Service Providers ◽

Cloud Service ◽

Application Programming Interface ◽

Third Party ◽

Web Browser ◽

Free Data ◽

Cloud Service Providers ◽

Storage Area

Cloud computing is a technology for sharing the resources for on demand request and for processing the data. It facilitates cloud storage for adopting cloud users with the help of cloud service providers. It enhances need of enterprises by adhering large volume of data to store and owned privately through third party auditors via data centres. The proposed system analyse cloud storage and provide free data storage for computing the data and maintain variety of cloud storage in one place. This scenario promotes storage of files in one system, so the user doesn’t require various accounts like GoogleDrive, Microsoft Onedrive and Dropbox. This application enhances multiple cloud storage for accessing all files in one particular storage area. The proposed system eradicates visiting of multiple sites for downloading the apps and reduces installing of multiple apps for downloading all the files. The work mainly focuses on the SaaS that permits users to upload data and share the resources from the cloud to post in the Web browser. Our work designed for creating single level of Application programming interface which is for all the cloud service providers. This adopts external applications that leverage the service of platform which is easier to build scalable, and automated cloud based applications. The final API promotes multiple cloud storage in one place and leads to provision Federated Cloud

ECS: An Enhanced Cloud Security Algorithm

International Journal of Recent Technology and Engineering - 2 ◽

10.35940/ijrte.b2314.078219 ◽

2019 ◽

Vol 8 (2) ◽

pp. 6408-6412

Keyword(s):

Cloud Computing ◽

Service Providers ◽

Cloud Service ◽

Cloud Security ◽

Third Party ◽

Cloud Environment ◽

Security Issues ◽

Security Algorithm ◽

Cryptographic Techniques ◽

Cloud Users

Cloud computing is a technology where it provides software, platform, infrastructure, security and everything as a service. But this technology faces many security issues because all the data or information are stored in the hands of the third party. The cloud users unable to know where the data are store in the cloud environment and also it is very difficult to analyze the trustworthiness of the cloud service providers. In this technology providing security is a very big challenging task. This challenge was overcome by developing different cloud security algorithms using cryptographic techniques. Recently many researchers identified that if the cryptographic algorithms are combined in a hybrid manner it will increase the security in the cloud environment. Even though, many research works are still carried out to improve security in the cloud computing environment. In this research article, a new step was taken to develop a new cloud security algorithm

An Attribute-Based Assured Deletion Scheme in Cloud Computing

International Journal of Information Technology and Web Engineering ◽

10.4018/ijitwe.2019040105 ◽

2019 ◽

Vol 14 (2) ◽

pp. 74-91 ◽

Cited By ~ 1

Author(s):

Fangfang Shan ◽

Hui Li ◽

Fenghua Li ◽

Yunchuan Guo ◽

Jinbo Xiong

Keyword(s):

Cloud Computing ◽

Cloud Storage ◽

Service Providers ◽

Rapid Development ◽

Data Encryption ◽

Third Party ◽

Fine Grained ◽

Outsourced Data ◽

Cloud Storage Service ◽

Share Data

With the rapid development of cloud computing, it has been increasingly attractive for individuals and groups to store and share data via cloud storage. Once stored in the third-party cloud storage service providers, the privacy and integrity of outsourced data should be attached with more attention as a challenging task. This article presents the attribute-based assured deletion scheme (AADS) which aims to protect and assuredly delete outsourced data in cloud computing. It encrypts outsourced data files with standard cryptographic techniques to guarantee the privacy and integrity, and assuredly deletes data upon revocations of attributes. AADS could be applied to solve important security problems by supporting fine-grained attribute-based policies and their combinations. According to the comparison and analysis, AADS provides efficient data encryption and flexible attribute-based assured deletion for cloud-stored data with an acceptable concession in performance cost.

Security Aspects in Cloud Computing

Advances in Data Mining and Database Management - Advancing Cloud Database Systems and Capacity Planning With Dynamic Applications ◽

10.4018/978-1-5225-2013-9.ch013 ◽

2017 ◽

pp. 320-342 ◽

Cited By ~ 3

Author(s):

Tabassum N. Mujawar ◽

Ashok V. Sutagundar ◽

Lata L. Ragha

Keyword(s):

Cloud Computing ◽

Service Providers ◽

Cloud Service ◽

Third Party ◽

Storage Security ◽

Security Issues ◽

Access Control Mechanism ◽

And Storage ◽

Privacy Issues ◽

Different Levels