EMSRSE: Efficient Multi-Keyword Synonym Based Ranked Search Technique Over Outsourced Encrypted Cloud Data

Recently, searching over encrypted cloud-data outsourcing has attracted the current researcher. Using cloud computing (CC), individuals and organizations are motivated to outsource their private and sensitive data onto the cloud service provider (CSP) due to less maintenance cost, great flexibility, and ease of access. However, the data should be encrypted using encryption techniques such as DES and AES before uploading to the CSP in order to provide data privacy and protection, which obsolete plaintext searching techniques over encrypted cloud data. Thus, this article proposes an efficient multi-keyword synonym-based ranked searching technique over encrypted cloud data (EMSRSE), which supports dynamic insertion and deletion of documents. The main objectives of EMSRSE are 1. To build an index search tree in order to store encrypted index vectors of documents and 2. To achieve better searching efficiency, a searching technique over the encrypted index tree is proposed. An extensive research and empirical result analysis show that the proposed EMSRSE scheme achieves better efficiency in comparison with other existing methods.

Download Full-text

Comparative Analysis of Some Efficient Data Security Methods among Cryptographic Techniques for Cloud Data Security

Nigerian Journal of Basic and Applied Sciences ◽

10.4314/njbas.v27i1.11 ◽

2020 ◽

Vol 27 (1) ◽

pp. 81-88

Author(s):

M.A.T. Abubakar ◽

A. Aloysius ◽

Z. Umar ◽

M. Dauda

Keyword(s):

Comparative Analysis ◽

Data Storage ◽

Data Security ◽

Data Privacy ◽

Cloud Service ◽

Original Data ◽

Sensitive Data ◽

Cloud Data ◽

Data Control ◽

Encryption Algorithms

The concept of cloud computing model is to grant users access to outsource data from the cloud server without them having to worry about aspects of the hardware and software management. The owner of the data encrypts it before outsourcing to a Cloud Service Provider (CSP) server for effective deployment of sensitive data. Data confidentiality is a demanding task of cloud data protection. Thus, to solve this problem, lots of techniques are needed to defend the shared data. We focus on cryptography to secure the data while transmitting in the network. We deployed Advanced Encryption Standard (AES) used as encryption method for cloud data security, to encrypt the sensitive data which is to be transmitted from sender to receiver in the network and to decrypt so that the receiver can view the original data. Arrays of encryption systems are being deployed in the world of Information Systems by various organizations. In this paper, comparative analysis of some various encryption algorithms in cryptography have been implemented by comparing their performance in terms of stimulated time during Encryption and decryption in the network. Keywords: AES, Data Control, Data Privacy, Data Storage, Encryption Algorithms, Verification.

Download Full-text

Secure kNN Computation and Integrity Assurance of Data Outsourcing in the Cloud

Mathematical Problems in Engineering ◽

10.1155/2017/8109730 ◽

2017 ◽

Vol 2017 ◽

pp. 1-15 ◽

Cited By ~ 2

Author(s):

Jun Hong ◽

Tao Wen ◽

Quan Guo ◽

Zhengwang Ye

Keyword(s):

Data Privacy ◽

Security Analysis ◽

Cloud Service ◽

Search Tree ◽

Data Outsourcing ◽

Cloud Service Provider ◽

Confidential Data ◽

Data Points ◽

Major Factors ◽

Integrity Assurance

As cloud computing has been popularized massively and rapidly, individuals and enterprises prefer outsourcing their databases to the cloud service provider (CSP) to save the expenditure for managing and maintaining the data. The outsourced databases are hosted, and query services are offered to clients by the CSP, whereas the CSP is not fully trusted. Consequently, the security shall be violated by multiple factors. Data privacy and query integrity are perceived as two major factors obstructing enterprises from outsourcing their databases. A novel scheme is proposed in this paper to effectuate k-nearest neighbors (kNN) query and kNN query authentication on an encrypted outsourced spatial database. An asymmetric scalar-product-preserving encryption scheme is elucidated, in which data points and query points are encrypted with diverse encryption keys, and the CSP can determine the distance relation between encrypted data points and query points. Furthermore, the similarity search tree is extended to build a novel verifiable SS-tree that supports efficient kNN query and kNN query verification. It is indicated from the security analysis and experiment results that our scheme not only maintains the confidentiality of outsourced confidential data and query points but also has a lower kNN query processing and verification overhead than the MR-tree.

Download Full-text

A Privacy Preserving Cloud-Based K-NN Search Scheme with Lightweight User Loads

Computers ◽

10.3390/computers9010001 ◽

2020 ◽

Vol 9 (1) ◽

pp. 1 ◽

Cited By ~ 1

Author(s):

Yeong-Cherng Hsu ◽

Chih-Hsin Hsueh ◽

Ja-Ling Wu

Keyword(s):

Data Privacy ◽

Nearest Neighbor ◽

Search Algorithm ◽

Data Access ◽

Privacy Preserving ◽

Secret Key ◽

K Nearest Neighbor ◽

Sensitive Data ◽

Cloud Data ◽

Cloud Server

With the growing popularity of cloud computing, it is convenient for data owners to outsource their data to a cloud server. By utilizing the massive storage and computational resources in cloud, data owners can also provide a platform for users to make query requests. However, due to the privacy concerns, sensitive data should be encrypted before outsourcing. In this work, a novel privacy preserving K-nearest neighbor (K-NN) search scheme over the encrypted outsourced cloud dataset is proposed. The problem is about letting the cloud server find K nearest points with respect to an encrypted query on the encrypted dataset, which was outsourced by data owners, and return the searched results to the querying user. Comparing with other existing methods, our approach leverages the resources of the cloud more by shifting most of the required computational loads, from data owners and query users, to the cloud server. In addition, there is no need for data owners to share their secret key with others. In a nutshell, in the proposed scheme, data points and user queries are encrypted attribute-wise and the entire search algorithm is performed in the encrypted domain; therefore, our approach not only preserves the data privacy and query privacy but also hides the data access pattern from the cloud server. Moreover, by using a tree structure, the proposed scheme could accomplish query requests in sub-liner time, according to our performance analysis. Finally, experimental results demonstrate the practicability and the efficiency of our method.

Download Full-text

USING DIFFERENT SEARCHING SCHEMAS FOR FUZZY KEYWORD SEARCH OVER CLOUD DATA

Graduate Research in Engineering and Technology ◽

10.47893/gret.2013.1027 ◽

2013 ◽

pp. 41-44

Author(s):

SYEDA FARHA SHAZMEEN ◽

RANGARAJU DEEPIKA

Keyword(s):

Cloud Computing ◽

Data Privacy ◽

Keyword Search ◽

Text Search ◽

Sensitive Data ◽

Cloud Data ◽

Fuzzy Search ◽

Wild Card ◽

Fuzzy Keyword Search ◽

Search And Retrieval

Cloud Computing is a construct that allows you to access applications that actually reside at a location other than our computer or other internet-connected devices, Cloud computing uses internet and central remote servers to maintain data and applications, the data is stored in off-premises and accessing this data through keyword search. So there comes the importance of encrypted cloud data search Traditional keyword search was based on plaintext keyword search, but for protecting data privacy the sensitive data should be encrypted before outsourcing. Fuzzy keyword search greatly enhances system usability by returning the matching files; Fuzzy technique uses approximate full text search and retrieval. Three different Fuzzy Search Schemas, The wild card method, gram based method and tree traverse search scheme, are dicussed and also the efficiency of these algorithms is analyzed.

Download Full-text

Survey on Securing IoT Data using Homomorphic Encryption Scheme

International Journal of Engineering and Advanced Technology - Regular Issue ◽

10.35940/ijeat.d2333.0410421 ◽

2021 ◽

Vol 10 (4) ◽

pp. 76-81

Author(s):

Anita Chaudhari ◽

Rajesh Bansode

Keyword(s):

Data Privacy ◽

Homomorphic Encryption ◽

Computational Cost ◽

Computation Time ◽

Cloud Services ◽

Cloud Provider ◽

Encryption Scheme ◽

Sensitive Data ◽

Cloud Data ◽

Data User

In today’s world everyone is using cloud services. Every user uploads his/her sensitive data on cloud in encrypted form. If user wants to perform any type of computation on cloud data, user has to share credentials with cloud administrator. Which puts data privacy on risk. If user does not share his/her credentials with cloud provider, user has to download all data and only then decryption process and computation can be performed. This research, focuses on ECC based homomorphic encryption scheme is good by considering communication and computational cost. Many ECC based schemes are presented to provide data privacy. Analysis of different approaches has been done by selecting different common parameters. Based on the analysis minimum computation time is 0.25 Second required for ECC based homomorphic encryption (HE).

Download Full-text

A Review on Secure Storage Using Bidirectional Verification Techniques in Cloud Computing

International Journal of Engineering & Technology ◽

10.14419/ijet.v7i4.36.24128 ◽

2018 ◽

Vol 7 (4.36) ◽

pp. 511

Author(s):

Mr. Girish kumar d ◽

Dr. Rajashree v biradar ◽

Dr. V c patil

Keyword(s):

Cloud Computing ◽

Data Privacy ◽

Virtual Machines ◽

Cloud Service ◽

Sensitive Information ◽

Cloud Environment ◽

It Industry ◽

Cloud Data ◽

Secure Storage ◽

Verification Techniques

Cloud computing increases the capacity or capabilities vigorously without devoting new infrastructure, training new personnel, or licensing the new software . In the past few years, cloud computing has grown from being a promising business concept to one of the fast-growing sectors of IT industry. As the more sensitive information and data are moved into the cloud data centers, they run on virtual computing resources in the form of virtual machines. Security has become one of the major issue in cloud computing which reduces the growth of cloud environment with complications in data privacy and data protection continue to outbreak the market. A new model created for the advancement should not result as a threat to the existing model. The architecture of cloud poses such a threat to the security of existing models when deployed in a cloud environment. The different cloud service users need to be attentive in considerate,about the risk of data breaks in the new environment. In this paper, advanced survey of the various secured storage in cloud computing using bidirectional protocols is presented.

Download Full-text

Security Flaws and Design Issues in Cloud Infrastructure

Detection and Mitigation of Insider Attacks in a Cloud Infrastructure - Advances in Information Security, Privacy, and Ethics ◽

10.4018/978-1-5225-7924-3.ch004 ◽

2019 ◽

pp. 52-61

Keyword(s):

Cloud Computing ◽

Cloud Service ◽

Vital Role ◽

Sensitive Information ◽

Cloud Infrastructure ◽

Cloud Data Center ◽

Sensitive Data ◽

Cloud Service Provider ◽

Cloud Data ◽

Malicious Intent

Information security plays a vital role in cloud computing. Sensitive information should be kept in secure mode for providing integrity and confidentiality from insiders and outsiders. An insider is an employee who has legitimate access to cloud resources which are hosted at cloud data center. They can perform malicious activities on consumer sensitive data with or without malicious intent. This security beach is obvious and the provider needs to protect from such attacks. In this chapter, insider attacks are demonstrated with empirical approach to breach consumer-sensitive data. In this chapter, the authors present the threat models where an insider can manipulate user VMs in the node controller of cloud platform. Here, they assume that cloud service provider is malicious and cloud consumer does not have any security constraints to access their cloud assets. The model described two locations in the cloud infrastructure.

Download Full-text

An efficient and secure data storage in cloud computing using modified RSA public key cryptosystem

International Journal of Electrical and Computer Engineering (IJECE) ◽

10.11591/ijece.v10i1.pp530-537 ◽

2020 ◽

Vol 10 (1) ◽

pp. 530

Author(s):

Y. Kiran Kumar ◽

R. Mahammad Shafi

Keyword(s):

Cloud Computing ◽

Data Storage ◽

Data Privacy ◽

Service Providers ◽

Cloud Service ◽

Public Key ◽

Public Key Cryptosystem ◽

Cloud Data ◽

Cloud Data Storage ◽

Software Licensing

<span lang="EN-US">Cloud Computing is the ability to improve the utility or train new human resources without investing in new infrastructure, or add capabilities to existence without the latest software licensing. It expanded the capabilities of Information Technology (IT). From the past few years, cloud computing has developed from a good business concept in the best rising sectors of the IT industry. But more information on individuals and companies was put in the cloud, and concerns began to think about how secure the cloud environment was. Despite cloud surrounding structures, enterprise users still do not want to expand their business in the cloud. Security reduces the growth of cloud computing and continues to spread the market with complexity with data privacy and data protection. The security of cloud computing has constantly been an significant aspect of improved quality of service from cloud service providers. Data storage in the cloud has a problem related to data security. However, cloud computing construct many new security challenges which have not been well examine. In order to ensure that the user's data in the cloud is secure, we have proposed an effective mechanism with a distinctive feature of data integrity and privacy. This paper focusing on problems relating to the cloud data storage techniques and security in virtual environment. We recommend a method for providing data storage and security in cloud using public key Cryptosystem, which uses the concept of the modified RSA algorithm to provide better security for the data stored in the cloud. </span>

Download Full-text

Mitigation of Insider Attacks through Multi-Cloud

International Journal of Electrical and Computer Engineering (IJECE) ◽

10.11591/ijece.v5i1.pp136-141 ◽

2015 ◽

Vol 5 (1) ◽

pp. 136 ◽

Cited By ~ 1

Author(s):

T Gunasekhar ◽

K Thirupathi Rao ◽

V Krishna Reddy ◽

P Sai Kiran ◽

B Thirumala Rao

Keyword(s):

Access Control ◽

Security Policy ◽

Data Centers ◽

Service Providers ◽

Cloud Service ◽

Sensitive Data ◽

Encrypted Data ◽

Cloud Data ◽

Cloud Data Centers ◽

Multi Cloud

The malicious insider can be an employees, user and/or third party business partner. In cloud environment, clients may store sensitive data about their organization in cloud data centers. The cloud service provider should ensure integrity, security, access control and confidentiality about the stored data at cloud data centers. The malicious insiders can perform stealing on sensitive data at cloud storage and at organizations. Most of the organizations ignoring the insider attack because it is harder to detect and mitigate. This is a major emerging problem at the cloud data centers as well as in organizations. In this paper, we proposed a method that ensures security, integrity, access control and confidentiality on sensitive data of cloud clients by employing multi cloud service providers. The organization should encrypt the sensitive data with their security policy and procedures and store the encrypted data in trusted cloud. The keys which are used during encryption process are again encrypted and stored in another cloud area. So that organization contains only keys for keys of encrypted data. The Administrator of organization also does not know what data kept in cloud area and if he accesses the data, easily caught during the auditing. Hence, the only authorized used can access the data and use it and we can mitigate insider attacks by providing restricted privileges.

Download Full-text

Data Privacy Preservation using AES-GCM Encryption in Heroku Cloud

International Journal of Recent Technology and Engineering - 2 ◽

10.35940/ijrte.c6131.098319 ◽

2019 ◽

Vol 8 (3) ◽

pp. 7544-7548

Keyword(s):

Cloud Computing ◽

Data Storage ◽

Data Privacy ◽

Privacy Preservation ◽

Service Industry ◽

Computational Cost ◽

Cloud Service ◽

Third Party ◽

Sensitive Information ◽

Cloud Data

The increasing popularity of cloud data storage and its ever-rising versatility, shows that cloud computing is one of the most widely excepted phenomena. It not only helps with powerful computing facilities but also reduce a huge amount of computational cost. And with such high demand for storage has raised the growth of the cloud service industry that provides an affordable, easy-to-use and remotely-accessible services. But like every other emerging technology it carries some inherent security risks associated and cloud storage is no exception. The prime reason behind it is that users have to blindly trust the third parties while storing the useful information, which may not work in the best of interest. Hence, to ensure the privacy of sensitive information is primarily important for any public, third-party cloud. In this paper, we mainly focus on proposing a secure cloud framework with encrypting sensitive data’s using AES-GCM cryptographic techniques in HEROKU cloud platform. Here we tried to implement Heroku as a cloud computing platform, used the AES-GCM algorithm and evaluate the performance of the said algorithm. Moreover, analyses the performance of AES/GCM execution time with respect to given inputs of data

Download Full-text