SECURE AND RECOVERABLE SPLIT KEY MANAGEMENT TECHNIQUE FOR CLOUD STORAGE

Establishing mutual trust between a cloud service provider (CSP) and a client has always been a challenge. Managing the key as a whole on either of these sites poses a security risk and also questions the integrity and availability of the data itself. In this paper, we propose an effective solution to manage key at the client’s location, while the CSP still manages a portion of the key. The proposed technique secures the key itself and also provides a fail-safe mechanism to retrieve the key if lost.

Download Full-text

Deduplication in Cloud Storage

International Journal of Innovative Technology and Exploring Engineering - Special Issue ◽

10.35940/ijitee.b1027.1292s19 ◽

2019 ◽

Vol 9 (2S) ◽

pp. 364-368

Keyword(s):

Data Storage ◽

Cloud Storage ◽

Cloud Service ◽

Information Storage ◽

Cloud Environment ◽

Data Deduplication ◽

Cloud Service Provider ◽

Level Data ◽

Block Level ◽

Individual Client

Cloud Computing is well known today on account of enormous measure of data storage and quick access of information over the system. It gives an individual client boundless extra space, accessibility and openness of information whenever at anyplace. Cloud service provider can boost information storage by incorporating data deduplication into cloud storage, despite the fact that information deduplication removes excess information and reproduced information happens in cloud environment. This paper presents a literature survey alongside different deduplication procedures that have been based on cloud information storage. To all the more likely guarantee secure deduplication in cloud, this paper examines file level data deduplication and block level data deduplication.

Download Full-text

Towards a Cybersecurity Model for Selecting the Secured Cloud Service Provider using Security Risk Approach

International Journal of Computer Applications ◽

10.5120/ijca2015906146 ◽

2015 ◽

Vol 125 (12) ◽

pp. 1-6

Author(s):

Jamal Talbi ◽

Abdelkrim Haqiq

Keyword(s):

Service Provider ◽

Cloud Service ◽

Security Risk ◽

Cloud Service Provider ◽

Risk Approach

Download Full-text

A broker framework for selecting secure cloud service provider using security risk approach

International Journal of Cloud Computing ◽

10.1504/ijcc.2016.080043 ◽

2016 ◽

Vol 5 (3) ◽

pp. 175

Author(s):

Jamal Talbi ◽

Abdelkrim Haqiq

Keyword(s):

Service Provider ◽

Cloud Service ◽

Security Risk ◽

Cloud Service Provider ◽

Risk Approach

Download Full-text

A Secure and Efficient Audit Mechanism for Dynamic Shared Data in Cloud Storage

The Scientific World JOURNAL ◽

10.1155/2014/820391 ◽

2014 ◽

Vol 2014 ◽

pp. 1-10 ◽

Cited By ~ 3

Author(s):

Ohmin Kwon ◽

Dongyoung Koo ◽

Yongjoo Shin ◽

Hyunsoo Yoon

Keyword(s):

Cloud Storage ◽

Cloud Service ◽

Cloud Services ◽

Security Vulnerabilities ◽

Cloud Service Provider ◽

Computation Cost ◽

Shared Data ◽

Management Method ◽

Index Table ◽

Cloud Storage Services

With popularization of cloud services, multiple users easily share and update their data through cloud storage. For data integrity and consistency in the cloud storage, the audit mechanisms were proposed. However, existing approaches have some security vulnerabilities and require a lot of computational overheads. This paper proposes a secure and efficient audit mechanism for dynamic shared data in cloud storage. The proposed scheme prevents a malicious cloud service provider from deceiving an auditor. Moreover, it devises a new index table management method and reduces the auditing cost by employing less complex operations. We prove the resistance against some attacks and show less computation cost and shorter time for auditing when compared with conventional approaches. The results present that the proposed scheme is secure and efficient for cloud storage services managing dynamic shared data.

Download Full-text

A TPA Based Efficient Non-Repudiation Scheme for Cloud Storage

Advanced Materials Research ◽

10.4028/www.scientific.net/amr.765-767.1630 ◽

2013 ◽

Vol 765-767 ◽

pp. 1630-1635

Author(s):

Wen Qi Ma ◽

Qing Bo Wu ◽

Yu Song Tan

Keyword(s):

Service Provider ◽

Cloud Storage ◽

Cloud Service ◽

Cloud Security ◽

Third Party ◽

Cloud Service Provider ◽

Critical Data ◽

Security Environment ◽

Financial Contract ◽

Update Process

One of differences between cloud storage and previous storage is that there is a financial contract between user and the cloud service provider (CSP). User pay for service in exchange for certain guarantees and the cloud is a liable entity. But some mechanisms need to ensure the liability of CSP. Some work use non-repudiation to realize it. Compared with these non-repudiation schemes, we use third party auditor not client to manage proofs and some metadata, which are security critical data in cloud security. It can provide a more security environment for these data. Against the big overhead in update process of current non-repudiation scheme, we propose three schemes to improve it.

Download Full-text

VOTE: Verifiable Auditing for Outsourced Database with Token Enforced Cloud Storage

International Journal of Engineering and Advanced Technology - Regular Issue ◽

10.35940/ijeat.b3930.129219 ◽

2019 ◽

Vol 9 (2) ◽

pp. 5156-5166

Keyword(s):

Cloud Storage ◽

Bloom Filter ◽

Cloud Service ◽

Communication Cost ◽

Cloud Service Provider ◽

Merkle Hash Tree ◽

Database Administration ◽

Outsourced Database ◽

Counting Bloom Filter ◽

Null Set

Database deploying is one of the remarkable utilities in cloud computing where the Information Proprietor (IP) assigns the database administration to the Cloud Service Provider (CSP) in order to lower the administration overhead and preservation expenditures of the database. Regardless of its overwhelming advantages, it experiences few security problems such as confidentiality of deployed database and auditability of search outcome. In recent past, survey has been carried out on the auditability of search outcome of deployed database that gives preciseness and intactness of search outcome. But in the prevailing schemes, since there is flow of data between IP and the clients repeatedly, huge communication cost is incurred at the Information Proprietor side. To address this challenge, we introduce Verifiable Auditing of Outsourced Database with Token Enforced Cloud Storage (VOTE) mechanism based on Merkle Hash Tree (MHT), Invertible Bloom Filter(IBF) and Counting Bloom Filter(CBF). The proposed scheme reduces the huge communication cost at the Information Proprietor side and achieves preciseness and intactness of the search outcome. Experimental analysis show that the proposed scheme has totally reduced the huge communication cost at the Information Proprietor side, and simultaneously achieves the preciseness and intactness of search outcome though the semi- trusted CSP deliberately sends a null set

Download Full-text

Improved Outsourced Provable Data Possession for Secure Cloud Storage

Security and Communication Networks ◽

10.1155/2021/1805615 ◽

2021 ◽

Vol 2021 ◽

pp. 1-12

Author(s):

Haibin Yang ◽

Zhengge Yi ◽

Ruifeng Li ◽

Zheng Tu ◽

Xu An Wang ◽

...

Keyword(s):

Service Provider ◽

Cloud Storage ◽

Cloud Service ◽

Significant Problem ◽

Data Outsourcing ◽

Cloud Service Provider ◽

Provable Data Possession ◽

Cloud Server ◽

Secure Cloud Storage ◽

Correct Data

With the advent of data outsourcing, how to efficiently verify the integrity of data stored at an untrusted cloud service provider (CSP) has become a significant problem in cloud storage. In 2019, Guo et al. proposed an outsourced dynamic provable data possession scheme with batch update for secure cloud storage. Although their scheme is very novel, we find that their proposal is not secure in this paper. The malicious cloud server has ability to forge the authentication labels, and thus it can forge or delete the user’s data but still provide a correct data possession proof. Based on the original protocol, we proposed an improved one for the auditing scheme, and our new protocol is effective yet resistant to attacks.

Download Full-text

Identity-Based Public Auditing Scheme for Cloud Storage with Strong Key-Exposure Resilience

Security and Communication Networks ◽

10.1155/2020/4838497 ◽

2020 ◽

Vol 2020 ◽

pp. 1-13 ◽

Cited By ~ 1

Author(s):

S. Mary Virgil Nithya ◽

V. Rhymend Uthariaraj

Keyword(s):

Service Provider ◽

Cloud Storage ◽

Data Privacy ◽

Cloud Service ◽

Cloud Service Provider ◽

Time Period ◽

Identity Based ◽

Time Periods ◽

Cloud Auditing ◽

Key Exposure

Secured storage system is a critical component in cloud computing. Cloud clients use cloud auditing schemes to verify the integrity of data stored in the cloud. But with the exposure of the auditing secret key to the Cloud Service Provider, cloud auditing becomes unsuccessful, however strong the auditing schemes may be. Therefore, it is essential to prevent the exposure of auditing secret keys, and even if it happens, it is necessary to minimize the damage caused. The existing cloud auditing schemes that are strongly resilient to key exposure are based on Public Key Infrastructure and so have challenges of certificate management/verification. These schemes also incur high computation time during integrity verification of the data blocks. The Identity-based schemes eliminate the usage of certificates but limit the damage due to key exposure, only in time periods earlier to the time period of the exposed key. Some of the key exposure resilient schemes do not provide support for batch auditing. In this paper, an Identity-based Provable Data Possession scheme is proposed. It protects the security of Identity-based cloud storage auditing in time periods both earlier and later to the time period of the exposed key. It also provides support for batch auditing. Analysis shows that the proposed scheme is resistant to the replace attack of the Cloud Service Provider, preserves the data privacy against the Third Party Auditor, and can efficiently verify the correctness of data.

Download Full-text

A broker framework for selecting secure cloud service provider using security risk approach

International Journal of Cloud Computing ◽

10.1504/ijcc.2016.10000904 ◽

2016 ◽

Vol 5 (3) ◽

pp. 175

Author(s):

Jamal Talbi ◽

Abdelkrim Haqiq

Keyword(s):

Service Provider ◽

Cloud Service ◽

Security Risk ◽

Cloud Service Provider ◽

Risk Approach

Download Full-text

An Access Control Method Based on CP-ABE and ABS Algorithm in Cloud Storage

Applied Mechanics and Materials ◽

10.4028/www.scientific.net/amm.644-650.1919 ◽

2014 ◽

Vol 644-650 ◽

pp. 1919-1922

Author(s):

Bao Yi Wang ◽

Jing Ming ◽

Shao Min Zhang ◽

Hao Jiang ◽

Hui Luo

Keyword(s):

Access Control ◽

Cloud Storage ◽

Control Method ◽

Cloud Service ◽

Information Privacy ◽

Encryption Algorithm ◽

Cloud Service Provider ◽

Cipher Text ◽

Cloud Storage Environment ◽

Abs Algorithm

In view of the current popular cloud storage access control, some security problems were still existed. To solve the problem which the cloud service provider can’t verify the user write permissions by the CP-ABE based cloud storage access control, in this paper a cloud storage access control method is proposed which is based on the encryption algorithm of the cipher-text (CP-ABE) and the attribute-based signature (ABS). This method not only achieves the cloud storage environment information privacy and integrity, but also supports inheritance authorization and scalability.

Download Full-text