AES–CP–IDABE: A Privacy Protection Framework against a DoS Attack in the Cloud Environment with the Access Control Mechanism

Cloud computing technology has revolutionized the field of data management as it has enhanced the barriers of storage restrictions and high-cost establishment for its users. The benefits of the cloud have paved the way for its extensive implementation in large enterprises. However, the data in the cloud have succumbed to various security threats, and its privacy issues remain one of the biggest and topmost concerns for the data owners. Several techniques, such as Attribute-based Encryption (ABE), have been proposed by several researchers to preserve the privacy of the data. However, the issue of security still looms largely over the cloud. In the present work, we introduce the novel encryption model called “Advanced Encryption Standard–Cipher-text-Identity and Attribute-based Encryption” (AES–CP–IDABE) to preserve data privacy along with its access control. In the proposed scheme, the data have been double encrypted initially through the ABE, along with the attributes and the identity of the user. Secondly, the Advanced Encryption Standard (AES) is used to encrypt the encrypted data and provide it to the authorized users. The user access control is established using the digital signature with the help of user ID and security keys. Additionally, the set up includes Denial-of-Service (DoS) detection through IP address monitoring and control. The proposed scheme has also been evaluated for its performance in the communication between the user and the data owner, along with the user’s execution time. From the outcome, it is evident that the proposed scheme was more effective than the existing scheme of ABE over execution, encryption, and decryption time. Additionally, the performance over DoS detection and impact of attribute numbers for the proposed scheme was also studied to prove its effectiveness.

Download Full-text

Fine-grained user access control in ciphertext-policy attribute-based encryption

Security and Communication Networks ◽

10.1002/sec.345 ◽

2011 ◽

Vol 5 (3) ◽

pp. 253-261 ◽

Cited By ~ 6

Author(s):

Junbeom Hur ◽

Chanil Park ◽

Seong Oun Hwang

Keyword(s):

Access Control ◽

Fine Grained ◽

Attribute Based Encryption ◽

User Access ◽

Ciphertext Policy

Download Full-text

Intelligent and Green Buildings Project Management Scope Definition Using Project Definition Rating Index (PDRI)

Advanced Materials Research ◽

10.4028/www.scientific.net/amr.945-949.3008 ◽

2014 ◽

Vol 945-949 ◽

pp. 3008-3011 ◽

Cited By ~ 1

Author(s):

Tih Ju Chu ◽

An Pi Chang ◽

Chao Lung Hwang ◽

Jyh Dong Lin

Keyword(s):

Business Strategy ◽

Green Building ◽

Green Buildings ◽

Project Planning ◽

Automated System ◽

Monitoring And Control ◽

Project Definition Rating Index ◽

Set Up ◽

And Control ◽

Building Project

The development of the intelligent green building project (IGBP) is the pursuit of a business strategy of an enterprise in principle and the launch of the project in practice. The IGBP is integrated with the application of the Project Definition Rating Index (PDRI) in order to combine the needs of pre-project planning. These are the steps to enhance the performance of project execution. The IGBP-PDRI model proposed to construct in this study is based on the life cycle of the engineering to set up different phases of work for process evaluation. The model of evaluation is divided into 4 sections, 11 categories, and 60 elements. Pre-project planning helps to forecast possible risks in the development of the project. In the course of project execution, quality requirement is satisfied through monitoring and control. These help to ensure the operation efficiency of the project, to the extent that the automated system of the building supported by green construction can meet the goal of sustainable development.

Download Full-text

Multiple Access Control Struction for Cloud with Ciphertext

Applied Mechanics and Materials ◽

10.4028/www.scientific.net/amm.556-562.5888 ◽

2014 ◽

Vol 556-562 ◽

pp. 5888-5892

Author(s):

An Ping Xiong ◽

Xin Xin He

Keyword(s):

Access Control ◽

General Scheme ◽

Computational Cost ◽

Cloud Service ◽

Fine Grained ◽

Access Control Policies ◽

Attribute Based Encryption ◽

Data Owner ◽

Multiple Threshold ◽

Heavy Work

The attribute-based encryption scheme of cloud storage application environment helps achieve a flexible access control and confidentiality of the data. However, at present efficient and fine-grained access control can not be achieved. This is caused by the heavy re-encryption workload of data owner while attribute revocation. Besides, there is no solution to revoke user directly. By introducing key segmentation and proxy re-encryption technology to encrypt the part of the heavy work to the cloud service provider to perform, the new scheme greatly reduces the computational cost of data owner. In addition, a special attribute which the data owner controls independently is added to construct different attribute domains of CP-ABE so that the data owner can completely control of the user permissions. The new scheme not only can support multiple threshold fine access control policies, but also can achieve cancellation directly to the user as well as to the user attribute. Experimental results show that the new scheme is superior to the general scheme, achieve highly efficient, fine, and flexible access control.

Download Full-text

Privacy-Preserving and Efficient Public Key Encryption with Keyword Search Based on CP-ABE in Cloud

Cryptography ◽

10.3390/cryptography4040028 ◽

2020 ◽

Vol 4 (4) ◽

pp. 28

Author(s):

Yunhong Zhou ◽

Shihui Zheng ◽

Licheng Wang

Keyword(s):

Access Control ◽

Data Privacy ◽

Keyword Search ◽

Good Method ◽

Privacy Preserving ◽

Public Key ◽

Public Key Encryption ◽

Encrypted Data ◽

Fine Grained ◽

Attribute Based Encryption

In the area of searchable encryption, public key encryption with keyword search (PEKS) has been a critically important and promising technique which provides secure search over encrypted data in cloud computing. PEKS can protect user data privacy without affecting the usage of the data stored in the untrusted cloud server environment. However, most of the existing PEKS schemes concentrate on data users’ rich search functionalities, regardless of their search permission. Attribute-based encryption technology is a good method to solve the security issues, which provides fine-grained access control to the encrypted data. In this paper, we propose a privacy-preserving and efficient public key encryption with keyword search scheme by using the ciphertext-policy attribute-based encryption (CP-ABE) technique to support both fine-grained access control and keyword search over encrypted data simultaneously. We formalize the security definition, and prove that our scheme achieves selective indistinguishability security against an adaptive chosen keyword attack. Finally, we present the performance analysis in terms of theoretical analysis and experimental analysis, and demonstrate the efficiency of our scheme.

Download Full-text

The Monitoring and Control Platform Set up and Application for Seismic Data Acquisition

10.1190/igcbeijing2014-017 ◽

2014 ◽

Author(s):

Ling Zhenghong ◽

Zhang Weihong ◽

Xu Youlin ◽

Wang Qingyong ◽

Wang Xiaoxiao

Keyword(s):

Data Acquisition ◽

Seismic Data ◽

Monitoring And Control ◽

Seismic Data Acquisition ◽

Set Up ◽

And Control

Download Full-text

Design of Measurement and Control System of Facilities Vegetables Based on Internet of Things

Applied Mechanics and Materials ◽

10.4028/www.scientific.net/amm.263-266.2824 ◽

2012 ◽

Vol 263-266 ◽

pp. 2824-2828

Author(s):

He Gong ◽

He Long Yu ◽

Gui Fen Chen ◽

Zhu Wen

Keyword(s):

Control System ◽

Internet Of Things ◽

Co2 Concentration ◽

Monitoring And Control ◽

Monitoring And Control System ◽

Measurement And Control System ◽

Stable Measures ◽

Set Up ◽

And Control ◽

Measurement And Control

According to the construction situation of intelligent greenhouse in Agriculture Internet of Things in China, designed a measurement and control system of facilities vegetables based on Internet of Things. This design used JN5148 module as the core and applied JenNet stack to set up a wireless network. The environment factors, including temperature and humidity, light intensity, CO2 concentration and so on can be monitored in real-time, at the same time, shutter and water pump were also remote controlled through the GPRS gateway. The test result shows that this system operates stable, measures and controls precisionly, cost low electric quantity and better meet greenhouse environment monitoring and control system applications demand. Introduction

Download Full-text

A Novel File Hierarchy Access Control Scheme Using Attribute-Based Encryption

Applied Mechanics and Materials ◽

10.4028/www.scientific.net/amm.701-702.911 ◽

2014 ◽

Vol 701-702 ◽

pp. 911-918 ◽

Cited By ~ 1

Author(s):

Shu Lan Wang ◽

Jian Ping Yu ◽

Peng Zhang ◽

Ping Wang

Keyword(s):

Access Control ◽

Data Privacy ◽

Access Structure ◽

Secret Key ◽

Chosen Plaintext Attack ◽

Fine Grained ◽

Access Structures ◽

Diffie Hellman ◽

Attribute Based Encryption ◽

Control Scheme

Attribute-based encryption (ABE) can keep data privacy and realize fine-grained access control. However, the notion of file hierarchy hasn't been presented until now. The problem, the multiple hierarchical files to be shared only using once encryption scheme, cannot be effectively solved. Based on the access structure layered model, a novel access control scheme about file hierarchy is proposed by using ABE to solve the problem. The proposed scheme will not only decrease the number of access structures to one, but also only require a secret key to decrypt all the authorization files. It is proved to be secure against the chosen-plaintext attack (CPA) under the decision bilinear Diffie-Hellman (DBDH) assumption. In addition, the performance analysis results indicate that the proposed scheme is efficient and practical when a large number of hierarchical files are shared.

Download Full-text

An effective ECC-based user access control scheme with attribute-based encryption for wireless sensor networks

Security and Communication Networks ◽

10.1002/sec.1140 ◽

2014 ◽

Vol 8 (9) ◽

pp. 1752-1771 ◽

Cited By ~ 35

Author(s):

Santanu Chatterjee ◽

Ashok Kumar Das

Keyword(s):

Wireless Sensor Networks ◽

Sensor Networks ◽

Access Control ◽

Wireless Sensor ◽

Attribute Based Encryption ◽

Control Scheme ◽

User Access

Download Full-text

A Survey on Security Models for Data Privacy in Big Data Analytics

Asian Journal of Computer Science and Technology ◽

10.51983/ajcst-2018.7.s1.1798 ◽

2018 ◽

Vol 7 (S1) ◽

pp. 87-89

Author(s):

Avula Satya Sai Kumar ◽

S. Mohan ◽

R. Arunkumar

Keyword(s):

Big Data ◽

Access Control ◽

Data Analytics ◽

Data Privacy ◽

Big Data Analytics ◽

Private Key ◽

Access Structures ◽

Security Models ◽

Attribute Based Encryption ◽

And Performance

As emerging data world like Google and Wikipedia, volume of the data growing gradually for centralization and provide high availability. The storing and retrieval in large volume of data is specialized with the big data techniques. In addition to the data management, big data techniques should need more concentration on the security aspects and data privacy when the data deals with authorized and confidential. It is to provide secure encryption and access control in centralized data through Attribute Based Encryption (ABE) Algorithm. A set of most descriptive attributes is used as categorize to produce secret private key and performs access control. Several works proposed in existing based on the different access structures of ABE algorithms. Thus the algorithms and the proposed applications are literally surveyed and detailed explained and also discuss the functionalities and performance aspects comparison for desired ABE systems.

Download Full-text

Multi-Classifier of DDoS Attacks in Computer Networks Built on Neural Networks

Applied Sciences ◽

10.3390/app112210609 ◽

2021 ◽

Vol 11 (22) ◽

pp. 10609

Author(s):

Andrés Chartuni ◽

José Márquez

Keyword(s):

Neural Networks ◽

Computer Networks ◽

Binary Classification ◽

Denial Of Service ◽

Added Value ◽

Ddos Attacks ◽

Monitoring And Control ◽

Monitoring And Control Systems ◽

Multi Class Classification ◽

And Control

The great commitment in different areas of computer science for the study of computer networks used to fulfill specific and major business tasks has generated a need for their maintenance and optimal operability. Distributed denial of service (DDoS) is a frequent threat to computer networks because of its disruption to the services they cause. This disruption results in the instability and/or inoperability of the network. There are different classes of DDoS attacks, each with a different mode of operation, so detecting them has become a difficult task for network monitoring and control systems. The objective of this work is based on the exploration and choice of a set of data that represents DDoS attack events, on their treatment in a preprocessing phase, and later, the generation of a model of sequential neural networks of multi-class classification. This is done to identify and classify the various types of DDoS attacks. The result was compared with previous works treating the same dataset used herein. We compared their classification method, against ours. During this research, the CIC DDoS2019 dataset was used. Previous works carried out with this dataset proposed a binary classification approach, our approach is based on multi-classification. Our proposed model was capable of achieving around 94% in metrics such as precision, accuracy, recall and F1 score. The added value of multiclass classification during this work is identified and compared with binary classifications using the models presented in the previous.

Download Full-text