Trust Management Techniques, Models and Attacks in Cloud

Cloud computing is a technology that promises resilient and flexible computing resources to the growing business. Along with many benefits of Cloud computing, there are various complex problems such as security and privacy of data that exists on Cloud. Trust is one of the key obstacles in the adoption of Cloud by the growing market due to absence of any reliable and efficient trust evaluation mechanism. It is difficult task for Cloud consumers to choose trustworthy provider among various service providers who provide similar type of services. There is a need to have - proper techniques/methods to establish trust; proper trust based models to evaluate the trust; and awareness of various possible attacks to know the robustness of the models. Hence this paper discusses existing state of the art trust management techniques, models and attacks, to help research community interested in designing trust based schemes in Cloud environment.

Download Full-text

A new trust management framework based on the experience of users in industrial cloud computing using multi-criteria decision making

Kybernetes ◽

10.1108/k-05-2021-0378 ◽

2021 ◽

Vol ahead-of-print (ahead-of-print) ◽

Author(s):

Liudmila Ivanovna Khoruzhy ◽

Roman Petrovich Bulyga ◽

Olga Yuryevna Voronkova ◽

Lidia Vladimirovna Vasyutkina ◽

Natalya Ryafikovna Saenko ◽

...

Keyword(s):

Decision Making ◽

Cloud Computing ◽

Trust Management ◽

Service Providers ◽

Cloud Services ◽

Security And Privacy ◽

Multi Criteria Decision Making ◽

Content Type ◽

Wide Range ◽

Industrial Cloud

PurposeNowadays, cloud platforms are used in many fields, including e-commerce, web applications, data storage, healthcare, gaming, mobile social networks, etc. However, security and privacy are still two significant concerns in this area. The target of this paper is to present a system for trust management in industrial cloud computing using the multi-criteria decision making (MCDM) approach. MCDM techniques have been developed to accommodate a wide range of applications. As a result, hundreds of approaches have been generated with even minor variations on current approaches spawning new study fields.Design/methodology/approachCloud computing provides a fully scalable, accessible and flexible computing platform for various applications. Due to the multiple applications that cloud computing has found in numerous life features, users and providers have considered providing security in cloud communications. Due to its distributive nature, dynamic space and lack of transparency in performing cloud computing, it faces many challenges in providing security. For security improvement, trust management can play a very influential role. This paper proposes a generic analytical methodology that uses a series of assessment criteria to evaluate current trust management testing prototypes in industrial cloud computing and related fields. The authors utilize a MCDM approach in the present article. Due to the multi-dimensionality of the sustainability objective and the complexities of socio-economic and biophysical processes, MCDM approaches have become progressively common in decision-making for sustainable energy.FindingsThe results of comparing and evaluating the performance of this model show its ability to manage trust and the ability to adapt to changes in the behavior of service providers quickly. Using a simulation, all results are confirmed. The results of simulations and evaluation of the present paper indicate that the proposed model provides a more accurate evaluation of the credibility of cloud service providers than other models.Practical implicationsThe number of cloud services and customers is vast and extremely competitive in cloud environments, where novel cloud services and customers can join at any time, while others can withdraw whenever they want. Because of cloud services' highly dynamic and dispersed design, trust management mechanisms must be highly flexible to obtain feedback and update trust outcomes as quickly as possible. The model presented in this article tries to improve users' trust in the cloud industry.Originality/valueUsing a method (MCDM) to find the best trust management solution based on user experience in industrial cloud computing is the novelty of this paper.

Download Full-text

Trust and Reliability Management in Large-Scale Cloud Computing Environments

Large-Scale Data Streaming, Processing, and Blockchain Security - Advances in Information Security, Privacy, and Ethics ◽

10.4018/978-1-7998-3444-1.ch004 ◽

2021 ◽

pp. 66-89

Author(s):

Punit Gupta

Keyword(s):

Cloud Computing ◽

Trust Management ◽

Large Scale ◽

Cloud Environment ◽

Future Prospects ◽

Distributed Environment ◽

Reliability Management ◽

Trust Models ◽

Management Techniques ◽

Computing Environments

Trust is a firm belief over a person or a thing in distributed environment based on its feedback on review based on its performance by others. Similarly, in cloud, trust models play an important role in solving various open challenges in cloud environment. This chapter showcases all such issues that can be solved by trust management techniques. This work discourses various trust management models and its categorization. The work discourses existing work using trust models from the field of grid computing, cloud computing, and web services because all these domains are sub child of each other. The work provides an abstract view over all trust models and find the suitable one for cloud and its future prospects.

Download Full-text

One Implementation Method of Trust Evaluation Tool Used on Cloud Computing Service

Recent Advances in Electrical & Electronic Engineering (Formerly Recent Patents on Electrical & Electronic Engineering) ◽

10.2174/2352096511666180528075030 ◽

2019 ◽

Vol 12 (3) ◽

pp. 223-231

Author(s):

Shengju Yang

Keyword(s):

Cloud Computing ◽

Access Control ◽

Service Providers ◽

Assessment Method ◽

Trust Evaluation ◽

Evaluation Tool ◽

Computing Services ◽

Business Goals ◽

Cloud Computing Service ◽

Cloud Computing Services

In order to solve the trust problems between users and cloud computing service providers in cloud computing services, the existing trust evaluation technology and access control technology in the cloud computing service are analyzed. And the evaluation index of cloud computing is also analyzed. Users can calculate the relevant indicators of cloud computing service according to their own business goals, and choose the appropriate cloud computing services according to their own trust need. In addition, the reliability assessment method of users based on the service process is proposed. Cloud computing access control system can be used for user credibility evaluation, and it can handle user access requests according to user's creditability. In the study, a cloud computing service trust evaluation tool is designed, and the modeling and architecture designs of trust evaluation are also given. The effectiveness of the method is verified by experiments on cloud computing service evaluation methods.

Download Full-text

Efficient and Cost-effective Service Broker Policy Based on User Priority in VIKOR for Cloud Computing

Basic and Applied Sciences - Scientific Journal of King Faisal University ◽

10.37575/b/cmp/210032 ◽

2021 ◽

pp. 1-8

Author(s):

Mohammed Radi ◽

Ali Alwan ◽

Abedallah Abualkishik ◽

Adam Marks ◽

Yonis Gulzar

Keyword(s):

Cloud Computing ◽

Response Time ◽

Service Providers ◽

Cost Effective ◽

Cloud Service ◽

User Preferences ◽

Cloud Environment ◽

Data Centre ◽

Wide Range ◽

Service Broker

Cloud computing has become a practical solution for processing big data. Cloud service providers have heterogeneous resources and offer a wide range of services with various processing capabilities. Typically, cloud users set preferences when working on a cloud platform. Some users tend to prefer the cheapest services for the given tasks, whereas other users prefer solutions that ensure the shortest response time or seek solutions that produce services ensuring an acceptable response time at a reasonable cost. The main responsibility of the cloud service broker is identifying the best data centre to be used for processing user requests. Therefore, to maintain a high level of quality of service, it is necessity to develop a service broker policy that is capable of selecting the best data centre, taking into consideration user preferences (e.g. cost, response time). This paper proposes an efficient and cost-effective plan for a service broker policy in a cloud environment based on the concept of VIKOR. The proposed solution relies on a multi-criteria decision-making technique aimed at generating an optimized solution that incorporates user preferences. The simulation results show that the proposed policy outperforms most recent policies designed for the cloud environment in many aspects, including processing time, response time, and processing cost. KEYWORDS Cloud computing, data centre selection, service broker, VIKOR, user priorities

Download Full-text

Improvement of Privacy and Security in Hybrid Cloud with Attribute Group Based Access Control

International Journal of Scientific Research in Computer Science Engineering and Information Technology ◽

10.32628/cseit19518 ◽

2019 ◽

pp. 57-61

Author(s):

Kayalvili S ◽

Sowmitha V

Keyword(s):

Cloud Computing ◽

Access Control ◽

Data Storage ◽

Service Providers ◽

Cloud Service ◽

Security Requirements ◽

Security And Privacy ◽

Data Outsourcing ◽

Privacy And Security ◽

Control Approach

Cloud computing enables users to accumulate their sensitive data into cloud service providers to achieve scalable services on-demand. Outstanding security requirements arising from this means of data storage and management include data security and privacy. Attribute-based Encryption (ABE) is an efficient encryption system with fine-grained access control for encrypting out-sourced data in cloud computing. Since data outsourcing systems require flexible access control approach Problems arises when sharing confidential corporate data in cloud computing. User-Identity needs to be managed globally and access policies can be defined by several authorities. Data is dual encrypted for more security and to maintain De-Centralization in Multi-Authority environment.

Download Full-text

Broker-based optimization of SLA negotiations in cloud computing

Multiagent and Grid Systems ◽

10.3233/mgs-210349 ◽

2021 ◽

Vol 17 (2) ◽

pp. 179-195

Author(s):

Priyanka Bharti ◽

Rajeev Ranjan ◽

Bhanu Prasad

Keyword(s):

Cloud Computing ◽

Service Providers ◽

Service Level Agreement ◽

Cloud Service ◽

Service Level ◽

Cloud Environment ◽

Negotiation Strategies ◽

Sla Negotiation ◽

Conflicting Interests ◽

The Impact

Cloud computing provisions and allocates resources, in advance or real-time, to dynamic applications planned for execution. This is a challenging task as the Cloud-Service-Providers (CSPs) may not have sufficient resources at all times to satisfy the resource requests of the Cloud-Service-Users (CSUs). Further, the CSPs and CSUs have conflicting interests and may have different utilities. Service-Level-Agreement (SLA) negotiations among CSPs and CSUs can address these limitations. User Agents (UAs) negotiate for resources on behalf of the CSUs and help reduce the overall costs for the CSUs and enhance the resource utilization for the CSPs. This research proposes a broker-based mediation framework to optimize the SLA negotiation strategies between UAs and CSPs in Cloud environment. The impact of the proposed framework on utility, negotiation time, and request satisfaction are evaluated. The empirical results show that these strategies favor cooperative negotiation and achieve significantly higher utilities, higher satisfaction, and faster negotiation speed for all the entities involved in the negotiation.

Download Full-text

Trust Management in Cloud Computing

Cloud Security ◽

10.4018/978-1-5225-8176-5.ch083 ◽

2019 ◽

pp. 1686-1711

Author(s):

Vijay L. Hallappanavar ◽

Mahantesh N. Birje

Keyword(s):

Cloud Computing ◽

Service Provider ◽

Management System ◽

Trust Management ◽

Service Providers ◽

Cloud Service ◽

Network Access ◽

Trust Value ◽

Trust Management System ◽

Computing Services

Cloud computing is a model for enabling everywhere, suitable, on-demand network access. There are a number of challenges to provide cloud computing services and to accomplish this, it is necessary to establish trust across the cloud, between the user and the service provider. It is becoming increasingly complex for cloud users to make distinction among service providers offering similar kinds of services. There must be some mechanisms in the hands of users to determine trustworthiness of service providers so that they can select service providers with confidence and with some degree of assurance that service provider will not behave unpredictably or maliciously. An effective trust management system helps cloud service providers and consumers reap the benefits brought about by cloud computing technologies. Hence the objective of this chapter is to describe existing mechanisms that are used to determine a trust worthiness of a cloud service, various models that are used for calculating a trust value and method to establish trust management system.

Download Full-text

eHealth Cloud Security Challenges: A Survey

Journal of Healthcare Engineering ◽

10.1155/2019/7516035 ◽

2019 ◽

Vol 2019 ◽

pp. 1-15 ◽

Cited By ~ 11

Author(s):

Yazan Al-Issa ◽

Mohammad Ashraf Ottom ◽

Ahmed Tamrawi

Keyword(s):

Cloud Computing ◽

Resource Sharing ◽

Energy Savings ◽

Service Providers ◽

Healthcare Providers ◽

Cloud Service ◽

Cloud Security ◽

Security And Privacy ◽

Healthcare Industry ◽

Sensitive Data

Cloud computing is a promising technology that is expected to transform the healthcare industry. Cloud computing has many benefits like flexibility, cost and energy savings, resource sharing, and fast deployment. In this paper, we study the use of cloud computing in the healthcare industry and different cloud security and privacy challenges. The centralization of data on the cloud raises many security and privacy concerns for individuals and healthcare providers. This centralization of data (1) provides attackers with one-stop honey-pot to steal data and intercept data in-motion and (2) moves data ownership to the cloud service providers; therefore, the individuals and healthcare providers lose control over sensitive data. As a result, security, privacy, efficiency, and scalability concerns are hindering the wide adoption of the cloud technology. In this work, we found that the state-of-the art solutions address only a subset of those concerns. Thus, there is an immediate need for a holistic solution that balances all the contradicting requirements.

Download Full-text

AgriTrust—A Trust Management Approach for Smart Agriculture in Cloud-based Internet of Agriculture Things

Sensors ◽

10.3390/s20216174 ◽

2020 ◽

Vol 20 (21) ◽

pp. 6174 ◽

Cited By ~ 1

Author(s):

Kamran Ahmad Awan ◽

Ikram Ud Din ◽

Ahmad Almogren ◽

Hisham Almajed

Keyword(s):

Trust Management ◽

Service Providers ◽

Base Station ◽

Security And Privacy ◽

Management Approach ◽

Time Interval ◽

Management Mechanism ◽

Trust Degree ◽

Smart Agriculture ◽

Compromised Nodes

Internet of Things (IoT) provides a diverse platform to automate things where smart agriculture is one of the most promising concepts in the field of Internet of Agriculture Things (IoAT). Due to the requirements of more processing power for computations and predictions, the concept of Cloud-based smart agriculture is proposed for autonomic systems. This is where digital innovation and technology helps to improve the quality of life in the area of urbanization expansion. For the integration of cloud in smart agriculture, the system is shown to have security and privacy challenges, and most significantly, the identification of malicious and compromised nodes along with a secure transmission of information between sensors, cloud, and base station (BS). The identification of malicious and compromised node among soil sensors communicating with the BS is a notable challenge in the BS to cloud communications. The trust management mechanism is proposed as one of the solutions providing a lightweight approach to identify these nodes. In this article, we have proposed a novel trust management mechanism to identify malicious and compromised nodes by utilizing trust parameters. The trust mechanism is an event-driven process that computes trust based on the pre-defined time interval and utilizes the previous trust degree to develop an absolute trust degree. The system also maintains the trust degree of a BS and cloud service providers using distinct approaches. We have also performed extensive simulations to evaluate the performance of the proposed mechanism against several potential attacks. In addition, this research helps to create friendlier environments and efficient agricultural productions for the migration of people to the cities.

Download Full-text

On Data Security and Encryption Algorithms in Cloud Environment

Applied Mechanics and Materials ◽

10.4028/www.scientific.net/amm.701-702.1106 ◽

2014 ◽

Vol 701-702 ◽

pp. 1106-1111 ◽

Cited By ~ 1

Author(s):

Xin Zheng Zhang ◽

Ya Juan Zhang

Keyword(s):

Cloud Computing ◽

Data Storage ◽

Data Security ◽

Service Providers ◽

Cloud Service ◽

Working Environment ◽

Cloud Environment ◽

Cloud Data ◽

Security Issues ◽

Encryption Algorithms

As information and processes are migrating to the cloud, Cloud Computing is drastically changing IT professionals’ working environment. Cloud Computing solves many problems of conventional computing. However, the new technology has also created new challenges such as data security, data ownership and trans-code data storage. We discussed about Cloud computing security issues, mechanism, challenges that Cloud service providers and consumers face during Cloud engineering. Based on concerning of security issues and challenges, we proposed several encryption algorithms to make cloud data secure and invulnerable. We made comparisons among DES, AES, RSA and ECC algorithms to find combinatorial optimization solutions, which fit Cloud environment well for making cloud data secure and not to be hacked by attackers.

Download Full-text