A TPA Based Efficient Non-Repudiation Scheme for Cloud Storage

Improved Outsourced Provable Data Possession for Secure Cloud Storage

Security and Communication Networks ◽

10.1155/2021/1805615 ◽

2021 ◽

Vol 2021 ◽

pp. 1-12

Author(s):

Haibin Yang ◽

Zhengge Yi ◽

Ruifeng Li ◽

Zheng Tu ◽

Xu An Wang ◽

...

Keyword(s):

Service Provider ◽

Cloud Storage ◽

Cloud Service ◽

Significant Problem ◽

Data Outsourcing ◽

Cloud Service Provider ◽

Provable Data Possession ◽

Cloud Server ◽

Secure Cloud Storage ◽

Correct Data

With the advent of data outsourcing, how to efficiently verify the integrity of data stored at an untrusted cloud service provider (CSP) has become a significant problem in cloud storage. In 2019, Guo et al. proposed an outsourced dynamic provable data possession scheme with batch update for secure cloud storage. Although their scheme is very novel, we find that their proposal is not secure in this paper. The malicious cloud server has ability to forge the authentication labels, and thus it can forge or delete the user’s data but still provide a correct data possession proof. Based on the original protocol, we proposed an improved one for the auditing scheme, and our new protocol is effective yet resistant to attacks.

Identity-Based Public Auditing Scheme for Cloud Storage with Strong Key-Exposure Resilience

Security and Communication Networks ◽

10.1155/2020/4838497 ◽

2020 ◽

Vol 2020 ◽

pp. 1-13 ◽

Cited By ~ 1

Author(s):

S. Mary Virgil Nithya ◽

V. Rhymend Uthariaraj

Keyword(s):

Service Provider ◽

Cloud Storage ◽

Data Privacy ◽

Cloud Service ◽

Cloud Service Provider ◽

Time Period ◽

Identity Based ◽

Time Periods ◽

Cloud Auditing ◽

Key Exposure

Secured storage system is a critical component in cloud computing. Cloud clients use cloud auditing schemes to verify the integrity of data stored in the cloud. But with the exposure of the auditing secret key to the Cloud Service Provider, cloud auditing becomes unsuccessful, however strong the auditing schemes may be. Therefore, it is essential to prevent the exposure of auditing secret keys, and even if it happens, it is necessary to minimize the damage caused. The existing cloud auditing schemes that are strongly resilient to key exposure are based on Public Key Infrastructure and so have challenges of certificate management/verification. These schemes also incur high computation time during integrity verification of the data blocks. The Identity-based schemes eliminate the usage of certificates but limit the damage due to key exposure, only in time periods earlier to the time period of the exposed key. Some of the key exposure resilient schemes do not provide support for batch auditing. In this paper, an Identity-based Provable Data Possession scheme is proposed. It protects the security of Identity-based cloud storage auditing in time periods both earlier and later to the time period of the exposed key. It also provides support for batch auditing. Analysis shows that the proposed scheme is resistant to the replace attack of the Cloud Service Provider, preserves the data privacy against the Third Party Auditor, and can efficiently verify the correctness of data.

Privacy Preserving Data Access to Cloud

International Journal of Innovative Technology and Exploring Engineering - Special Issue ◽

10.35940/ijitee.i8663.078919 ◽

2019 ◽

Vol 8 (9) ◽

pp. 2612-2617

Keyword(s):

Service Provider ◽

File Systems ◽

Cloud Service ◽

Data Access ◽

Data Encryption ◽

Third Party ◽

Distributed File Systems ◽

User Privacy ◽

Cloud Service Provider ◽

User Data

The current systems stress on protection of data stored in the cloud servers without giving much thought and consideration to the protection of data during user access. Encryption of data is a technique that is popularly used to protect stored data. Encryption essentially scrambles the data and stores it in a form which makes no sense unless decrypted with the suitable key. Every cloud service provider ensures data is stored in an encrypted form in its servers. Encryption of data is not sufficient to protect user data as acquiring the appropriate key can result in decrypting of the data. Encrypting the data before uploading the data to the cloud can help to an extent to preserve data. To access the data it would need to be encrypted twice- once by the cloud service provider and then by the user. Cloud service provider is prevented from accessing user data and also other third-party individuals. However, this approach too is not efficient and sufficient to protect user data. ORAM algorithm is used to enable access to user data stored on distributed file systems that comprises of multiple servers stored either at a single location or multiple locations across the globe in a manner which ensures the user privacy is protected when accessing the data. Reshuffle of data blocks stored in third party servers ensures the access pattern of the user remains hidden. ORAM algorithm does not cause any hindrance to the data access and does not lead to any major drop in data access rate. To ensure security, we propose a load balancing technique to guarantee smooth and safe approach for data access.

Measuring security for cloud service provider: A Third Party approach

2013 International Conference on Electrical Information and Communication Technology (EICT) ◽

10.1109/eict.2014.6777855 ◽

2014 ◽

Cited By ~ 8

Author(s):

Md Whaiduzzaman ◽

Abdullah Gani

Keyword(s):

Service Provider ◽

Cloud Service ◽

Third Party ◽

Cloud Service Provider

Authenticated Location-Aware Publish/Subscribe Services in Untrusted Outsourced Environments

Security and Communication Networks ◽

10.1155/2017/4215425 ◽

2017 ◽

Vol 2017 ◽

pp. 1-15

Author(s):

Han Yan ◽

Xiang Cheng ◽

Sen Su ◽

Siyao Zhang

Keyword(s):

Real World ◽

Service Provider ◽

Low Cost ◽

Cloud Service ◽

Third Party ◽

Location Based Service ◽

Cloud Service Provider ◽

For Profit ◽

Location Aware ◽

Effectiveness And Efficiency

Location-aware publish/subscribe is an important location-based service based on server-initiated model. Often times, the owner of massive spatio-textual messages and subscriptions outsources its location-aware publish/subscribe services to a third-party service provider, for example, cloud service provider, who is responsible for delivering messages to their relevant subscribers. The issue arising here is that the messages delivered by the service provider might be tailored for profit purposes, intentionally or not. Therefore, it is essential to develop mechanisms which allow subscribers to verify the correctness of the messages delivered by the service provider. In this paper, we study the problem of authenticating messages in outsourced location-aware publish/subscribe services. We propose an authenticated framework which not only can deliver the messages efficiently but also can make the subscribers’ authentication available with low cost. Extensive experiments on a real-world dataset demonstrate the effectiveness and efficiency of our proposed authenticated framework.

Why aren't we eating our own dog food?

Journal of Information Technology Teaching Cases ◽

10.1057/s41266-017-0022-6 ◽

2018 ◽

Vol 8 (1) ◽

pp. 45-52

Author(s):

Sanjiv Chourasia ◽

Linying Dong

Keyword(s):

Service Provider ◽

It Governance ◽

Cloud Service ◽

Cloud Services ◽

Third Party ◽

Cloud Service Provider ◽

It Alignment ◽

Dog Food ◽

Business Units ◽

Telecommunications Companies

CanTel was one of the fastest growing Canadian telecommunications companies that provided telephone, cable, Internet, and cloud services. In 2015, the company employed over 40,000 employees and boasted of achieving over Cdn$10 billion of annual revenue and serving over 10 million customers. As a cloud service provider, the company faced a dilemma of not being able to fulfill the IT needs of its internal business units. As a result, one of the business units, Digital Channel, resorted to a third-party cloud service, and this set an example for other business units to follow suit. Jeff Smith, the CEO of the company CanTel, and the CIO Jane Lockhart had to find a solution to the issue that had significant implications to its business-IT alignment and IT governance.

A Comprehensive Survey on Trust Issue and Its Deployed Models in Computing Environment

Cloud Security ◽

10.4018/978-1-5225-8176-5.ch005 ◽

2019 ◽

pp. 127-139

Author(s):

Shivani Jaswal ◽

Gurpreet Singh

Keyword(s):

Cloud Computing ◽

Service Provider ◽

Data Transfer ◽

Cloud Service ◽

Third Party ◽

Cloud Environment ◽

Cloud Service Provider ◽

Security Issues ◽

Comprehensive Survey ◽

Trust Models

Cloud computing is growing with a giant pace in today's world. The speed with which it is growing, the same speed is taken over by the insecure data transfer over the cloud. There are many security issues that are underlying in cloud computing. This chapter presents how a trust is built between any user and a cloud service provider. Various techniques have been adopted to calculate the value of trust and further how it can be strength. This chapter has also explained various trust models based on the necessities of a user. This chapter has also thrown some light over the concept of TTP, i.e., Trusted Third Party which further helps in maintaining trust over the cloud environment.

A Comprehensive Survey on Trust Issue and Its Deployed Models in Computing Environment

Critical Research on Scalability and Security Issues in Virtual Cloud Environments - Advances in Information Security, Privacy, and Ethics ◽

10.4018/978-1-5225-3029-9.ch007 ◽

2018 ◽

pp. 150-166

Author(s):

Shivani Jaswal ◽

Gurpreet Singh

Keyword(s):

Cloud Computing ◽

Service Provider ◽

Data Transfer ◽

Cloud Service ◽

Third Party ◽

Cloud Environment ◽

Cloud Service Provider ◽

Security Issues ◽

Comprehensive Survey ◽

Trust Models

Cloud computing is growing with a giant pace in today's world. The speed with which it is growing, the same speed is taken over by the insecure data transfer over the cloud. There are many security issues that are underlying in cloud computing. This chapter presents how a trust is built between any user and a cloud service provider. Various techniques have been adopted to calculate the value of trust and further how it can be strength. This chapter has also explained various trust models based on the necessities of a user. This chapter has also thrown some light over the concept of TTP, i.e., Trusted Third Party which further helps in maintaining trust over the cloud environment.

Augmenting the Operations on Cloud Virtual Forensic Data by employing Probabilistic Data Structures

International Journal of Sensors Wireless Communications and Control ◽

10.2174/2210327909666190710120838 ◽

2019 ◽

Vol 09 ◽

Cited By ~ 1

Author(s):

Gayatri Pandi ◽

Saurabh Shah ◽

K.H Wandra

Keyword(s):

Service Provider ◽

Service Providers ◽

Criminal Activity ◽

Cloud Service ◽

Third Party ◽

Cloud Service Provider ◽

Electronic Evidence ◽

Cloud Service Providers ◽

Cuckoo Filter ◽

Verification Process

Gathering and scrutinizing the different types of logs are the vital steps in the forensic domain. Logs are commonly gathered by the cloud service providers or by some third party layers governed by the cloud service providers. Security of the logs is a crucial issue as the logs can be tampered accidentally or intentionally by an employee in the cloud service provider’s organization or by the forensic investigator, thus maligning the evidence in case a cyber-crime, is committed through the cloud service provider’s infrastructure. The malicious attacker can also conspire with the cloud service provider or the forensic investigator to erase or malign the logs that are generated for one’s own criminal activity. To address such issues, a method is recommended which verifies the tampering of the virtual instance logs, Verification process confirms that the confidentiality and integrity of the logs remains intact. The log integrity is proved by log chains which are created in the implemented system and by the potential electronic evidence of past logs which are posted by the cloud service provider. The proposed system aids in performing the reasonable verifications that the cloud service provider or the forensic investigator is not tampering the logs. The novelty of the research conducted in this paper is a technique which applies the cuckoo filter, to the forensic logs which is supportive in proving the integrity of the evidences at a faster pace in comparison to the other filters.

CLOUD SECURITY PRE-ASSESSMENT MODEL FOR CLOUD SERVICE PROVIDER BASED ON ISO/IEC 27017:2015 ADDITIONAL CONTROL

International Journal of Innovation and Industrial Revolution ◽

10.35631/ijirev.25001 ◽

2020 ◽

Vol 2 (5) ◽

pp. 01-17

Author(s):

Nur Ahada Kamaruddin ◽

Ibrahim Mohamed ◽

Ahmad Dahari Jarno ◽

Maslina Daud

Keyword(s):

Cloud Computing ◽

Service Provider ◽

Cost Effective ◽

Cloud Service ◽

Cloud Security ◽

Assessment Method ◽

Cloud Services ◽

Assessment Model ◽

Cloud Service Provider ◽

Security Controls

Cloud computing technology has succeeded in attracting the interest of both academics and industries because of its ability to provide flexible, cost-effective, and adaptable services in IT solution deployment. The services offered to Cloud Service Subscriber (CSS) are based on the concept of on-demand self-service, scalability, and rapid elasticity, which allows fast deployment of IT solutions, whilst leads to possible misconfiguration, un-patched system, etc. which, allows security threats to compromise the cloud services operations. From the viewpoint of Cloud Service Provider (CSP), incidents such as data loss and information breach, will tarnish their reputations, whilst allow them to conserve the issues internally, in which there is no transparency between CSP and CSS. In the aspects of information security, CSP is encouraged to practice cybersecurity in their cloud services by adopting ISO/IEC27017:2015 inclusive of all additional security controls as mandatory requirements. This study was conducted to identify factors that are influencing the CSP readiness level in the cybersecurity implementation of their cloud services by leveraging the developed pre-assessment model to determine the level of cloud security readiness. Approached the study is based on the combination of qualitative and quantitative assessment method in validating the proposed model through interview and prototype testing. The findings of this study had shown that factors that influence the CSP level of cloud security readiness are based on these domains; technology, organisation, policy, stakeholders, culture, knowledge, and environment. The contribution of the study as a Pre-Assessment Model for CSP which is suitable to be used as a guideline to provide a safer cloud computing environment.