A TPA Based Efficient Non-Repudiation Scheme for Cloud Storage

2013 ◽  
Vol 765-767 ◽  
pp. 1630-1635
Author(s):  
Wen Qi Ma ◽  
Qing Bo Wu ◽  
Yu Song Tan
Keyword(s):  
Service Provider ◽  
Cloud Storage ◽  
Cloud Service ◽  
Cloud Security ◽  
Third Party ◽  
Cloud Service Provider ◽  
Critical Data ◽  
Security Environment ◽  
Financial Contract ◽  
Update Process

One of differences between cloud storage and previous storage is that there is a financial contract between user and the cloud service provider (CSP). User pay for service in exchange for certain guarantees and the cloud is a liable entity. But some mechanisms need to ensure the liability of CSP. Some work use non-repudiation to realize it. Compared with these non-repudiation schemes, we use third party auditor not client to manage proofs and some metadata, which are security critical data in cloud security. It can provide a more security environment for these data. Against the big overhead in update process of current non-repudiation scheme, we propose three schemes to improve it.

scholarly journals Improved Outsourced Provable Data Possession for Secure Cloud Storage

2021 ◽  
Vol 2021 ◽  
pp. 1-12
Author(s):  
Haibin Yang ◽  
Zhengge Yi ◽  
Ruifeng Li ◽  
Zheng Tu ◽  
Xu An Wang ◽  
...  
Keyword(s):  
Service Provider ◽  
Cloud Storage ◽  
Cloud Service ◽  
Significant Problem ◽  
Data Outsourcing ◽  
Cloud Service Provider ◽  
Provable Data Possession ◽  
Cloud Server ◽  
Secure Cloud Storage ◽  
Correct Data

With the advent of data outsourcing, how to efficiently verify the integrity of data stored at an untrusted cloud service provider (CSP) has become a significant problem in cloud storage. In 2019, Guo et al. proposed an outsourced dynamic provable data possession scheme with batch update for secure cloud storage. Although their scheme is very novel, we find that their proposal is not secure in this paper. The malicious cloud server has ability to forge the authentication labels, and thus it can forge or delete the user’s data but still provide a correct data possession proof. Based on the original protocol, we proposed an improved one for the auditing scheme, and our new protocol is effective yet resistant to attacks.

scholarly journals Identity-Based Public Auditing Scheme for Cloud Storage with Strong Key-Exposure Resilience

2020 ◽  
Vol 2020 ◽  
pp. 1-13 ◽  
Author(s):  
S. Mary Virgil Nithya ◽  
V. Rhymend Uthariaraj
Keyword(s):  
Service Provider ◽  
Cloud Storage ◽  
Data Privacy ◽  
Cloud Service ◽  
Cloud Service Provider ◽  
Time Period ◽  
Identity Based ◽  
Time Periods ◽  
Cloud Auditing ◽  
Key Exposure

Secured storage system is a critical component in cloud computing. Cloud clients use cloud auditing schemes to verify the integrity of data stored in the cloud. But with the exposure of the auditing secret key to the Cloud Service Provider, cloud auditing becomes unsuccessful, however strong the auditing schemes may be. Therefore, it is essential to prevent the exposure of auditing secret keys, and even if it happens, it is necessary to minimize the damage caused. The existing cloud auditing schemes that are strongly resilient to key exposure are based on Public Key Infrastructure and so have challenges of certificate management/verification. These schemes also incur high computation time during integrity verification of the data blocks. The Identity-based schemes eliminate the usage of certificates but limit the damage due to key exposure, only in time periods earlier to the time period of the exposed key. Some of the key exposure resilient schemes do not provide support for batch auditing. In this paper, an Identity-based Provable Data Possession scheme is proposed. It protects the security of Identity-based cloud storage auditing in time periods both earlier and later to the time period of the exposed key. It also provides support for batch auditing. Analysis shows that the proposed scheme is resistant to the replace attack of the Cloud Service Provider, preserves the data privacy against the Third Party Auditor, and can efficiently verify the correctness of data.

scholarly journals Authenticated Location-Aware Publish/Subscribe Services in Untrusted Outsourced Environments

2017 ◽  
Vol 2017 ◽  
pp. 1-15
Author(s):  
Han Yan ◽  
Xiang Cheng ◽  
Sen Su ◽  
Siyao Zhang
Keyword(s):  
Real World ◽  
Service Provider ◽  
Low Cost ◽  
Cloud Service ◽  
Third Party ◽  
Location Based Service ◽  
Cloud Service Provider ◽  
For Profit ◽  
Location Aware ◽  
Effectiveness And Efficiency

Location-aware publish/subscribe is an important location-based service based on server-initiated model. Often times, the owner of massive spatio-textual messages and subscriptions outsources its location-aware publish/subscribe services to a third-party service provider, for example, cloud service provider, who is responsible for delivering messages to their relevant subscribers. The issue arising here is that the messages delivered by the service provider might be tailored for profit purposes, intentionally or not. Therefore, it is essential to develop mechanisms which allow subscribers to verify the correctness of the messages delivered by the service provider. In this paper, we study the problem of authenticating messages in outsourced location-aware publish/subscribe services. We propose an authenticated framework which not only can deliver the messages efficiently but also can make the subscribers’ authentication available with low cost. Extensive experiments on a real-world dataset demonstrate the effectiveness and efficiency of our proposed authenticated framework.

Why aren't we eating our own dog food?

2018 ◽  
Vol 8 (1) ◽  
pp. 45-52
Author(s):  
Sanjiv Chourasia ◽  
Linying Dong
Keyword(s):  
Service Provider ◽  
It Governance ◽  
Cloud Service ◽  
Cloud Services ◽  
Third Party ◽  
Cloud Service Provider ◽  
It Alignment ◽  
Dog Food ◽  
Business Units ◽  
Telecommunications Companies

CanTel was one of the fastest growing Canadian telecommunications companies that provided telephone, cable, Internet, and cloud services. In 2015, the company employed over 40,000 employees and boasted of achieving over Cdn$10 billion of annual revenue and serving over 10 million customers. As a cloud service provider, the company faced a dilemma of not being able to fulfill the IT needs of its internal business units. As a result, one of the business units, Digital Channel, resorted to a third-party cloud service, and this set an example for other business units to follow suit. Jeff Smith, the CEO of the company CanTel, and the CIO Jane Lockhart had to find a solution to the issue that had significant implications to its business-IT alignment and IT governance.

scholarly journals Privacy Preserving Data Access to Cloud

2019 ◽  
Vol 8 (9) ◽  
pp. 2612-2617
Keyword(s):  
Service Provider ◽  
File Systems ◽  
Cloud Service ◽  
Data Access ◽  
Data Encryption ◽  
Third Party ◽  
Distributed File Systems ◽  
User Privacy ◽  
Cloud Service Provider ◽  
User Data

The current systems stress on protection of data stored in the cloud servers without giving much thought and consideration to the protection of data during user access. Encryption of data is a technique that is popularly used to protect stored data. Encryption essentially scrambles the data and stores it in a form which makes no sense unless decrypted with the suitable key. Every cloud service provider ensures data is stored in an encrypted form in its servers. Encryption of data is not sufficient to protect user data as acquiring the appropriate key can result in decrypting of the data. Encrypting the data before uploading the data to the cloud can help to an extent to preserve data. To access the data it would need to be encrypted twice- once by the cloud service provider and then by the user. Cloud service provider is prevented from accessing user data and also other third-party individuals. However, this approach too is not efficient and sufficient to protect user data. ORAM algorithm is used to enable access to user data stored on distributed file systems that comprises of multiple servers stored either at a single location or multiple locations across the globe in a manner which ensures the user privacy is protected when accessing the data. Reshuffle of data blocks stored in third party servers ensures the access pattern of the user remains hidden. ORAM algorithm does not cause any hindrance to the data access and does not lead to any major drop in data access rate. To ensure security, we propose a load balancing technique to guarantee smooth and safe approach for data access.

A Comprehensive Survey on Trust Issue and Its Deployed Models in Computing Environment

2019 ◽  
pp. 127-139
Author(s):  
Shivani Jaswal ◽  
Gurpreet Singh
Keyword(s):  
Cloud Computing ◽  
Service Provider ◽  
Data Transfer ◽  
Cloud Service ◽  
Third Party ◽  
Cloud Environment ◽  
Cloud Service Provider ◽  
Security Issues ◽  
Comprehensive Survey ◽  
Trust Models

Cloud computing is growing with a giant pace in today's world. The speed with which it is growing, the same speed is taken over by the insecure data transfer over the cloud. There are many security issues that are underlying in cloud computing. This chapter presents how a trust is built between any user and a cloud service provider. Various techniques have been adopted to calculate the value of trust and further how it can be strength. This chapter has also explained various trust models based on the necessities of a user. This chapter has also thrown some light over the concept of TTP, i.e., Trusted Third Party which further helps in maintaining trust over the cloud environment.

A Comprehensive Survey on Trust Issue and Its Deployed Models in Computing Environment

2018 ◽  
pp. 150-166
Author(s):  
Shivani Jaswal ◽  
Gurpreet Singh
Keyword(s):  
Cloud Computing ◽  
Service Provider ◽  
Data Transfer ◽  
Cloud Service ◽  
Third Party ◽  
Cloud Environment ◽  
Cloud Service Provider ◽  
Security Issues ◽  
Comprehensive Survey ◽  
Trust Models

Cloud computing is growing with a giant pace in today's world. The speed with which it is growing, the same speed is taken over by the insecure data transfer over the cloud. There are many security issues that are underlying in cloud computing. This chapter presents how a trust is built between any user and a cloud service provider. Various techniques have been adopted to calculate the value of trust and further how it can be strength. This chapter has also explained various trust models based on the necessities of a user. This chapter has also thrown some light over the concept of TTP, i.e., Trusted Third Party which further helps in maintaining trust over the cloud environment.

Augmenting the Operations on Cloud Virtual Forensic Data by employing Probabilistic Data Structures

2019 ◽  
Vol 09 ◽  
Author(s):  
Gayatri Pandi ◽  
Saurabh Shah ◽  
K.H Wandra
Keyword(s):  
Service Provider ◽  
Service Providers ◽  
Criminal Activity ◽  
Cloud Service ◽  
Third Party ◽  
Cloud Service Provider ◽  
Electronic Evidence ◽  
Cloud Service Providers ◽  
Cuckoo Filter ◽  
Verification Process

Gathering and scrutinizing the different types of logs are the vital steps in the forensic domain. Logs are commonly gathered by the cloud service providers or by some third party layers governed by the cloud service providers. Security of the logs is a crucial issue as the logs can be tampered accidentally or intentionally by an employee in the cloud service provider’s organization or by the forensic investigator, thus maligning the evidence in case a cyber-crime, is committed through the cloud service provider’s infrastructure. The malicious attacker can also conspire with the cloud service provider or the forensic investigator to erase or malign the logs that are generated for one’s own criminal activity. To address such issues, a method is recommended which verifies the tampering of the virtual instance logs, Verification process confirms that the confidentiality and integrity of the logs remains intact. The log integrity is proved by log chains which are created in the implemented system and by the potential electronic evidence of past logs which are posted by the cloud service provider. The proposed system aids in performing the reasonable verifications that the cloud service provider or the forensic investigator is not tampering the logs. The novelty of the research conducted in this paper is a technique which applies the cuckoo filter, to the forensic logs which is supportive in proving the integrity of the evidences at a faster pace in comparison to the other filters.

scholarly journals CLOUD SECURITY PRE-ASSESSMENT MODEL FOR CLOUD SERVICE PROVIDER BASED ON ISO/IEC 27017:2015 ADDITIONAL CONTROL

2020 ◽  
Vol 2 (5) ◽  
pp. 01-17
Author(s):  
Nur Ahada Kamaruddin ◽  
Ibrahim Mohamed ◽  
Ahmad Dahari Jarno ◽  
Maslina Daud
Keyword(s):  
Cloud Computing ◽  
Service Provider ◽  
Cost Effective ◽  
Cloud Service ◽  
Cloud Security ◽  
Assessment Method ◽  
Cloud Services ◽  
Assessment Model ◽  
Cloud Service Provider ◽  
Security Controls

Cloud computing technology has succeeded in attracting the interest of both academics and industries because of its ability to provide flexible, cost-effective, and adaptable services in IT solution deployment. The services offered to Cloud Service Subscriber (CSS) are based on the concept of on-demand self-service, scalability, and rapid elasticity, which allows fast deployment of IT solutions, whilst leads to possible misconfiguration, un-patched system, etc. which, allows security threats to compromise the cloud services operations. From the viewpoint of Cloud Service Provider (CSP), incidents such as data loss and information breach, will tarnish their reputations, whilst allow them to conserve the issues internally, in which there is no transparency between CSP and CSS. In the aspects of information security, CSP is encouraged to practice cybersecurity in their cloud services by adopting ISO/IEC27017:2015 inclusive of all additional security controls as mandatory requirements. This study was conducted to identify factors that are influencing the CSP readiness level in the cybersecurity implementation of their cloud services by leveraging the developed pre-assessment model to determine the level of cloud security readiness. Approached the study is based on the combination of qualitative and quantitative assessment method in validating the proposed model through interview and prototype testing. The findings of this study had shown that factors that influence the CSP level of cloud security readiness are based on these domains; technology, organisation, policy, stakeholders, culture, knowledge, and environment. The contribution of the study as a Pre-Assessment Model for CSP which is suitable to be used as a guideline to provide a safer cloud computing environment.

Sign in / Sign up

Export Citation Format

Share Document