ACHIEVING AVAILABILITY AND DATA INTEGRITY PROOF IN HIERARCHICAL ATTRIBUTE ENCRYPTION SCHEME USING HYBRID CLOUD

It has been widely observed that the concept of cloud computing has become one of the major theory in the world of IT industry. Data owner decides to release their burden of storing and maintaining the data locally by storing it over the cloud. Cloud storage moves the owner’s data to large data centers which are remotely located on which data owner does not have any control. However, this unique feature of the cloud poses many new security challenges. One of the important concerns that need to be addressed is access control and integrity of outsourced data in cloud. Number of schemes has been proposed to achieve the access control of outsourced data like hierarchical attribute set based encryption [HASBE] by extending cipher-text-policy attribute set based encryption [CP-ABE]. Even though HASBE scheme achieves scalability, flexibility and fine grained access control, it fails to prove the data integrity in the cloud. Hence integrity checking concept has been proposed for HASBE scheme to achieve integrity. Though the scheme achieves integrity it fails to provide the availability of data to the user even when fault had occurred to data in the cloud. However, the fact that owner no longer have physical possession of data indicates that they are facing a potentially formidable risk for missing or corrupted data, because sometimes the cloud service provider deletes the data which are either not used by client from long-time and which occupies large space in the cloud without the knowledge or permission of data owner. Hence in order to avoid this security risk, in this paper we propose a hybrid cloud concept. Hybrid cloud is a cloud computing environment in which an organization provides and manages some internal resources and external resources. A hybrid cloud is a composition of at least one private cloud and at least one public cloud. This concept provides the availability and data integrity proof for HASBE scheme.

Download Full-text

A Survey on Cloud Computing Techniques for Data Integrity Checking

International Journal for Innovation Education and Research ◽

10.31686/ijier.vol7.iss6.1560 ◽

2019 ◽

Vol 7 (6) ◽

pp. 130-141

Author(s):

Rahma Haroun

Keyword(s):

Cloud Computing ◽

Data Storage ◽

Large Data ◽

Data Integrity ◽

Cloud Service ◽

Security Risk ◽

Memory Space ◽

Cloud Data ◽

Integrity Checking ◽

Data Integrity Checking

Cloud computing is a term that used instead of internet to describe the infrastructure, software services and storage via internet. Large data centers are available in cloud for remotely store user data. The users have no data control privileges when the data transferred to the Cloud and they are not aware of any security risk. Data can be altered by unauthorized user, threats and dishonest server. Farther more, Data which are either unused for a long a time or takes large memory space can be deleted by cloud service provider. The main issue of cloud computing today is data integrity and how can be maintaining. There for, security challenges users are need to ensure that their data are integral by periodically Data integrity checking. Several integrity checking techniques have been proposed to ensure the data integrity in cloud storage. This paper provides a survey of various data integrity checking techniques for cloud data stored. Objective of this survey focusing on existing integrity check techniques for cloud data storage and presenting their characteristics, benefits, functionality and limitations.

Download Full-text

Secure Cloud Data Audit using Protocol and Digital Signature Techniques

International Journal of Recent Technology and Engineering - 2 ◽

10.35940/ijrte.d6970.118419 ◽

2019 ◽

Vol 8 (4) ◽

pp. 430-437

Keyword(s):

Cloud Computing ◽

Digital Signature ◽

Data Security ◽

Data Integrity ◽

Computing System ◽

Outsourced Data ◽

Data Owner ◽

Storage Service ◽

Data Audit ◽

Remote Data

Cloud computing is one of the important business models in the modern Information Technology. It provides various services (hardware, software) to the users with minimal interaction and low-cost. Storage service is one of the most useful services in cloud computing, which move data owners data from local computing system to the cloud. In this paradigm, once the data moves from the local computing system to the cloud, the data owner lost the physical control of the outsourced data on the cloud. So that, storage service creates data security challenges. Therefore, the integrity of the outsourced data has to be verified frequently using public or private verification method. In this paper we focus on two data security concern such as data confidentiality and remote data integrity on cloud storage system. In order to ensure the data integrity and reduce the data owners computational resources, in this work we have proposed a remote data integrity auditing methods such as Remote Data Audit using Protocol(RDAP) and Remote Data Audit using Digital Signature (RDADS) methods. To analyze the performance of the system, first, we define the single data owner on multiple servers and then multiple data owners on a single server for public data verification. Besides, these methods not only verify the integrity of data, but also detect the invalid data block during the verification process.

Download Full-text

Privacy Preserving Public Auditing in Cloud: Literature Review

Cloud Security ◽

10.4018/978-1-5225-8176-5.ch100 ◽

2019 ◽

pp. 2059-2083

Author(s):

Thangavel M. ◽

Varalakshmi P. ◽

Sridhar S. ◽

Sindhuja R.

Keyword(s):

Cloud Computing ◽

Data Storage ◽

Large Data ◽

Cloud Service ◽

Third Party ◽

Public Auditing ◽

Cloud Data ◽

Security Issues ◽

Data Owner ◽

Cloud Data Storage

Cloud computing has given a bloom to the technical world by providing various services. Data storage is the essential factor for the users who are having or working with lots and lots of data. Cloud data storage becomes the only way to store and maintain the large data, which can be accessed from anywhere and anytime. The open nature of cloud computing leads to some security issues. With respect to the cloud data storage, the Cloud Service Provider (CSP) has to provide security for the data outsourced. Data owner will be concerned on the data correctness after outsourcing into the cloud. To verify the data correctness, ensuring the state of data at the cloud data storage is needed, which is performed with the help of a Trusted Third Party Auditor (TTPA). Data owner can also perform the verification task, but it leads to computation cost and communication costs in huge amount. This survey gives a brief on public auditing schemes to explore what are all the system models designed by various researchers.

Download Full-text

Privacy Preserving Public Auditing in Cloud: Literature Review

Advances in Data Mining and Database Management - Advancing Cloud Database Systems and Capacity Planning With Dynamic Applications ◽

10.4018/978-1-5225-2013-9.ch006 ◽

2017 ◽

pp. 133-157

Author(s):

Thangavel M. ◽

Varalakshmi P. ◽

Sridhar S. ◽

Sindhuja R.

Keyword(s):

Cloud Computing ◽

Data Storage ◽

Large Data ◽

Cloud Service ◽

Third Party ◽

Public Auditing ◽

Cloud Data ◽

Security Issues ◽

Data Owner ◽

Cloud Data Storage

Download Full-text

Data Integrity Protection in Cloud

International Journal on Cybernetics & Informatics ◽

10.5121/ijci.2021.100223 ◽

2021 ◽

Vol 10 (02) ◽

pp. 211-218

Author(s):

Indira G ◽

Sujitha S ◽

S.Ganapathy Subramanian

Keyword(s):

Cloud Computing ◽

Fault Tolerance ◽

Access Control ◽

Real Time ◽

Cloud Storage ◽

Data Integrity ◽

Outsourced Data ◽

Integrity Protection

In cloud computing integrity of data and access control are challenging issues. Protection of outsourced data in cloud storage becomes critical. Codes which are regenerating of data provide fault tolerance. Therefore, remotely checking the integrity of data against corruptions and other issues under a real time cloud storage setting is our problem of study. It practically design and implement Data Integrity Protection (DIP) environment.

Download Full-text

An examination on data integrity auditing patterns in cloud computing

International Journal of Engineering & Technology ◽

10.14419/ijet.v7i1.9.9822 ◽

2018 ◽

Vol 7 (1.9) ◽

pp. 200

Author(s):

T A.Mohanaprakash ◽

J Andrews

Keyword(s):

Cloud Computing ◽

Information Security ◽

Data Integrity ◽

Cloud Service ◽

New Approach ◽

Computing Services ◽

Security Challenges ◽

Cloud Server ◽

State Of Affairs ◽

Dynamic Updates

Cloud computing is associate inclusive new approach on however computing services square measure made and utilized. Cloud computing is associate accomplishment of assorted styles of services that has attracted several users in today’s state of affairs. The foremost enticing service of cloud computing is information outsourcing, because of this the information homeowners will host any size of information on the cloud server and users will access the information from cloud server once needed. A dynamic outsourced auditing theme that cannot solely defend against any dishonest entity and collision, however conjointly support verifiable dynamic updates to outsourced information. The new epitome of information outsourcing conjointly faces the new security challenges. However, users might not totally trust the cloud service suppliers (CSPs) as a result of typically they may be dishonest. It's tough to work out whether or not the CSPs meet the customer’s expectations for information security. Therefore, to with success maintain the integrity of cloud information, several auditing schemes are projected. Some existing integrity ways will solely serve for statically archived information and a few auditing techniques is used for the dynamically updated information. The analyzed numerous existing information integrity auditing schemes together with their consequences.

Download Full-text

SECURE DEPENDABLE SELECTIVE STORAGE SERVICES AND SUPPORT FOR DYNAMIC DATA OPERATIONS IN CLOUD COMPUTING

Graduate Research in Engineering and Technology ◽

10.47893/gret.2013.1026 ◽

2013 ◽

pp. 35-40

Author(s):

VINITHA S P ◽

GURUPRASAD E

Keyword(s):

Cloud Computing ◽

Service Providers ◽

Distributed Storage ◽

Large Data ◽

Cloud Service ◽

Dynamic Data ◽

Cloud Data ◽

Data Auditing ◽

Cloud Servers ◽

Selective Storage

Cloud computing has been envisioned as the next generation architecture of IT enterprise. It moves the application software and databases to the centralized large data centers where management of data and services may not be fully trustworthy. This unique paradigm brings out many new security challenges like, maintaining correctness and integrity of data in cloud. Integrity of cloud data may be lost due to unauthorized access, modification or deletion of data. Lacking of availability of data may be due to the cloud service providers (CSP), in order to increase their margin of profit by reducing the cost, CSP may discard rarely accessed data without detecting in timely fashion. To overcome above issues, flexible distributed storage, token utilizing, signature creations used to ensure integrity of data, auditing mechanism used assists in maintaining the correctness of data and also locating, identifying of server where exactly the data has been corrupted and also dependability and availability of data achieved through distributed storage of data in cloud. Further in order to ensure authorized access to cloud data a admin module has been proposed in our previous conference paper, which prevents unauthorized users from accessing data and also selective storage scheme based on different parameters of cloud servers proposed in previous paper, in order to provide efficient storage of data in the cloud. In order to provide more efficiency in this paper dynamic data operations are supported such as updating, deletion and addition of data.

Download Full-text

Improvement of Privacy and Security in Hybrid Cloud with Attribute Group Based Access Control

International Journal of Scientific Research in Computer Science Engineering and Information Technology ◽

10.32628/cseit19518 ◽

2019 ◽

pp. 57-61

Author(s):

Kayalvili S ◽

Sowmitha V

Keyword(s):

Cloud Computing ◽

Access Control ◽

Data Storage ◽

Service Providers ◽

Cloud Service ◽

Security Requirements ◽

Security And Privacy ◽

Data Outsourcing ◽

Privacy And Security ◽

Control Approach

Cloud computing enables users to accumulate their sensitive data into cloud service providers to achieve scalable services on-demand. Outstanding security requirements arising from this means of data storage and management include data security and privacy. Attribute-based Encryption (ABE) is an efficient encryption system with fine-grained access control for encrypting out-sourced data in cloud computing. Since data outsourcing systems require flexible access control approach Problems arises when sharing confidential corporate data in cloud computing. User-Identity needs to be managed globally and access policies can be defined by several authorities. Data is dual encrypted for more security and to maintain De-Centralization in Multi-Authority environment.

Download Full-text

Policy Management in Cloud

IT Policy and Ethics ◽

10.4018/978-1-4666-2919-6.ch037 ◽

2013 ◽

pp. 814-834

Author(s):

Hassan Takabi ◽

James B.D. Joshi

Keyword(s):

Cloud Computing ◽

Access Control ◽

Control Point ◽

Cloud Service ◽

Cloud Provider ◽

Policy Management ◽

Computing Paradigm ◽

Access Control Policies ◽

Computing Environments ◽

Significant Cost Reduction

Cloud computing paradigm is still an evolving paradigm but has recently gained tremendous momentum due to its potential for significant cost reduction and increased operating efficiencies in computing. However, its unique aspects exacerbate security and privacy challenges that pose as the key roadblock to its fast adoption. Cloud computing has already become very popular, and practitioners need to provide security mechanisms to ensure its secure adoption. In this chapter, the authors discuss access control systems and policy management in cloud computing environments. The cloud computing environments may not allow use of a single access control system, single policy language, or single management tool for the various cloud services that it offers. Currently, users must use diverse access control solutions available for each cloud service provider to secure data. Access control policies may be composed in incompatible ways because of diverse policy languages that are maintained separately at every cloud provider. Heterogeneity and distribution of these policies pose problems in managing access policy rules for a cloud environment. In this chapter, the authors discuss challenges of policy management and introduce a cloud based policy management framework that is designed to give users a unified control point for managing access policies to control access to their resources no matter where they are stored.

Download Full-text

Privacy-aware relationship semantics–based XACML access control model for electronic health records in hybrid cloud

International Journal of Distributed Sensor Networks ◽

10.1177/1550147719846050 ◽

2019 ◽

Vol 15 (6) ◽

pp. 155014771984605 ◽

Cited By ~ 2

Author(s):

Tehsin Kanwal ◽

Ather Abdul Jabbar ◽

Adeel Anjum ◽

Saif UR Malik ◽

Abid Khan ◽

...

Keyword(s):

Access Control ◽

Electronic Health Records ◽

Cloud Service ◽

Control Model ◽

Hybrid Cloud ◽

Access Control Model ◽

Health Records ◽

Fine Grained ◽

Electronic Health ◽

Records Access

State-of-the-art progress in cloud computing encouraged the healthcare organizations to outsource the management of electronic health records to cloud service providers using hybrid cloud. A hybrid cloud is an infrastructure consisting of a private cloud (managed by the organization) and a public cloud (managed by the cloud service provider). The use of hybrid cloud enables electronic health records to be exchanged between medical institutions and supports multipurpose usage of electronic health records. Along with the benefits, cloud-based electronic health records also raise the problems of security and privacy specifically in terms of electronic health records access. A comprehensive and exploratory analysis of privacy-preserving solutions revealed that most current systems do not support fine-grained access control or consider additional factors such as privacy preservation and relationship semantics. In this article, we investigated the need of a privacy-aware fine-grained access control model for the hybrid cloud. We propose a privacy-aware relationship semantics–based XACML access control model that performs hybrid relationship and attribute-based access control using extensible access control markup language. The proposed approach supports fine-grained relation-based access control with state-of-the-art privacy mechanism named Anatomy for enhanced multipurpose electronic health records usage. The proposed (privacy-aware relationship semantics–based XACML access control model) model provides and maintains an efficient privacy versus utility trade-off. We formally verify the proposed model (privacy-aware relationship semantics–based XACML access control model) and implemented to check its effectiveness in terms of privacy-aware electronic health records access and multipurpose utilization. Experimental results show that in the proposed (privacy-aware relationship semantics–based XACML access control model) model, access policies based on relationships and electronic health records anonymization can perform well in terms of access policy response time and space storage.

Download Full-text