Practical Multi-Keyword Ranked Search with Time- Based Access Control over Encrypted Cloud Data

International Journal of Advanced Research in Science, Communication and Technology ◽

10.48175/ijarsct-1212 ◽

2021 ◽

pp. 72-78

Keyword(s):

Access Control ◽

Time Window ◽

Security Analysis ◽

Third Party ◽

Security And Privacy ◽

Sensitive Data ◽

K Nearest Neighbors ◽

Cloud Data ◽

Massive Growth ◽

Ranked Search

The recent trends suggest that there is an increase in the inclination towards storing data in the cloud due to explosive and massive growth of the volume of the data in the cloud computing environment. It helps them to reduce their computational and storage costs but also undeniably brought in concerns about security and privacy as the owners of the highly sensitive data lose control of it directly. The sensitive data could include electronic-based medical records, confidential fiscal documents, etc. An increased distrust about storage of files in a third-party service provider of cloud resources would contradict the very same reason for which cloud storage facilities were introduced. That’s because we cannot deny the fact that cloud based storage systems offer on- demand and ubiquitous access to flexible storage and computational resources. The keyword ranked search methodologies used in the existing systems mainly focus on enhancing and enriching the efficiency of searching the files and their respective functionalities but a lack of straight forward analysis of security and issues with providing access control have not been addressed. To address these disadvantages, in this paper, we propose an efficient Multi-Keyword Ranked Search scheme with Fine-grained access control (MRSF).MRSF is a methodology which can combine matching of coordinates technique with Term Frequency-Inverse Document Frequency (TF-IDF) to thereby achieve a highly precise retrieval of any cipher text of interest. It also improves the secure k-nearest neighbors (kNN) method. By utilizing an access strategy which is polynomial based, it can effectively refine the search privileges of the users’. Professional security analysis proves that MRSF is secure with respect to safeguarding the secrecy of outsourced data and the privacy of tokens and indices. Along with this enhanced methodology of ranked search scheme, a time limit based access control feature has also been proposed to ensure that the adaptive attackers are stalled from giving prolonged access to the data files. Session expiry will ensure security of data and that is to be achieved by providing a time window for the file retrieval. Extensive experiments also show that MRSF reaches higher search precision and many more functionalities when compared to the existing systems.

Download Full-text

Enhanced Security for Dynamic Multi Keyword Ranked Search Using Greedy Best First Search

International Journal of Scientific Research in Computer Science Engineering and Information Technology ◽

10.32628/cseit1838111 ◽

2019 ◽

pp. 74-78

Author(s):

Bibin Baby ◽

Sharmila Banu

Keyword(s):

Keyword Search ◽

Search Algorithm ◽

Security And Privacy ◽

Index Structure ◽

Sensitive Data ◽

Cloud Data ◽

Encryption Schemes ◽

Query Generation ◽

Ranked Search ◽

Best First Search

Today, due to the enormous growth of data technology in cloud computing, the data owners are stimulated to outsource their data in data management to reduce cost and for the convenient. Data confidentiality, in general, can be obtained by encrypting the data before it is outsourced. The client stores the encrypted data to the cloud using Searchable encryption schemes and applies keyword search techniques over cipher text domain. But the main problem in outsourcing is the lack of security and privacy for the sensitive data. So, to overcome this, for privacy requirement, the sensitive data can be encrypted before it is outsourced. Various methods were proposed to preserve the privacy and to provide security to the cloud data which are encrypted. Here in this paper, we proposed a tree-based search method over the encrypted datain the cloud that supports dynamic operation and multi-keyword ranked search. Clearly, the commonly used “inverse document frequency (IDF) term frequency (TF)” model and the vector space method are joined in the query generation and index creation to give multi-keyword ranked search. To get high search efficiency, a tree-type index structure, “Greedy Best-first Search” algorithm is proposed based on the tree- index.

Download Full-text

A Secured Public Auditing Protocol with Dynamic Structure for Cloud Data

International Journal of Innovative Technology and Exploring Engineering - Special Issue ◽

10.35940/ijitee.a1019.1191s19 ◽

2019 ◽

Vol 9 (1S) ◽

pp. 81-85

Keyword(s):

Data Security ◽

Information Hiding ◽

Research Work ◽

Dynamic Structure ◽

Data Integrity ◽

Third Party ◽

Security And Privacy ◽

Sensitive Information ◽

Sensitive Data ◽

Cloud Data

At present Cloud computing is a very successful paradigm for data computing and storage. It Increases the concerns about data security and privacy in the cloud. Paper covers cloud security and privacy research, while focusing on the works that protect data confidentiality and privacy for sensitive data being stored and queried in the cloud. As Survey enlist all the research carried out related to data security and users privacy preserving techniques in detail. Data sharing can be achieved with sensitive information hiding with remote data integrity auditing, propose a new concept called identity based shared data integrity auditing with sensitive information hiding for secure cloud storage. Initially every data would be outsourced to the cloud only after authorized or activated by the proxy. The key would be generated to the file randomly by the key generation Centre. The transaction details such as key mismatch, file upload and download, hacking details would be shown to the proxy and cloud server. If the match occurs, automatically file would be recovered by the user even if hacker access or tamper the file. The main motive is to ensure that when the cloud properly stores the user’s sanitized data, the proof it generates can pass the verification of the third party auditor. And the paper provides various research work done in the field

Download Full-text

Identification of Various Security Issues, Threats and A Novel Service Model in Cloud Computing

International Journal of Innovative Technology and Exploring Engineering - Special Issue ◽

10.35940/ijitee.l3236.1110120 ◽

2020 ◽

Vol 10 (1) ◽

pp. 321-325

Keyword(s):

Cloud Computing ◽

Cloud Storage ◽

Sudden Change ◽

Third Party ◽

Security And Privacy ◽

Security Measures ◽

Computing Technology ◽

Service Model ◽

Cloud Data ◽

Security Issues

Cloud Computing is a robust, less cost, and an effective platform for providing services. Nowadays, it is applied in various services such as consumer business or Information Technology (IT) carried over the Internet. This cloud computing has some risks of security because, the services which are required for its effective compilation is outsources often by the third party providers. This makes the cloud computing more hard to maintain and monitor the security and privacy of data and also its support. This sudden change in the process of storing data towards the cloud computing technology improved the concerns about different issues in security and also the various threats present in this cloud storage. In the concept of security in cloud storage, various threats and challenges are noted by recent researchers. Hence, an effective framework of providing security is required. The main aim of this paper is to analyze various issues in securing the cloud data threats present in the cloud storage and to propose a novel methodology to secure it. This paper also identifies the most crucial components that can be incorporated in the already existing security measures while designing the storage systems based on cloud. This study also provides us to identify all the available solutions for the challenges of security and privacy in cloud storage.

Download Full-text

Influencing User’s Behavior Concerning Android Privacy Policy: An Overview

Mobile Information Systems ◽

10.1155/2021/3452700 ◽

2021 ◽

Vol 2021 ◽

pp. 1-19

Author(s):

Ming Di ◽

Shah Nazir ◽

Fucheng Deng

Keyword(s):

User Behavior ◽

Third Party ◽

Security And Privacy ◽

Sensitive Data ◽

Privacy And Security ◽

Android Apps ◽

Search Results ◽

Privacy Risks ◽

Work Done

The wide-ranging implementation of Android applications used in various devices, from smartphones to intelligent television, has made it thought-provoking for developers. The permission granting mechanism is one of the defects imposed by the developers. Such assessing of defects does not allow the user to comprehend the implication of privacy for granting permission. Mobile applications are speedily easily reachable to typical users of mobile. Despite possible applications for improving the affordability, availability, and effectiveness of delivering various services, it handles sensitive data and information. Such data and information carry considerable security and privacy risks. Users are usually unaware of how the data can be managed and used. Reusable resources are available in the form of third-party libraries, which are broadly active in android apps. It provides a diversity of functions that deliver privacy and security concerns. Host applications and third-party libraries are run in the same process and share similar permissions. The current study has presented an overview of the existing approaches, methods, and tools used for influencing user behavior concerning android privacy policy. Various prominent libraries were searched, and their search results were analyzed briefly. The search results were presented in diverse perspectives for showing the details of the work done in the area. This will help researchers to offer new solutions in the area of the research.

Download Full-text

Practical Multi-keyword Ranked Search with Access Control over Encrypted Cloud Data

IEEE Transactions on Cloud Computing ◽

10.1109/tcc.2020.3024226 ◽

2020 ◽

pp. 1-1

Author(s):

Jiayi Li ◽

Jianfeng Ma ◽

Yinbin Miao ◽

Yang Ruikang ◽

Ximeng Liu ◽

...

Keyword(s):

Access Control ◽

Cloud Data ◽

Ranked Search

Download Full-text

A Secure Three Factor Based Authentication Scheme for Telecare Medicine Information System with Privacy Preservation

International Journal of Information Security and Privacy ◽

10.4018/ijisp.2022010111 ◽

2022 ◽

Vol 16 (1) ◽

pp. 0-0

Keyword(s):

Information System ◽

Privacy Preservation ◽

Chaotic Map ◽

Security Analysis ◽

Security And Privacy ◽

Telecare Medicine Information System ◽

Medicine Information ◽

Sensitive Data ◽

Healthcare Data ◽

Remote Healthcare

Telecare Medicine Information System (TMIS) is now attracting field for remote healthcare, diagnosis and emergency health services etc. The major objective of this type of system is to provide medical facilities to patients who are critically ill and unable to attend hospitals or put in isolation for observations. A major challenge of such systems is to securely transmit patients' health related information to the medical server through an insecure channel. This collected sensitive data is further used by medical practitioners for diagnosis and treatment purposes. Therefore, security and privacy are essential for healthcare data. In this paper, a robust authentication protocol based on Chebyshev Chaotic map has been proposed for adequate security while transmitting data. The privacy preservation is maintained by a rule set which mainly controls the views. A detailed security analysis was performed for the proposed scheme.

Download Full-text

Remote Data Integrity Check

International Journal of Engineering and Advanced Technology - Regular Issue ◽

10.35940/ijeat.e9780.069520 ◽

2020 ◽

Vol 9 (5) ◽

pp. 661-664

Keyword(s):

Data Integrity ◽

Third Party ◽

Sensitive Data ◽

Text Data ◽

Cloud Data ◽

The Third ◽

Cipher Text ◽

Data Owner ◽

Cloud Server ◽

The Third Party

In Cloud Storage Server, data integrity plays an important role, given cloud clients might not be aware whether the data is safe or has been tampered with. This system introduces identity-based signature algorithms to protect data that belongs to the data owner and gets the status of cloud data by means of verification through signatures. Since it is practically not possible for the data owner to be available online all the time for checking cloud data integrity, Third party auditor is tasked with verifying the data integrity every time instead of data owner. The Third party auditors should not read the cipher text data while verifying and must authenticate itself to cloud server by performing Proof of Knowledge operation; then cloud server can reveal the sensitive data as block wise and the third party auditor can verify the signature without knowledge of cipher text data. Finally, an audit report is sent to the data owner. This work demonstrates data security and integrity in the cloud..

Download Full-text

Mitigation of Insider Attacks through Multi-Cloud

International Journal of Electrical and Computer Engineering (IJECE) ◽

10.11591/ijece.v5i1.pp136-141 ◽

2015 ◽

Vol 5 (1) ◽

pp. 136 ◽

Cited By ~ 1

Author(s):

T Gunasekhar ◽

K Thirupathi Rao ◽

V Krishna Reddy ◽

P Sai Kiran ◽

B Thirumala Rao

Keyword(s):

Access Control ◽

Security Policy ◽

Data Centers ◽

Service Providers ◽

Cloud Service ◽

Sensitive Data ◽

Encrypted Data ◽

Cloud Data ◽

Cloud Data Centers ◽

Multi Cloud

The malicious insider can be an employees, user and/or third party business partner. In cloud environment, clients may store sensitive data about their organization in cloud data centers. The cloud service provider should ensure integrity, security, access control and confidentiality about the stored data at cloud data centers. The malicious insiders can perform stealing on sensitive data at cloud storage and at organizations. Most of the organizations ignoring the insider attack because it is harder to detect and mitigate. This is a major emerging problem at the cloud data centers as well as in organizations. In this paper, we proposed a method that ensures security, integrity, access control and confidentiality on sensitive data of cloud clients by employing multi cloud service providers. The organization should encrypt the sensitive data with their security policy and procedures and store the encrypted data in trusted cloud. The keys which are used during encryption process are again encrypted and stored in another cloud area. So that organization contains only keys for keys of encrypted data. The Administrator of organization also does not know what data kept in cloud area and if he accesses the data, easily caught during the auditing. Hence, the only authorized used can access the data and use it and we can mitigate insider attacks by providing restricted privileges.

Download Full-text

A Policy-Driven Approach to Secure Extraction of COVID-19 Data From Research Papers

Frontiers in Big Data ◽

10.3389/fdata.2021.701966 ◽

2021 ◽

Vol 4 ◽

Author(s):

Lavanya Elluri ◽

Aritran Piplai ◽

Anantaa Kotal ◽

Anupam Joshi ◽

Karuna Pande Joshi

Keyword(s):

Access Control ◽

Academic Community ◽

Security And Privacy ◽

Knowledge Graph ◽

Privacy Policies ◽

Sensitive Data ◽

Research Papers ◽

Policy Compliance ◽

Privacy And Security ◽

The Impact

The entire scientific and academic community has been mobilized to gain a better understanding of the COVID-19 disease and its impact on humanity. Most research related to COVID-19 needs to analyze large amounts of data in very little time. This urgency has made Big Data Analysis, and related questions around the privacy and security of the data, an extremely important part of research in the COVID-19 era. The White House OSTP has, for example, released a large dataset of papers related to COVID research from which the research community can extract knowledge and information. We show an example system with a machine learning-based knowledge extractor which draws out key medical information from COVID-19 related academic research papers. We represent this knowledge in a Knowledge Graph that uses the Unified Medical Language System (UMLS). However, publicly available studies rely on dataset that might have sensitive data. Extracting information from academic papers can potentially leak sensitive data, and protecting the security and privacy of this data is equally important. In this paper, we address the key challenges around the privacy and security of such information extraction and analysis systems. Policy regulations like HIPAA have updated the guidelines to access data, specifically, data related to COVID-19, securely. In the US, healthcare providers must also comply with the Office of Civil Rights (OCR) rules to protect data integrity in matters like plasma donation, media access to health care data, telehealth communications, etc. Privacy policies are typically short and unstructured HTML or PDF documents. We have created a framework to extract relevant knowledge from the health centers’ policy documents and also represent these as a knowledge graph. Our framework helps to understand the extent to which individual provider policies comply with regulations and define access control policies that enforce the regulation rules on data in the knowledge graph extracted from COVID-related papers. Along with being compliant, privacy policies must also be transparent and easily understood by the clients. We analyze the relative readability of healthcare privacy policies and discuss the impact. In this paper, we develop a framework for access control decisions that uses policy compliance information to securely retrieve COVID data. We show how policy compliance information can be used to restrict access to COVID-19 data and information extracted from research papers.

Download Full-text

Fine Grained Access Control Policy with Advanced Encryption Standard in the Cloud Computing

International Journal of Engineering & Technology ◽

10.14419/ijet.v7i4.6.20221 ◽

2018 ◽

Vol 7 (4.6) ◽

pp. 1

Author(s):

Krishna Keerthi Chennam ◽

Lakshmi Mudda

Keyword(s):

Access Control ◽

Data Base ◽

Control Policy ◽

Third Party ◽

Advanced Encryption Standard ◽

Access Control Policy ◽

Cloud Data ◽

Storage Devices ◽

Fine Grained ◽

Attribute Based Encryption

The Data Base as a Service is a great example where the database engine and storage devices are in cloud data. This scheme allows customers to outsource data and store in cloud database on pay per user, scalable and flexible. But data confidentiality is in high risk when data is outsourced and stored in third party database. A trusted third party server must be maintaining the third party data base. There is a possibility of malicious administrator who can leaks the data which is stored in third party database. The best method is to encrypt the data and store in third party database but alone encryption is not sufficient. Even authorization is another problem that who can access the data. For data security and authorized of users, the fine grained access control policy Cipher text policy Attribute Based encryption (CP-ABE) is used to give access to authorized users only and the best symmetric encryption Advanced Encryption Standard(AES) is applied on data before outsourcing the data in cloud.

Download Full-text