IJSRED, profile picture
Uploaded byIJSRED
17 views

Remote data integrity checking with a third party auditor in public cloud using a proxy server

This document proposes a method for remote data integrity checking with a third party auditor using an identity-based proxy server protocol (IDPP) in public clouds. The IDPP protocol uses identity-based cryptography and computational Diffie-Hellman problems to authorize a proxy to process and upload data to the cloud on behalf of an owner who may be restricted. It allows the owner to remotely check the integrity of their data stored in the public cloud. The proposed system uses key generation, encryption, labeling files with tags, and an interactive proof between the cloud and owner to verify integrity.

Download to read offline
International Journal of Scientific Research and Engineering Development-– Volume 2 Issue 5, Sep – Oct 2019 Available at www.ijsred.com ISSN : 2581-7175 ©IJSRED:All Rights are Reserved Page 1111 Remote Data Integrity Checking with Third Party Auditor in Public Cloud using a Proxy Server S. SwamyAyyappa*, Prof P.S. Avadhani** *(Student, Computer Science and Systems Engineering, AU College of Engineering, Andhra University,Visakhapatnam Email: sas118cct@gmail.com) ** (Professor, Computer Science and Systems Engineering, AUCollege of Engineering, Andhra University, Visakhapatnam Email :psavadhani@yahoo.com) ----------------------------------------************************---------------------------------- Abstract: Rapid development of cloud computing enabled many users to store data to PCS (public cloud servers). Enormous amount of data in cloud brought up the need of new security problems to be solved in allowing more clients process their data in a public cloud. At times the owner or the administrator fails to dispose its duty, upon the delegation that is handled by a proxy to process the data and upload them. Alongside the remote data integrity checking with third party auditor is also possible in public cloud storage. Proxy makes an internal communication with the client as well as end user in disposing the data with security. We propose a method of remote data integrity checking with third party auditor using IDPP (Identity based proxy server processing).This IDPP protocol is designed to enhance secure transactions and works on CDH (computational Diffie-Hellman) problem. IDPP can realize the remote data integrity checking possible upon the authorization by the administrator or owner. Keywords —Cloud Computing, Identity based Cryptography, Proxy, Remote data, Integrity. ----------------------------------------************************---------------------------------- I. INTRODUCTION Over-headed computation and communication techniques generated huge amount of data. These data require more computation resources and greater storage space. Cloud computing realized the data centricity with independence to data. Major problem arises at providing security to data being uploaded and downloaded. Cloud computing applications provided with storage, computing, data security, etc. By using the public cloud platform, the clients are relieved of the burden for storage management, universal data access with independent geographical locations, etc. There increased the demand for cloud services with lowest burden of storing and accessing. Cloud computing provides the users all the hardware, storage space and application software to access and process data. Cloud computing uses the internet and remote central servers for data and applications to organize this pattern. This is broadly categorized into two models. • Deployment model • Service model Deployment model manage the entire cloud service. In Fact, they define the type of access to the cloud. There are 4 major deployment models. They are • Public cloud model • Private cloud model • Community cloud model • Hybrid cloud model Service models are user centric and define the model of service to the consumers. This is application driven model and design is a subset of automating the resource. They are 3 service models. They are • Platform as a service (PaaS) • Software as a service (SaaS) • Infrastructure as a service (Iaas) RESEARCH ARTICLE OPEN ACCESS
International Journal of Scientific Research and Engineering Development-– Volume 2 Issue 5, Sep – Oct 2019 Available at www.ijsred.com ISSN : 2581-7175 ©IJSRED: All Rights are Reserved Page 1112 Cloud Computing has client infrastructure, Internet, application, services, Cloud runtime, Storage, Infrastructure, and security blocks in the architecture. Below figure shows the architecture of Cloud Computing Fig. 1Cloud Computing Architecture Security of the cloud refers to the data uploaded by the user in remote public cloud servers since the data stored is out of user’s reach in terms of confidentiality, integrity and availability of data and service. Remote data integrity checking is an essential task in convincing the users of the cloud that their data is kept safe. Some special cases the actual user may be restricted due to administrational problems, and the same is realized by the Identity based Proxy server Processing (IDPP). II. LITERATURE REVIEW WentingShen[1]proposed a new model for the integrity check on the cloud computing environment and the use of TPA (Third party auditor) and digital signaturetechnique for achieving the integrity over cloud computing. They also brought up a new method of encrypting a file with the concept of “Sanitization”. This is again broughtby[6] where the concept of “sanitizable signatures” was explained. The sanitizable signatures idea led to the development of sanitization. B.Wang[4] discussed the “public auditing for shared data for efficient user revocation in cloud services”. This analysed the concepts of users in cloud and their bound of access in a protected cloud environment. All the services that cloud provide, basic security but identifying the user based on the ID and auditing of data in cloud have the efficient method of data handling. BhalePradeepkumar[7] made the part of functional algorithms used in this paper in auditing and data integrity checking in cloud while all this is done by a third-party auditor. They used concepts like Third party auditor and MD5 algorithm in generating message block of 32-bit length key. J.Sun[3] showed the cross-domain distribution of files especially the electronic health records and relevant permission access to use them. This in return showcased the concepts that are used in WentingShen[1] that project on electronic health records and the partly encrypted files were pushed into the cloud using specified sanitization techniques. These both allowed us to think over the domain and area of research. In this paper the proposed algorithm is using the entire cloud service with a proxy, both uploading and downloading alongside the auditing and data integrity checking. These concepts were motivated by many earlier published papers and the core algorithm in generating the keys was designed in showing a concreteness in development. This uses IDPP protocol depending on the Diffie Hellman key algorithm keeping in mind the CDH (computational Diffie Hellman problem). III. MOTIVATION The earlier proposed WentingShen[1] showcased a challenging problem of partial encryption with “Sanitization” and advancing the cloud usage. Further study at this process of upload and usage of data is clear and struck with at problem of initial uploader, which is the motivation for this paper.
International Journal of Scientific Research and Engineering Development-– Volume 2 Issue 5, Sep – Oct 2019 Available at www.ijsred.com ISSN : 2581-7175 ©IJSRED: All Rights are Reserved Page 1113 Generally, all the users of the cloud upload their data to the public cloud and check the data integrity by Internet and direct applications provided by the cloud. If a particular user who is a head of any institution, by administrational problem couldn’t reach the network, then the manager’s transactions will be affected. To assist this sort of problems, he has to delegate his duty to a proxy. He even has to appoint data integrity mechanism to ensure the security of data. Our proposed model performs all required aspects at one platform. IV. PROPOSED WORK The security in a cloud is a remote task performing the connectivity between the cloud and its corresponding applications which are at default by the services of cloud computing. This paper is a combination of Remote data integrity check by a Third-party auditor and push and pull of data through an additional layer called Proxy server in disguise of actual manager to the cloud,which take multiple inherited functions namely, • Identity - based encryption • Remote data Integrity check A. Identity – based Encryption Identity based encryption takes the user’s ID and with the help of a master key MSK, produces a unique Private key Kp with what the encryption process is done where message MSG is encrypted with Kp and the decryption process follows with the Ciphertext C being decrypted with the unique key Kp. Security is a great concern as the user parameters changes for every user and they are unique in generating the encryption and decryption keys. Fig. 2Identity based Encryption Architecture B. Remote Data Integrity Check Remote data integrity check is the non-local function, where the check is at the Cloud site maintaining the privacy of user files. The data in cloud has to follow the CIA - triad (Confidentiality, integrity, availability). The remote data integrity is realized by assigning the function of data integrity check. This entity takes in the user parameters including the file in encrypted format and regenerate the signature (Sig) and tries to validate it with the initially generated signature. Fig. 3 Remote Data Integrity Check Using TPA V. SYSTEM ARCHITECTURE We propose an IDPP protocol to secure data in public clouds. Bilinear pairings technique makes Identity-based cryptography practically possible. This protocol comprises of five procedures: • Set - parameters • Seeking • Proxy- key generation • Labelling • Proof A. Set Parameters Let G1 and G2 be two groups and e be the bilinear pairings which have the same order q. Let g be a generator g of the group G1. Two cryptographic hash functions are given below H: {0,1}* --> Z*q, h : Z*q X {0,1}* --> G1 B. Seeking Taking in the original client’s identity IDo, KGC generates a random key and sends the sk(id) to the
International Journal of Scientific Research and Engineering Development-– Volume 2 Issue 5, Sep – Oct 2019 Available at www.ijsred.com ISSN : 2581-7175 ©IJSRED: All Rights are Reserved Page 1114 original client by the secure channel. Let sk(id) be the original client’s private key. C. Proxy-key Generation KGC generates its master key and is kept confidential by KGC. D. Labelling Taking in the file F and proxy-key, the proxy generates the corresponding tag for each file Fi. Then it uploads the block-tag pair to PCS. E. Proof Proof is an interactive system between Public Cloud and Original client. At the end of the interactive proof protocol, Original Client output a bit {0|1} denoting “success” or “failure” after the remote data integrity check is over. Fig 4 IDPP Protocol VI. SYSTEM MODEL IDPP protocol in the application generated consists of few entities each performing certain functions. There are four entities similar to them A. Client: This is an entity which uploads massive data to the PCS (Public Cloud Server), by the delegated proxy which can perform the data integrity checking. B. PCS (Public Cloud Server): This is maintained by the cloud service provider and has significant storage and computation capacity. User’s data is securely managed in the cloud. C. Proxy: This is delegated and authorized by the manager to process the Client’s data and upload them. This verifies the signature signed by the Client and processes it when the same is satisfied, otherwise it cannot perform the procedure. D. KGC (Key Generation Centre): This is an entity that generates the private key upon seeking the data and all inputs from the Client. This procedure provides the Client to interact directly with the PCS to check the remote data integrity. Thus, delivering the integrity check and securing the data in a specified design method. VII. CONCLUSION Motivated by the security needs, we proposed a novel security concept of IDPP implemented on public cloud. The concrete IDPP protocol is designed by using the bilinear pairings technique. This protocol is provably secure and efficient by using the formal security proof and efficiency analysis. This finally accomplishes the managerial tasks with updated security mechanisms. REFERENCES [1] Wenting Shen, Jing Qin, Jia Yu , Rong Hao, and Jiankun Hu, Enabling Identity Based Integrity Auditing And Data Sharing With Sensitive Information Hiding for Secure cloud Storages, IEEE transactions vol 14 , February 2019 [2] G. Ateniese et al., “Provable data possession at untrusted stores,” in Proc. 14th ACM Conf. Comput. Commun. Secur., 2007, pp. 598– 609. [3] J. Sun and Y. Fang, “Cross-domain data sharing in distributed electronichealth record systems,” IEEE Trans. Parallel Distrib. Syst., vol. 21, no. 6,pp. 754–764, Jun. 2010 [4] B. Wang, B. Li, and H. Li, “Panda: Public auditing for shared data with efficient user revocation in the cloud,” IEEE Trans. Serv. Comput.,vol. 8, no. 1, pp. 92–106, Jan./Feb. 2015. [5] Y. Yu et al., “Identity-based remote data integrity checking with perfectdata privacy preserving for cloud storage,” IEEE Trans. Inf. ForensicsSecurity, vol. 12, no. 4, pp. 767–778, Apr. 2017. [6] G. Ateniese, D. H. Chou, B. de Medeiros, and G. Tsudik, “Sanitizable signatures,” in Proc. 10th Eur. Symp. Res. Comput. Secur. Berlin, Germany: Springer-Verlag, 2005, pp. 159–177. [7] Bhale Pradeepkumar Gajendra, Vinay kumar singh, More Sujeeth, “ Achieving cloud security using third party auditor, MD5 and Identity based encryption”

More Related Content

PDF
Insuring Security for Outsourced Data Stored in Cloud Environment
byEditor IJCATR
 
PDF
Access Control and Revocation for Digital Assets on Cloud with Consideration ...
byIJERA Editor
 
PDF
IRJET- Secure Data Deduplication for Cloud Server using HMAC Algorithm
byIRJET Journal
 
PDF
R180203114117
byIOSR Journals
 
PDF
Survey on Lightweight Secured Data Sharing Scheme for Cloud Computing
byIRJET Journal
 
PDF
Privacy Preserving Public Auditing and Data Integrity for Secure Cloud Storag...
byINFOGAIN PUBLICATION
 
PDF
IRJET- A Review on Lightweight Secure Data Sharing Scheme for Mobile Cloud Co...
byIRJET Journal
 
PDF
G017424448
byIOSR Journals
 
Insuring Security for Outsourced Data Stored in Cloud Environment
byEditor IJCATR
 
Access Control and Revocation for Digital Assets on Cloud with Consideration ...
byIJERA Editor
 
IRJET- Secure Data Deduplication for Cloud Server using HMAC Algorithm
byIRJET Journal
 
R180203114117
byIOSR Journals
 
Survey on Lightweight Secured Data Sharing Scheme for Cloud Computing
byIRJET Journal
 
Privacy Preserving Public Auditing and Data Integrity for Secure Cloud Storag...
byINFOGAIN PUBLICATION
 
IRJET- A Review on Lightweight Secure Data Sharing Scheme for Mobile Cloud Co...
byIRJET Journal
 
G017424448
byIOSR Journals
 

What's hot

PDF
Improving security for data migration in cloud computing using randomized enc...
byIOSR Journals
 
PDF
IRJET- Securing Cloud Data Under Key Exposure
byIRJET Journal
 
PDF
Comparison of data security in grid and cloud
byeSAT Publishing House
 
PDF
Centralized Data Verification Scheme for Encrypted Cloud Data Services
byEditor IJMTER
 
PDF
An Efficient Scheme for Data Sharing Among Dynamic Cloud Members
byIRJET Journal
 
PDF
International Journal of Computational Engineering Research(IJCER)
byijceronline
 
PDF
Comparison of data security in grid and cloud computing
byeSAT Journals
 
PDF
IRJET-2 Proxy-Oriented Data Uploading in Multi Cloud Storage
byIRJET Journal
 
PDF
Improve HLA based Encryption Process using fixed Size Aggregate Key generation
byEditor IJMTER
 
PPT
Secure Data Sharing in Cloud (SDSC)
byJishnu Pradeep
 
PDF
An4201262267
byIJERA Editor
 
PDF
IRJET- Two ways Verification for Securing Cloud Data
byIRJET Journal
 
PDF
Ijarcet vol-2-issue-7-2236-2240
byEditor IJARCET
 
PDF
Iaetsd storage privacy protection against data
byIaetsd Iaetsd
 
PDF
Secure data sharing in cloud computing using revocable storage identity-based...
byShakas Technologies
 
PDF
Survey On: Auditing Public Clouds
byIRJET Journal
 
PDF
Ijariie1196
byIJARIIE JOURNAL
 
PPTX
PUBLIC AUDITING FOR SECURE CLOUD STORAGE ...
byBharath Nair
 
PDF
Cloud Computing Environment using Secured Access Control Technique
byIRJET Journal
 
Improving security for data migration in cloud computing using randomized enc...
byIOSR Journals
 
IRJET- Securing Cloud Data Under Key Exposure
byIRJET Journal
 
Comparison of data security in grid and cloud
byeSAT Publishing House
 
Centralized Data Verification Scheme for Encrypted Cloud Data Services
byEditor IJMTER
 
An Efficient Scheme for Data Sharing Among Dynamic Cloud Members
byIRJET Journal
 
International Journal of Computational Engineering Research(IJCER)
byijceronline
 
Comparison of data security in grid and cloud computing
byeSAT Journals
 
IRJET-2 Proxy-Oriented Data Uploading in Multi Cloud Storage
byIRJET Journal
 
Improve HLA based Encryption Process using fixed Size Aggregate Key generation
byEditor IJMTER
 
Secure Data Sharing in Cloud (SDSC)
byJishnu Pradeep
 
An4201262267
byIJERA Editor
 
IRJET- Two ways Verification for Securing Cloud Data
byIRJET Journal
 
Ijarcet vol-2-issue-7-2236-2240
byEditor IJARCET
 
Iaetsd storage privacy protection against data
byIaetsd Iaetsd
 
Secure data sharing in cloud computing using revocable storage identity-based...
byShakas Technologies
 
Survey On: Auditing Public Clouds
byIRJET Journal
 
Ijariie1196
byIJARIIE JOURNAL
 
PUBLIC AUDITING FOR SECURE CLOUD STORAGE ...
byBharath Nair
 
Cloud Computing Environment using Secured Access Control Technique
byIRJET Journal
 

Similar to Remote data integrity checking with a third party auditor in public cloud using a proxy server

PDF
Proxy-Oriented Data Uploading & Monitoring Remote Data Integrity in Public Cloud
byIRJET Journal
 
PDF
To Improve Data Storage Security Levels in the Cloud
byrahulmonikasharma
 
PPTX
211880_Litterature Review.pptx
byMuhammadMazhar83
 
PDF
A Noval Method for Data Auditing and Integrity Checking in Public Cloud
byrahulmonikasharma
 
PDF
Privacy preserving public auditing for data storage security in cloud comp
byIAEME Publication
 
PDF
IDENTITY-BASED PROXY-ORIENTED DATA UPLOADING AND REMOTE DATA INTEGRITY CHECKI...
byNexgen Technology
 
PDF
Cloud Auditing With Zero Knowledge Privacy
byIJERA Editor
 
PDF
Privacy preserving external auditing for data storage security in cloud
byeSAT Publishing House
 
PDF
Paper id 212014106
byIJRAT
 
PDF
A Trusted TPA Model, to Improve Security & Reliability for Cloud Storage
byIRJET Journal
 
PDF
Identity-Based Distributed Provable Data Possession in Multicloud Storage
by1crore projects
 
PDF
IRJET-An Algorithmic Approach for Remote Data Uploading and Integrity Checkin...
byIRJET Journal
 
PDF
Security Check in Cloud Computing through Third Party Auditor
byijsrd.com
 
PDF
Privacy preserving public auditing for
bykarthika kathirvel
 
PDF
Privacy preserving public auditing for secure cloud storage
byMuthu Sybian
 
PDF
An approach for secured data transmission at client end in cloud computing
byIAEME Publication
 
PDF
IRJET - Virtual Data Auditing at Overcast Environment
byIRJET Journal
 
PDF
Integrity Privacy to Public Auditing for Shared Data in Cloud Computing
byIJERA Editor
 
PDF
public truthfulness assessment for shared active cloud data storage with grou...
byIjripublishers Ijri
 
PDF
Privacy preserving public auditing for secure cloud storage
byShakas Technologies
 
Proxy-Oriented Data Uploading & Monitoring Remote Data Integrity in Public Cloud
byIRJET Journal
 
To Improve Data Storage Security Levels in the Cloud
byrahulmonikasharma
 
211880_Litterature Review.pptx
byMuhammadMazhar83
 
A Noval Method for Data Auditing and Integrity Checking in Public Cloud
byrahulmonikasharma
 
Privacy preserving public auditing for data storage security in cloud comp
byIAEME Publication
 
IDENTITY-BASED PROXY-ORIENTED DATA UPLOADING AND REMOTE DATA INTEGRITY CHECKI...
byNexgen Technology
 
Cloud Auditing With Zero Knowledge Privacy
byIJERA Editor
 
Privacy preserving external auditing for data storage security in cloud
byeSAT Publishing House
 
Paper id 212014106
byIJRAT
 
A Trusted TPA Model, to Improve Security & Reliability for Cloud Storage
byIRJET Journal
 
Identity-Based Distributed Provable Data Possession in Multicloud Storage
by1crore projects
 
IRJET-An Algorithmic Approach for Remote Data Uploading and Integrity Checkin...
byIRJET Journal
 
Security Check in Cloud Computing through Third Party Auditor
byijsrd.com
 
Privacy preserving public auditing for
bykarthika kathirvel
 
Privacy preserving public auditing for secure cloud storage
byMuthu Sybian
 
An approach for secured data transmission at client end in cloud computing
byIAEME Publication
 
IRJET - Virtual Data Auditing at Overcast Environment
byIRJET Journal
 
Integrity Privacy to Public Auditing for Shared Data in Cloud Computing
byIJERA Editor
 
public truthfulness assessment for shared active cloud data storage with grou...
byIjripublishers Ijri
 
Privacy preserving public auditing for secure cloud storage
byShakas Technologies
 

More from IJSRED

PDF
Barriers and Facilitators to Retention of Adolescents in HIV Care at Kabuyand...
byIJSRED
 
PDF
Calculation of Equivalent Dose Rate of Bremsstrahlung X-rays Generated by Rig...
byIJSRED
 
PDF
Assessment of the Absorbed Dose Components of BNCT Method at the Dalat Resear...
byIJSRED
 
PDF
IJSRED-V3I6P13
byIJSRED
 
PDF
School Bus Tracking and Security System
byIJSRED
 
PDF
BigBasket encashing the Demonetisation: A big opportunity
byIJSRED
 
PDF
Quantitative and Qualitative Analysis of Plant Leaf Disease
byIJSRED
 
PDF
DC Fast Charger and Battery Management System for Electric Vehicles
byIJSRED
 
PDF
Growth Path Followed by France
byIJSRED
 
PDF
Acquisition System
byIJSRED
 
PDF
Parallelization of Graceful Labeling Using Open MP
byIJSRED
 
PDF
Study of Phenotypic Plasticity of Fruits of Luffa Acutangula Var. Amara
byIJSRED
 
PDF
Understanding Architecture of Internet of Things
byIJSRED
 
PDF
Smart shopping cart
byIJSRED
 
PDF
An Emperical Study of Learning How Soft Skills is Essential for Management St...
byIJSRED
 
PDF
Smart Canteen Management
byIJSRED
 
PDF
Gandhian trusteeship and Economic Ethics
byIJSRED
 
PDF
Impacts of a New Spatial Variable on a Black Hole Metric Solution
byIJSRED
 
PDF
A Study to Assess the Effectiveness of Planned Teaching Programme on Knowledg...
byIJSRED
 
PDF
Inginious Trafalgar Contrivition System
byIJSRED
 
Barriers and Facilitators to Retention of Adolescents in HIV Care at Kabuyand...
byIJSRED
 
Calculation of Equivalent Dose Rate of Bremsstrahlung X-rays Generated by Rig...
byIJSRED
 
Assessment of the Absorbed Dose Components of BNCT Method at the Dalat Resear...
byIJSRED
 
IJSRED-V3I6P13
byIJSRED
 
School Bus Tracking and Security System
byIJSRED
 
BigBasket encashing the Demonetisation: A big opportunity
byIJSRED
 
Quantitative and Qualitative Analysis of Plant Leaf Disease
byIJSRED
 
DC Fast Charger and Battery Management System for Electric Vehicles
byIJSRED
 
Growth Path Followed by France
byIJSRED
 
Acquisition System
byIJSRED
 
Parallelization of Graceful Labeling Using Open MP
byIJSRED
 
Study of Phenotypic Plasticity of Fruits of Luffa Acutangula Var. Amara
byIJSRED
 
Understanding Architecture of Internet of Things
byIJSRED
 
Smart shopping cart
byIJSRED
 
An Emperical Study of Learning How Soft Skills is Essential for Management St...
byIJSRED
 
Smart Canteen Management
byIJSRED
 
Gandhian trusteeship and Economic Ethics
byIJSRED
 
Impacts of a New Spatial Variable on a Black Hole Metric Solution
byIJSRED
 
A Study to Assess the Effectiveness of Planned Teaching Programme on Knowledg...
byIJSRED
 
Inginious Trafalgar Contrivition System
byIJSRED
 

Recently uploaded

DOCX
Forensic Engineering Project Tacoma Narrows Bridge
byhaskellljones
 
PPTX
Mastering Asynchronous Communication with Queues.pptx
byAdalberto Toledo
 
PPTX
5G Technology & Future Communication Systems
bySakshiMarakana
 
PDF
Rapidly Varied Flow and culvert hydraulics
byGetacher Teshome
 
DOCX
General Introduction to resistivety log in well loging
byakbsuhdjuehbd
 
PDF
UK P&I Club Good Practice Posters Series
byMahmoud Moghtaderi
 
PPTX
Unlock Hidden Capacity: How TPM Supercharges Your OEE | MaintWiz CMMS
byMaintWiz Technologies Private Limited
 
PPTX
inbound2629607489386899299.pptxnwiwiwkkq
byhedjechevere
 
PPTX
Presentation¹11111111111111111111111.pptx
byluvdarven
 
PDF
asyad-shipping-esg-report0f7b3d1ec3f44f7c8cbea33ef21f4690.pdf
byJaszsingh
 
PDF
DevSecOps - November + MCP Workshop @ Google
byLuiz Carneiro
 
PDF
Certified Cloud Security Professional (CCSP)
byVICTOR MAESTRE RAMIREZ
 
DOCX
Summer training report on plc and scada.docx
byharshgahlyan3108
 
PDF
Praesentation Australian-Network-Mediachannel.pdf
byAustralian-Network-Mediachannel
 
PDF
Certified Cloud Security Professional (CCSP): Unit 5
byVICTOR MAESTRE RAMIREZ
 
PPTX
network and communication on focus ppt .
bySakshiMarakana
 
PDF
A Pocket Guide to Steering Gear System on Ships
byMahmoud Moghtaderi
 
PPT
Base Line Information Collection for IEE & EIA.pptProject description Stages ...
bypokharamunurbandevel
 
PPTX
Internet-of-Things-IoT-and-Smart-Devices
byAnanyaPatel32
 
PPTX
Develop and Implement a Maintenance Competency Plan | Build Skilled, Reliable...
byMaintWiz Technologies Private Limited
 
Forensic Engineering Project Tacoma Narrows Bridge
byhaskellljones
 
Mastering Asynchronous Communication with Queues.pptx
byAdalberto Toledo
 
5G Technology & Future Communication Systems
bySakshiMarakana
 
Rapidly Varied Flow and culvert hydraulics
byGetacher Teshome
 
General Introduction to resistivety log in well loging
byakbsuhdjuehbd
 
UK P&I Club Good Practice Posters Series
byMahmoud Moghtaderi
 
Unlock Hidden Capacity: How TPM Supercharges Your OEE | MaintWiz CMMS
byMaintWiz Technologies Private Limited
 
inbound2629607489386899299.pptxnwiwiwkkq
byhedjechevere
 
Presentation¹11111111111111111111111.pptx
byluvdarven
 
asyad-shipping-esg-report0f7b3d1ec3f44f7c8cbea33ef21f4690.pdf
byJaszsingh
 
DevSecOps - November + MCP Workshop @ Google
byLuiz Carneiro
 
Certified Cloud Security Professional (CCSP)
byVICTOR MAESTRE RAMIREZ
 
Summer training report on plc and scada.docx
byharshgahlyan3108
 
Praesentation Australian-Network-Mediachannel.pdf
byAustralian-Network-Mediachannel
 
Certified Cloud Security Professional (CCSP): Unit 5
byVICTOR MAESTRE RAMIREZ
 
network and communication on focus ppt .
bySakshiMarakana
 
A Pocket Guide to Steering Gear System on Ships
byMahmoud Moghtaderi
 
Base Line Information Collection for IEE & EIA.pptProject description Stages ...
bypokharamunurbandevel
 
Internet-of-Things-IoT-and-Smart-Devices
byAnanyaPatel32
 
Develop and Implement a Maintenance Competency Plan | Build Skilled, Reliable...
byMaintWiz Technologies Private Limited
 

Remote data integrity checking with a third party auditor in public cloud using a proxy server

  • 1.
    International Journal ofScientific Research and Engineering Development-– Volume 2 Issue 5, Sep – Oct 2019 Available at www.ijsred.com ISSN : 2581-7175 ©IJSRED:All Rights are Reserved Page 1111 Remote Data Integrity Checking with Third Party Auditor in Public Cloud using a Proxy Server S. SwamyAyyappa*, Prof P.S. Avadhani** *(Student, Computer Science and Systems Engineering, AU College of Engineering, Andhra University,Visakhapatnam Email: sas118cct@gmail.com) ** (Professor, Computer Science and Systems Engineering, AUCollege of Engineering, Andhra University, Visakhapatnam Email :psavadhani@yahoo.com) ----------------------------------------************************---------------------------------- Abstract: Rapid development of cloud computing enabled many users to store data to PCS (public cloud servers). Enormous amount of data in cloud brought up the need of new security problems to be solved in allowing more clients process their data in a public cloud. At times the owner or the administrator fails to dispose its duty, upon the delegation that is handled by a proxy to process the data and upload them. Alongside the remote data integrity checking with third party auditor is also possible in public cloud storage. Proxy makes an internal communication with the client as well as end user in disposing the data with security. We propose a method of remote data integrity checking with third party auditor using IDPP (Identity based proxy server processing).This IDPP protocol is designed to enhance secure transactions and works on CDH (computational Diffie-Hellman) problem. IDPP can realize the remote data integrity checking possible upon the authorization by the administrator or owner. Keywords —Cloud Computing, Identity based Cryptography, Proxy, Remote data, Integrity. ----------------------------------------************************---------------------------------- I. INTRODUCTION Over-headed computation and communication techniques generated huge amount of data. These data require more computation resources and greater storage space. Cloud computing realized the data centricity with independence to data. Major problem arises at providing security to data being uploaded and downloaded. Cloud computing applications provided with storage, computing, data security, etc. By using the public cloud platform, the clients are relieved of the burden for storage management, universal data access with independent geographical locations, etc. There increased the demand for cloud services with lowest burden of storing and accessing. Cloud computing provides the users all the hardware, storage space and application software to access and process data. Cloud computing uses the internet and remote central servers for data and applications to organize this pattern. This is broadly categorized into two models. • Deployment model • Service model Deployment model manage the entire cloud service. In Fact, they define the type of access to the cloud. There are 4 major deployment models. They are • Public cloud model • Private cloud model • Community cloud model • Hybrid cloud model Service models are user centric and define the model of service to the consumers. This is application driven model and design is a subset of automating the resource. They are 3 service models. They are • Platform as a service (PaaS) • Software as a service (SaaS) • Infrastructure as a service (Iaas) RESEARCH ARTICLE OPEN ACCESS
  • 2.
    International Journal ofScientific Research and Engineering Development-– Volume 2 Issue 5, Sep – Oct 2019 Available at www.ijsred.com ISSN : 2581-7175 ©IJSRED: All Rights are Reserved Page 1112 Cloud Computing has client infrastructure, Internet, application, services, Cloud runtime, Storage, Infrastructure, and security blocks in the architecture. Below figure shows the architecture of Cloud Computing Fig. 1Cloud Computing Architecture Security of the cloud refers to the data uploaded by the user in remote public cloud servers since the data stored is out of user’s reach in terms of confidentiality, integrity and availability of data and service. Remote data integrity checking is an essential task in convincing the users of the cloud that their data is kept safe. Some special cases the actual user may be restricted due to administrational problems, and the same is realized by the Identity based Proxy server Processing (IDPP). II. LITERATURE REVIEW WentingShen[1]proposed a new model for the integrity check on the cloud computing environment and the use of TPA (Third party auditor) and digital signaturetechnique for achieving the integrity over cloud computing. They also brought up a new method of encrypting a file with the concept of “Sanitization”. This is again broughtby[6] where the concept of “sanitizable signatures” was explained. The sanitizable signatures idea led to the development of sanitization. B.Wang[4] discussed the “public auditing for shared data for efficient user revocation in cloud services”. This analysed the concepts of users in cloud and their bound of access in a protected cloud environment. All the services that cloud provide, basic security but identifying the user based on the ID and auditing of data in cloud have the efficient method of data handling. BhalePradeepkumar[7] made the part of functional algorithms used in this paper in auditing and data integrity checking in cloud while all this is done by a third-party auditor. They used concepts like Third party auditor and MD5 algorithm in generating message block of 32-bit length key. J.Sun[3] showed the cross-domain distribution of files especially the electronic health records and relevant permission access to use them. This in return showcased the concepts that are used in WentingShen[1] that project on electronic health records and the partly encrypted files were pushed into the cloud using specified sanitization techniques. These both allowed us to think over the domain and area of research. In this paper the proposed algorithm is using the entire cloud service with a proxy, both uploading and downloading alongside the auditing and data integrity checking. These concepts were motivated by many earlier published papers and the core algorithm in generating the keys was designed in showing a concreteness in development. This uses IDPP protocol depending on the Diffie Hellman key algorithm keeping in mind the CDH (computational Diffie Hellman problem). III. MOTIVATION The earlier proposed WentingShen[1] showcased a challenging problem of partial encryption with “Sanitization” and advancing the cloud usage. Further study at this process of upload and usage of data is clear and struck with at problem of initial uploader, which is the motivation for this paper.
  • 3.
    International Journal ofScientific Research and Engineering Development-– Volume 2 Issue 5, Sep – Oct 2019 Available at www.ijsred.com ISSN : 2581-7175 ©IJSRED: All Rights are Reserved Page 1113 Generally, all the users of the cloud upload their data to the public cloud and check the data integrity by Internet and direct applications provided by the cloud. If a particular user who is a head of any institution, by administrational problem couldn’t reach the network, then the manager’s transactions will be affected. To assist this sort of problems, he has to delegate his duty to a proxy. He even has to appoint data integrity mechanism to ensure the security of data. Our proposed model performs all required aspects at one platform. IV. PROPOSED WORK The security in a cloud is a remote task performing the connectivity between the cloud and its corresponding applications which are at default by the services of cloud computing. This paper is a combination of Remote data integrity check by a Third-party auditor and push and pull of data through an additional layer called Proxy server in disguise of actual manager to the cloud,which take multiple inherited functions namely, • Identity - based encryption • Remote data Integrity check A. Identity – based Encryption Identity based encryption takes the user’s ID and with the help of a master key MSK, produces a unique Private key Kp with what the encryption process is done where message MSG is encrypted with Kp and the decryption process follows with the Ciphertext C being decrypted with the unique key Kp. Security is a great concern as the user parameters changes for every user and they are unique in generating the encryption and decryption keys. Fig. 2Identity based Encryption Architecture B. Remote Data Integrity Check Remote data integrity check is the non-local function, where the check is at the Cloud site maintaining the privacy of user files. The data in cloud has to follow the CIA - triad (Confidentiality, integrity, availability). The remote data integrity is realized by assigning the function of data integrity check. This entity takes in the user parameters including the file in encrypted format and regenerate the signature (Sig) and tries to validate it with the initially generated signature. Fig. 3 Remote Data Integrity Check Using TPA V. SYSTEM ARCHITECTURE We propose an IDPP protocol to secure data in public clouds. Bilinear pairings technique makes Identity-based cryptography practically possible. This protocol comprises of five procedures: • Set - parameters • Seeking • Proxy- key generation • Labelling • Proof A. Set Parameters Let G1 and G2 be two groups and e be the bilinear pairings which have the same order q. Let g be a generator g of the group G1. Two cryptographic hash functions are given below H: {0,1}* --> Z*q, h : Z*q X {0,1}* --> G1 B. Seeking Taking in the original client’s identity IDo, KGC generates a random key and sends the sk(id) to the
  • 4.
    International Journal ofScientific Research and Engineering Development-– Volume 2 Issue 5, Sep – Oct 2019 Available at www.ijsred.com ISSN : 2581-7175 ©IJSRED: All Rights are Reserved Page 1114 original client by the secure channel. Let sk(id) be the original client’s private key. C. Proxy-key Generation KGC generates its master key and is kept confidential by KGC. D. Labelling Taking in the file F and proxy-key, the proxy generates the corresponding tag for each file Fi. Then it uploads the block-tag pair to PCS. E. Proof Proof is an interactive system between Public Cloud and Original client. At the end of the interactive proof protocol, Original Client output a bit {0|1} denoting “success” or “failure” after the remote data integrity check is over. Fig 4 IDPP Protocol VI. SYSTEM MODEL IDPP protocol in the application generated consists of few entities each performing certain functions. There are four entities similar to them A. Client: This is an entity which uploads massive data to the PCS (Public Cloud Server), by the delegated proxy which can perform the data integrity checking. B. PCS (Public Cloud Server): This is maintained by the cloud service provider and has significant storage and computation capacity. User’s data is securely managed in the cloud. C. Proxy: This is delegated and authorized by the manager to process the Client’s data and upload them. This verifies the signature signed by the Client and processes it when the same is satisfied, otherwise it cannot perform the procedure. D. KGC (Key Generation Centre): This is an entity that generates the private key upon seeking the data and all inputs from the Client. This procedure provides the Client to interact directly with the PCS to check the remote data integrity. Thus, delivering the integrity check and securing the data in a specified design method. VII. CONCLUSION Motivated by the security needs, we proposed a novel security concept of IDPP implemented on public cloud. The concrete IDPP protocol is designed by using the bilinear pairings technique. This protocol is provably secure and efficient by using the formal security proof and efficiency analysis. This finally accomplishes the managerial tasks with updated security mechanisms. REFERENCES [1] Wenting Shen, Jing Qin, Jia Yu , Rong Hao, and Jiankun Hu, Enabling Identity Based Integrity Auditing And Data Sharing With Sensitive Information Hiding for Secure cloud Storages, IEEE transactions vol 14 , February 2019 [2] G. Ateniese et al., “Provable data possession at untrusted stores,” in Proc. 14th ACM Conf. Comput. Commun. Secur., 2007, pp. 598– 609. [3] J. Sun and Y. Fang, “Cross-domain data sharing in distributed electronichealth record systems,” IEEE Trans. Parallel Distrib. Syst., vol. 21, no. 6,pp. 754–764, Jun. 2010 [4] B. Wang, B. Li, and H. Li, “Panda: Public auditing for shared data with efficient user revocation in the cloud,” IEEE Trans. Serv. Comput.,vol. 8, no. 1, pp. 92–106, Jan./Feb. 2015. [5] Y. Yu et al., “Identity-based remote data integrity checking with perfectdata privacy preserving for cloud storage,” IEEE Trans. Inf. ForensicsSecurity, vol. 12, no. 4, pp. 767–778, Apr. 2017. [6] G. Ateniese, D. H. Chou, B. de Medeiros, and G. Tsudik, “Sanitizable signatures,” in Proc. 10th Eur. Symp. Res. Comput. Secur. Berlin, Germany: Springer-Verlag, 2005, pp. 159–177. [7] Bhale Pradeepkumar Gajendra, Vinay kumar singh, More Sujeeth, “ Achieving cloud security using third party auditor, MD5 and Identity based encryption”