Article: Collective advancements on access control scheme for multi-authority cloud storage system Journal: International Journal of Grid and Utility Computing (IJGUC) 2015 Vol.6 No.3/4 pp.133 - 142 Abstract: In this information age, the amount of data generated by an individual and organisation is increasing exponentially. Cloud computing has come as a rescue to store and compute the data efficiently at a low cost. On the other hand, according to cloud security alliance, the threats and vulnerabilities related to cloud computing are on the rise and they may reach an uncontrollable level if cloud security inhabits the same shape. Attribute-based encryption techniques are used in several critical applications for data access control. Our proposed work enhances the security of (DAC-MAC) during the user registration phase by the advent of digital signature over user credentials for avoiding man-in-the-middle attack and providing non-repudiation during user registration phase. Secondly, a verification scheme based on user-privilege list for file access request is included. Lastly, by logging the user behaviours in the separate database table, the authenticity of the access node can be verified, monitored and DDoS attack can be nullified. The framework could be used for IaaS application. Inderscience Publishers - linking academia, business and industry through research

Title: Collective advancements on access control scheme for multi-authority cloud storage system

Authors: Balamurugan Balusamy; P. Venkata Krishna

Addresses: School of Information Technology and Engineering (SITE), VIT University, Vellore 632014, Tamil Nadu, India ' School of Computing Science and Engineering (SCSE), VIT University, Vellore 632014, Tamil Nadu, India

Abstract: In this information age, the amount of data generated by an individual and organisation is increasing exponentially. Cloud computing has come as a rescue to store and compute the data efficiently at a low cost. On the other hand, according to cloud security alliance, the threats and vulnerabilities related to cloud computing are on the rise and they may reach an uncontrollable level if cloud security inhabits the same shape. Attribute-based encryption techniques are used in several critical applications for data access control. Our proposed work enhances the security of (DAC-MAC) during the user registration phase by the advent of digital signature over user credentials for avoiding man-in-the-middle attack and providing non-repudiation during user registration phase. Secondly, a verification scheme based on user-privilege list for file access request is included. Lastly, by logging the user behaviours in the separate database table, the authenticity of the access node can be verified, monitored and DDoS attack can be nullified. The framework could be used for IaaS application.

Keywords: attribute-based encryption; man-in-the-middle attacks; non-repudiation; user privilege list; access control; multi-authority cloud storage; cloud computing; cloud security; cryptography; digital signatures; user credentials; user registration; infrastructure as a service; IaaS; denial of service; DDoS attacks; distributed DoS.

DOI: 10.1504/IJGUC.2015.070675

International Journal of Grid and Utility Computing, 2015 Vol.6 No.3/4, pp.133 - 142

Received: 11 Jul 2014
Accepted: 21 Aug 2014
Published online: 18 Jul 2015 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article

Title: Collective advancements on access control scheme for multi-authority cloud storage system

Keep up-to-date