Integrity service application model with prevention of cryptanalytic attacks

Abstract

Due to the inevitable use of cloud computing, several organizations both business and academic move to store their valuable data from manual record keeping to computers. Despite the many advantages given by cloud computing, security, privacy and integrity threats are available in the cloud due to the nature of hackers. In this paper, integrity is focused for verification. Encrypted data which is stored in secure outsourcing storage should be verified for integrity because of traitors in every field. Web browsers connect Web Application Programming Interfaces (API) to the cloud. Virtual Private Server (VPS) which is hosted in the cloud is deployed using web browsers. This paper proposes Integrity Service Application Model (which is installed in the VPS) with prevention of cryptanalytic attacks. Proposed work is implemented in unmanaged VPS and results are analyzed. Brute force attack, dictionary attack, cut and paste attack, Denial of Service attack, replay attack, known plain text attack and cipher text only attacks are prevented in this paper. Authentication techniques used for client verification are Random Key Code using One Time Password (OTP) and dynamic missing random number puzzle. Major advantage of the proposed paper is that the integrity is verified by private auditing using Proof of Retrievability method. Third Party Auditor (TPA) who is trusted partially is eliminated.