Cloud Storage Applications Research Articles

A Framework and Cryptography Algorithm for Protecting Sensitive Data on Cloud Service Providers

Most companies are sceptical about the security and insurance measures offered by cloud services and are reluctant to store sensitive data, such as employee records, in the cloud. Thus, more effort is needed to support the security of information in cloud computing. This paper proposes a cryptography algorithm called ―random algorithm‖ because it is built on the idea of randomising the encryption of uploaded files among four encryption algorithms. The proposed fragmentation technique helps add security and privacy to cloud storage applications. Based on earlier studies, we have created a file-level fragmentation technique that does not work at the database level, in contrast to commonly employed approaches in the case of fragmentation techniques such as horizontal fragmentation, vertical fragmentation, and hybrid fragmentation, which do work at the database level. The proposed encryption algorithm and fragmentation technique work within an integrated security framework that includes a user authentication gateway that encrypts user registration data through a cryptography algorithm called the RivestShamir-Adleman algorithm (RSA). The results of the proposed security framework were positive, as it contributed to reducing the encryption time and decoding time by approximately 99%, compared to earlier studies

The Value of US Government Data to US Business Decisions

The US government is a major producer of economic and financial data, statistics, analysis, and forecasts that are gathered, compiled, and published as public goods for use by citizens, government agencies, researchers, nonprofits, and the business community. There is no market transaction in the publication and dissemination of these government data and therefore no market-determined value. The purpose of this paper is to outline and augment our understanding of the value of government data for business decision-making. We provide an overview of the topic, including results from government reports and a private sector survey. We then provide concrete examples of how these government data are used to make business decisions focusing on three sectors: automotive, energy, and financial services. Examples of new initiatives by the federal government to open access to more data, exploiting technology advances associated with the internet, cloud storage, and software applications, are discussed. With the significant growth in the digital economy, we also include discussion and insights around how digital platform companies utilize government data in conjunction with their privately generated data (or “big data”) to foster more informed business decisions.

New Approach Data Encryption using Key Generation and DS-PEKS Algorithm

Cloud storage has set up itself as a broadly used services for organizations and people; be that as it may, it with inherent challenges including security risks, reliable data storage, also, information accessibility. Searchable encryption technique is improving the protection of personal data in secure manner searchable cloud storage. In this paper, we are work on PEKS which is very useful in many application of cloud storage. To make sure data security and privacy any other sensitive data would need to be encrypted before this data save on the cloud servers. The conventional PEKS system suffers an inherent insecurity called keyword guessing attack (KGA) proposed by the malicious attack and malignant servers. So solve this weakness, we propose another PEKS system named is DS-PEKS (Dual Server). To outline the possibility of our new system, we give an effective instantiation of the general system from a linear SPHF and show that it can accomplish the strong security against inside KGA.

Fog-Assisted Aggregated Synchronization Scheme for Mobile Cloud Storage Applications

Cloud storage applications, such as Dropbox and Google Drive, have recently become very popular among mobile users. In these applications, a cloud server is responsible for synchronizing updates to ...

An identity-based cryptographic scheme for cloud storage applications

The use of remote storage systems is gaining an expanding interest, namely the cloud storage-based services. In fact, one of the factors that led to the popularity of cloud computing is the availability of storage resources provided at a reduced cost. However, when outsourcing the data to a third party, security issues become critical concerns, especially confidentiality, integrity, authentication, anonymity and resiliency. Based on this challenge, this work provides a new approach to ensure authentication in cloud storage applications. ID-Based Cryptosystems (IBC) have many advantages over certificate-based systems, such as simplification of key management. This paper proposes an original ID-based authentication approach in which the cloud tenant is assigned the IBC-Private Key Generator (PKG) function. Consequently, it can issue public elements for its users, and can keep confidential resulting IBC secrets. Moreover, in our scheme, the public key infrastructure is still in usage to establish trust relationships between the PKGs.

An identity-based cryptographic scheme for cloud storage applications

An identity-based cryptographic scheme for cloud storage applications

IoT based user trajectory retrieval and discovery algorithm based on spatial–temporal correlation analysis

ABSTRACTIn the application of cloud storage, user file is not in local storage, therefore, file security, data confidentiality, and robustness are the key problems. First, aimed at the secure erasure code storage system of several key servers proposed by existing literatures, the problem that data robustness leads to defects in data recovery is not considered, and the end-to-end checking strategy threat model of cloud storage is established by using pseudo-random linear mapping; second, interface file block structure is prepared and integrity check project design is conducted by referring to relevant literature algorithm to realize the supplement of secure erasure code storage system algorithm function of multiple key servers and provide the analysis of calculation complexity of algorithm; at last, the experiment result shows that the proposed integrity check program can realize greater successful retrieval probability of data.

Decentralized and locality aware replication method for DHT-based P2P storage systems

Skip Graph, a type of DHT, plays an important role in P2P cloud storage applications, where nodes publicly or privately store, share, and access data. Nowadays P2P storage systems are widely using replication to support data availability, reliability, and maintainability. With replication, the main consideration is determining peers to replicate the data. Traditional replication algorithms are partially randomized and employ rigid assumptions about nodes’ distribution. This results in high access delay between nodes and their closest replicas, which degrades the system performance. We propose GLARAS , a dynamic and fully decentralized locality aware replication method for Skip Graph. In contrast to the traditional algorithms, which replicate based on strict assumptions about the distribution of nodes, GLARAS aims to approximate the underlying distribution by interacting with a very small subset of nodes and minimize the average access delay of replication accordingly. To ensure GLARAS performs at its best, we also propose a dynamic fully decentralized landmark-based locality aware name ID assignment namely LANS . This ensures that the nodes’ distances in the overlay and the underlying network are consistent with each other. Our extensive experiments and analysis results demonstrate that compared to the best existing decentralized locality aware replication, GLARAS improves the average access delay of public and private replications by about 13% and 17%, respectively. Likewise, in comparison to the best existing decentralized locality aware name ID assignment, LANS improves the locality awareness of name IDs and the end-to-end latency of search queries in Skip Graph with the gains of about 19% and 8%, respectively. The average replication’s access delay of a Skip Graph-based P2P storage system that employs GLARAS and LANS has an improvement gain of about 2.7 over the best state-of-the-art algorithms. Since Skip Graph is a DHT, any other DHT-based P2P storage service would benefit from our solution.

Date Hierarchical Storage Strategy for Data Disaster Recovery

Cloud storage has become a widely accepted data storage model in recent years. With the development of cloud storage applications in various fields, cloud storage security issues have aroused people’s special attention. In this paper, taking aim at ensuring data reliability and satisfying QoS requirements for different users, a method named hierarchical storage-based data disaster recovery strategy was proposed. Cloud computing fault tolerance model is constructed by grading the storage resources of cloud service providers according to the service level to meet the different QoS requirements of the cloud users. On this basis, some storage levels are classified to improve resource utilization. The correctness of the classification strategy is analyzed theoretically, finally, the effectiveness of the proposed strategy is validated by emulation experiment. This paper has the theoretical and practical value to improve the overall experience of users.

Blockchain – it’s practical use for National Data Centres

E-government has been an essential part of the targets set forth by all governments that are signatory to the United Nations 2030 sustainable development goals which am to create effective, accountable and inclusive governments. In order to achieve e-government in the most efficient manner, more and more governments around the world are embracing cloud storage and cloud applications as the de facto standard for data storage, archiving, analysis and manipulation. The amounts of money that governments will spend are huge and the infrastructure requirements far exceed the capabilities of most government institutions. Models such as centralized management of cloud infrastructure have been adopted but this defeats the purpose of cloud computing where resources and even management of those resources are decentralized. In this paper we present a proposal for a standard model for governments to utilize their existing or planned cloud infrastructure and leverage private and public cloud infrastructure in order to achieve true cloud decentralization. We propose that Blockchain technologies provide the most optimal and quickest methods towards e-government. We look into the problem of analyzing big data in national data centres and methods of optimization based on already available technology.

Special issue on Big Data Security and Intelligent Data in Clouds (BDS‐IDC)

Special issue on Big Data Security and Intelligent Data in Clouds (<scp>BDS‐IDC</scp>)

An Efficient Delta Synchronization Algorithm for Mobile Cloud Storage Applications

In cloud storage applications where the data is shared by multiple mobile users, it is essential to provide the consistency among mobile users by means of appropriate synchronization algorithms. In particular, if the data is frequently updated and the number of mobile users sharing the data is large, the synchronization traffic can be significant. Moreover, the excessive synchronization traffic in mobile networks is more important in terms of radio resource utilization and energy consumption. In this paper, we propose an efficient delta synchronization (EDS) algorithm that aggregates the updated data to reduce the synchronization traffic and synchronizes the aggregated one periodically to satisfy the consistency. To find out the optimal policy for the aggregation and the periodical synchronization, an optimization problem is formulated as a Markov decision process (MDP) and a value iteration algorithm is presented for computing the stationary deterministic policy. Numerical results demonstrate that EDS can choose the optimal action that strikes a balance between the reduction of the synchronization traffic and the satisfaction of the consistency.

Co-Check: Collaborative Outsourced Data Auditing in Multicloud Environment

With the increasing demand for ubiquitous connectivity, wireless technology has significantly improved our daily lives. Meanwhile, together with cloud-computing technology (e.g., cloud storage services and big data processing), new wireless networking technology becomes the foundation infrastructure of emerging communication networks. Particularly, cloud storage has been widely used in services, such as data outsourcing and resource sharing, among the heterogeneous wireless environments because of its convenience, low cost, and flexibility. However, users/clients lose the physical control of their data after outsourcing. Consequently, ensuring the integrity of the outsourced data becomes an important security requirement of cloud storage applications. In this paper, we present Co-Check, a collaborative multicloud data integrity audition scheme, which is based on BLS (Boneh-Lynn-Shacham) signature and homomorphic tags. According to the proposed scheme, clients can audit their outsourced data in a one-round challenge-response interaction with low performance overhead. Our scheme also supports dynamic data maintenance. The theoretical analysis and experiment results illustrate that our scheme is provably secure and efficient.

Identifying artefact on Microsoft OneDrive client to support Android forensics

Microsoft software is perhaps the most widely used around the world. As computing technology has evolved they have been at the cutting edge and have developed a number of groundbreaking and useful applications. Microsoft OneDrive is one such application. OneDrive is a cloud storage service offering 7 GB free storage to users. This technology can be misused and through it laws governing the cyber world violated. Current solutions to this are to perform digital forensics when cybercrime has occurred. This research used two different vendors of Android smartphones as experimentation objects. A model has been developed in this research, which provides instructions for digital mobile forensics analysis in finding artefacts related to the client's activities on OneDrive cloud storage application. These artefacts can be used as digital evidence by digital forensics investigators and the research increases the knowledge of cyber law practitioners.

Transparent bandwidth aggregation for residential access networks

AbstractWe propose, implement, and evaluate a bandwidth aggregation service for residential users that allows to improve the upload throughput of the asymmetric digital subscriber line connection by leveraging the unused bandwidth of neighboring users. The residential access gateway adopts the 802.11 radio interface to simultaneously serve the local home users and to share the broadband connectivity with neighboring access gateways. Differently from previous works, our aggregation scheme is transparent both for local users, who are not required to modify their applications or device drivers, and for neighboring users, who do not experience any meaningful performance degradation. To evaluate the achievable performance and tune the parameters driving the traffic balancing, we developed a fluid model that was shown experimentally to be very accurate. Our proposed scheme is amenable to efficient implementation on Linux networking stack. Indeed, we implemented it and tested in some realistic scenarios, showing an efficient exploitation of the whole available bandwidth, also for legacy cloud storage applications.

Ownership-hidden group-oriented proofs of storage from pre-homomorphic signatures

In this paper, we study the problem of secure cloud storage in a multi-user setting such that the ownership of outsourced files can be hidden against the cloud server. There is a group manager for initiating the system, who is also responsible for issuing private keys for the involved group members. All authorized members are able to outsource files to the group’s storage account at some cloud server. Although the ownership of outsourced file is preserved against the cloud server, the group manager could trace the true identity of any suspicious file for liability investigation. To address this issue, we introduce and formalize a notion of ownership-hidden group-oriented proofs of storage (OPoS). We present a generic OPoS construction from pre-homomorphic signatures, and propose an OPoS instantiation by employing the Boneh–Boyen short signature. We show that the OPoS instantiation can be optimized using a polynomial commitment technique, so that the integrity auditing protocol would only take constant-size communication overheads by the cloud server. Theoretical and experimental analyses show that our OPoS instantiations are efficient and practical for enterprise-oriented cloud storage applications. Also, we show that the OPoS instantiations can be enhanced to safeguard against a dynamic set of corrupted members, as well as support batch integrity auditing mechanism.

A Study of Ten Popular Android Mobile Cloud Storage Applications

The mobile cloud storage application becomes more ubiquities recently for storing data such as image, audio, text files and etc. The most important issue in this regard is security of these tools and using the best method for encrypting the users’ data for keeping them protected. In this study, we examine ten mobile cloud storage applications namely 4Shared, One Drive, Mega, Surdoc, Cubby, ADrive, Safe Sync, Team Drive, Wuala and Just Cloud. In these applications, we analyze the intercepted communications to determine encryption of the captured text and voice communication to bring out the results to find out the best cloud application that follows the encryption methods mostly. Thus, we use a histogram to analysis the text file and use a Wire shark to check whether a plaintext has been found in the cloud storage application or not, after that we analyze the plain text.

Secure Data Access and Sharing Scheme for Cloud Storage

Cloud storage is a new storage mode emerged along with the development of cloud computing paradigm. By migrating the data to cloud storage, the consumers can be liberated from building and maintaining the private storage infrastructure, and they can enjoy the data storage service at anywhere and anytime with high reliability and a relatively low cost. However, the security and privacy risks, especially the confidentiality and integrity of data seem to be the biggest hurdle to the adoption of the cloud storage applications. In this paper, we consider the secure data access and sharing issues for cloud storage services. Based on the intractability of the discrete logarithm problem, we design a secure data access and data sharing scheme for cloud storage, where we utilize the user authentication scheme to deal with the data access problem. According to our analysis, through our scheme, only valid user with the correct password and biometric can access to the cloud storage provider. Besides, the authorized users can access the rightful resources and verify the validity of the shared data, but cannot transfer the permission to any other party. At the same time, the confidentiality and integrity of data can be guaranteed.

A Searchable Hierarchical Conditional Proxy Re-encryption Scheme for Cloud Storage Services

As cloud technologies thrive, researches in the field of cloud storage have switched their focus from encryption-decryption techniques that help data owners protect their privacy and data confidentiality to the application of searching techniques on encrypted data while maintaining high level security and privacy of outsource data. To begin with, Song et al. offered some practical techniques for searches on encrypted data. After that, Weng et al. presented their conditional proxy re-encryption scheme where the data owner can decide which ciphertext satisfies a certain keyword condition set and then can have the retrieved data re-encrypted by the semi-trusted proxy server. The basic concepts of the above schemes are indeed quite innovative and do lead the way towards the solutions to the major practical cloud storage application problems; however, of all the researches that follow, none has had both searching on encrypted data and conditional proxy re-encryption combined. In this paper, we propose a new scheme for cloud storage services that integrates keyword search with conditional proxy re-encryption. This say, with a newly added keyword or new proxy, the cloud service provider is able to generate a hierarchical key. As far as data security is concerned, our scheme provides proven data owner authentication, re-delegation, and chosen-ciphertext security. The superior performance of the proposed scheme has been established by comparing it with related works, and our security analysis as well as BAN logic correctness check also offered solid proof that the new scheme is both secure and practical.DOI: http://dx.doi.org/10.5755/j01.itc.45.3.13224

Cloud storage application area of HDD–SSD hybrid storage, distributed storage, and HDD storage

For a typical IaaS (infrastructure as a service) cloud usage, to strengthen a system, temporary and frequent provisioning of virtual volumes is needed. However, the performance of HDD (hard disk drive) storage is not sufficient and has become a bottleneck in IaaS cloud now. In this letter, we make a comparative study of HDD–SSD (solid‐state drive) hybrid storage, distributed storage, and normal HDD storage as the block storage of OpenStack Cinder, and evaluate the applicability of these three types storage to the IaaS cloud. Hybrid storage can achieve much higher performance compared to HDD storage and is suitable for analysis applications, but distributed storage performance degradation is lower than HDD storage when the number of concurrent processing is increased and is suitable for archiving or storing a large number of files. © 2016 Institute of Electrical Engineers of Japan. Published by John Wiley &amp; Sons, Inc.