A secure and lightweight approach for critical data security in cloud

Cloud computing is a model that provides ubiquitous, on demand access to a shared pool of computing resources including networks, servers, storage, application and services that can be easily provisioned and released. As Cloud is a shared and distributed environment, the need for ensuring security o...

Full description

Saved in:
Bibliographic Details
Published in2012 Fourth International Conference on Computational Aspects of Social Networks (CASoN) pp. 315 - 320
Main Authors Gupta, S., Kumar, P., Sardana, A., Abraham, A.
Format Conference Proceeding
LanguageEnglish
Published IEEE 01.11.2012
Subjects
attacker
Cloud
Compression
Conferences
Decision support systems
establishment
file
Handheld computers
hash
Integrity
Intrusion detection
Monitoring
Security
signature
Social network services
Online AccessGet full text

Cover

More Information
Summary:Cloud computing is a model that provides ubiquitous, on demand access to a shared pool of computing resources including networks, servers, storage, application and services that can be easily provisioned and released. As Cloud is a shared and distributed environment, the need for ensuring security of its critical infrastructure that includes computing, network and storage is immense. One of the critical resources to look after in cloud environment is the data which is stored in files. The files can be configuration file at servers, or private user confidential files at users own work space but they all have a risk of data modification associated with them. If user data is modified through an attack then it will decline the trust of user on cloud services and if the important configuration files are modified, they will disrupt the functioning of cloud environment, like attacker can escalate its privileges and access to critical resources through such tampering and modifications to important files. The paper solves the problem addressed and focuses on a proposal and prototype implementation of a tool built for Cloud File integrity establishment and monitoring that establishes and checks file Integrity periodically. The novelty of the approach lies in the fact that the tool does not require any database for storing the integrity of files and the integrity of the file is the compressed encrypted hash of the data stored in the file that can't be reverse engineered by an attacker easily. The tool is lightweight and initial results dictate that it is scalable and efficient. The Real time deployment and analysis of tool is under progress.
ISBN:9781467347938
1467347930
DOI:10.1109/CASoN.2012.6412421