Achieving Accountability and Secure Logging to Increase Trust in Cloud Environment

Clouds are becoming an interesting alternative to dedicated IT infrastructure.The advantages of cloud computing are appealing, but it also carries certain degree of risk for its customers as well as the cloud service providers.There is a lack of trust in cloud by potential customers which acts as a barrier in widespread adoption of cloud computing technology. In order to increase trust in cloud, we need to make clouds transparent and accountable.However, current systems does not provide full transparency and accountability.They are unable to track user activities and data transfers effectively within cloud environment. In this paper we propose a framework which achieves accountability by generating logs for every user activity, further we provide a secure logging mechanism for safeguarding of logs, thus protecting confidentiality of users and integrity of logs from dishonest cloud providers.

[1]  Robert Grimm,et al.  Ensuring Content Integrity for Untrusted Peer-to-Peer Content Distribution Networks , 2007, NSDI.

[2]  Jogesh K. Muppala,et al.  Establishing Trust in Public Clouds , 2012 .

[3]  Siani Pearson,et al.  Towards Accountability in the Cloud , 2011 .

[4]  Peter Druschel Accountability for distributed systems , 2008, PODC '08.

[5]  Bu-Sung Lee,et al.  TrustCloud: A Framework for Accountability and Trust in Cloud Computing , 2011, 2011 IEEE World Congress on Services.

[6]  Andreas Haeberlen,et al.  PeerReview: practical accountability for distributed systems , 2007, SOSP.

[7]  Gene Tsudik,et al.  A new approach to secure logging , 2008, TOS.

[8]  Andrew Charlesworth,et al.  Accountability as a Way Forward for Privacy Protection in the Cloud , 2009, CloudCom.

[9]  Bu-Sung Lee,et al.  Flogger: A File-Centric Logger for Monitoring File Access and Transfers within Cloud Computing Environments , 2011, 2011IEEE 10th International Conference on Trust, Security and Privacy in Computing and Communications.

[10]  Ragib Hasan,et al.  SecLaaS: secure logging-as-a-service for cloud forensics , 2013, ASIA CCS '13.

[11]  Bu-Sung Lee,et al.  How to Track Your Data: The Case for Cloud Computing Provenance , 2011, 2011 IEEE Third International Conference on Cloud Computing Technology and Science.

[12]  Idit Keidar,et al.  Trusting the cloud , 2009, SIGA.

[13]  Andreas Haeberlen,et al.  A case for the accountable cloud , 2010, OPSR.

[14]  Raffael Marty,et al.  Cloud application logging for forensics , 2011, SAC.