An enhancement to SePeCloud with improved security and efficient data management

Outsourcing data to a third-party controlled cloud computing services arises various security issues. High security schemes are required to protect data in the cloud platform. Division and Replication of Data in the Cloud for Optimal Performance and Security (DROPS) method addressed these issues by improving the security and performance of a cloud environment. An enhanced version of DROPS named SePeCloud was proposed that improved the security and performance hand-in-hand with Fog based Deduplication and Privacy Preserving Online Updating. This paper improves the security and data storage with Self-Destruction mechanism by handling the applications independently built on reinforcement learning strategy. Data chunk fingerprint index and sketch index are included to support independent and parallel data destruction among multiple applications. Additionally, SePeCloud is further extended to prevent impersonation attacks from illegitimate users by introducing Modified Shamir secrete sharing scheme to handle user revocation policies with limited storage space. The experimental results prove that the final version of the SePeCloud performed better than the previous versions in terms of Replication cost savings and Computation time by improving both security and performance of the cloud system.

[1]  Yang Tang,et al.  FADE: Secure Overlay Cloud Storage with File Assured Deletion , 2010, SecureComm.

[2]  Yi Mu,et al.  Public Integrity Auditing for Dynamic Data Sharing With Multiuser Modification , 2015, IEEE Transactions on Information Forensics and Security.

[3]  Yuqing Zhang,et al.  Efficient (n, t, n) secret sharing schemes , 2012, J. Syst. Softw..

[4]  Jin Li,et al.  A Hybrid Cloud Approach for Secure Authorized Deduplication , 2015, IEEE Transactions on Parallel and Distributed Systems.

[5]  Eduardo B. Fernández,et al.  An analysis of security issues for cloud computing , 2013, Journal of Internet Services and Applications.

[6]  Daan Broeder,et al.  A data infrastructure reference model with applications: towards realization of a ScienceTube vision with a data replication service , 2013, Journal of Internet Services and Applications.

[7]  Hong Jiang,et al.  SAFE: A Source Deduplication Framework for Efficient Cloud Backup Services , 2013, J. Signal Process. Syst..

[8]  Cong Wang,et al.  Dynamic Data Operations with Deduplication in Privacy-Preserving Public Auditing for Secure Cloud Storage , 2017, 22017 IEEE International Conference on Computational Science and Engineering (CSE) and IEEE International Conference on Embedded and Ubiquitous Computing (EUC).

[9]  Giorgos Kappes,et al.  Dike : Virtualization-aware Access Control for Multitenant Filesystems , 2013 .

[10]  Robert H. Deng,et al.  Deduplication on Encrypted Big Data in Cloud , 2016, IEEE Transactions on Big Data.

[11]  Albert Y. Zomaya,et al.  Energy-efficient data replication in cloud computing datacenters , 2013, 2013 IEEE Globecom Workshops (GC Wkshps).

[12]  Dan Feng,et al.  SeDas: A Self-Destructing Data System Based on Active Storage Framework , 2013, IEEE Transactions on Magnetics.

[13]  Adi Shamir,et al.  How to share a secret , 1979, CACM.

[14]  Albert Y. Zomaya,et al.  DROPS: Division and Replication of Data in Cloud for Optimal Performance and Security , 2018, IEEE Transactions on Cloud Computing.

[15]  Stergios V. Anastasiadis,et al.  Virtualization-aware access control for multitenant filesystems , 2014, 2014 30th Symposium on Mass Storage Systems and Technologies (MSST).

[16]  Albert Y. Zomaya,et al.  On the Characterization of the Structural Robustness of Data Center Networks , 2013, IEEE Transactions on Cloud Computing.