期刊名称:International Journal of Innovative Research in Computer and Communication Engineering
印刷版ISSN:2320-9798
电子版ISSN:2320-9801
出版年度:2015
卷号:3
期号:11
DOI:10.15680/IJIRCCE.2015.0311243
出版社:S&S Publications
摘要:The security risks associated with each cloud delivery model vary and are dependent on a wide range of factors including the sensitivity of information assets, cloud architectures and security controls involved in a particular cloud environment. With public audit ability, a trusted entity with expertise and capabilities data owners do not p ossess can be delegated as an external audit party to assess the risk of outsourced data when needed. Such an auditing service not only helps save data o wners' computation resources but also provides a transparent yet cost -effective method for data owners to gain trust in the cloud. All types of users who require the secure transmission or storage of data in any kind of media or network. Since the data transmission o n the internet or over any networks are vulnerable to the hackers attack. We present information risk management framework for better understanding critical to support scalable and efficient trusted third party auditing in Cloud Co mputing. We propose a new model¨C driven methodology for the security testing of cloud environments, to support batch auditing for TPA upon delegations from multi-user. We also propose new scheme that enables the data owner to delegate tasks of Cloud storage data file encryption and trusted user secret key update to cloud servers without disclosing security data contents o r user access privilege information. The trusted third party auditing process will bring in no new vulnerabilities towards user cloud storage data privacy. Our new method combined the secret key based homomorphism authenticator with rando m masking to achieve the privacy-preserving public cloud data auditing system.
关键词:Public auditing; shared data; user revocation; cloud computing
