Sunitha Pachala,Ch. Rupa,L. Sumalatha

DOI: https://doi.org/10.1007/s12065-020-00555-w

2021-02-10

Evolutionary Intelligence

Abstract:Storing and accessing the information in the multi-cloud hosting environment becomes popular these days. It offers benefits like the assurance of data protection, preventing information corruption, unethical issues from vendors. In this paper, a hybrid approach with the multi-cloud hosting environment is designed and implemented for improved security and privacy of cloud data. The hybrid method consists of three modules (a) Byzantine protocol to tolerant security breaches to server failures cloud, which is independent. (b) DepSky architecture enhances the reliability and secrecy of data preserved in the cloud using encoding and decoding techniques (c) Shamir secret sharing procedure to improve trustiness & privacy of data storage without affecting the performance. The privacy and security issues of the hybrid approach are implemented and compared with the protocols like SAML with proxy re-encryption and Kerberos for different user service requests. The performance of the hybrid approach in terms of memory utilization, encryption/decryption time, total authentication time is improved compared to that of protocol environments SAML, SAML with proxy re-encryption and Kerberos. The results were encouraging in the Hybrid Approach in terms of encryption time/decryption time, Memory utilization and average precision values.

D. Praveena,P. Rangarajan

DOI: https://doi.org/10.1007/s11042-018-6339-0

IF: 2.577

2018-07-04

Multimedia Tools and Applications

Abstract:Cloud computing facilitates the enormous support of the public, business and emerging applications such as healthcare and nature disasters. Based on their services and characteristics, it can be classified as private cloud and public cloud. In this scenario, we need these two kinds of cloud services for an organization to provide the better service to the society. For that purpose, introduced a new cloud service called hybrid cloud service which is the combination of both private and public cloud. Security to the cloud environment is a challenging issue today especially for the hybrid cloud due to the combination of both. Many security mechanisms available in the literature but these are not achieved the sufficient level of security. For this purpose, we propose a new machine learning application for providing security to the hybrid cloud networks while storing the data and retrieving or accessing the data from the cloud. This proposed algorithm combines an existing Enhanced C4.5, newly proposed deduplication processing algorithm and the newly proposed dynamic access control mechanism. Moreover, we introduce a new deduplication processing algorithm for secure storage and retrieval without duplication or redundancy. In addition, a newly proposed dynamic access control mechanism called Dynamic Spatial Role Based Access Control Algorithm is also used in the proposed security framework. The proposed security framework has been implemented and also evaluated that the security level of the hybrid cloud while storing, retrieving and accessing the data from the cloud database.

computer science, information systems, theory & methods,engineering, electrical & electronic, software engineering

Jananya Sivakumar,Sannasi Ganapathy

DOI: https://doi.org/10.1007/s11277-023-10813-6

IF: 2.017

2024-01-31

Wireless Personal Communications

Abstract:One of the most flamboyant technological novelties of today's world is cloud computing, which has been fuelled by the increase in the number of smart devices across the internet. With the continuous advancement in the technical field, cloud computing has played a significant role in enabling the user to share, store and retrieve data from anywhere at any time. The involvement of many users in cloud computing, questions the security of the data present on the cloud. Existing features in cloud security are vulnerable to potential risks including lack of confidentiality, integrity, and authentication. In this paper, we propose a new data security mechanism using newly proposed hybrid encryption system (HES) and quantum key distribution (QKD) for secured data communication in cloud networks. The newly proposed HES uses the standard cryptographic algorithms namely AES and RSA for performing effective encryption and decryption processes. The newly proposed QKD is ensured the secured data communications by generating and distributing the reliable keys to the authorized users. Moreover, the novelty is introduced in the suggested model ensures reliable distribution of keys among the users and in turn preserves the data through secure hybrid encryption. At the end, the scrutiny of the proposed system proves that it is preferable that the existing models in terms of secure communication, reliability and performance.

telecommunications

Prof. Ashwini Bhosale,

DOI: https://doi.org/10.55041/ijsrem30734

2024-04-14

INTERANTIONAL JOURNAL OF SCIENTIFIC RESEARCH IN ENGINEERING AND MANAGEMENT

Abstract:A cloud based system gives advantage of a storage facility provided by a cloud service provider for exchange of data with authorised users. cloud providers store shared data in huge data centres outside the data owner's trust zone, which may raise the issue of data confidentiality. Number of parties, devices, app in cloud increases so number of access point also increases and making perfect access access control is challenging, so cloud data subject to being deleted or can be modified by cloud service provider. This article offers a secret sharing group key management protocol (SSGK) to prevent unwanted access in the communication process and shared data. in SSGK, group key is utilised to encrypt the shared data, and a secret sharing mechanism is employed to distribute the group key. security and performance evaluations show that our approach significantly reduces the security and privacy concerns of data sharing in cloud storage. Keywords : Big data, Security and Privacy, Cloud Storage, Data Sharing, Encryption, Decryption.

Guowen Xu,Shengmin Xu,Jinhua Ma,Jianting Ning,Xinyi Huang

DOI: https://doi.org/10.1109/tifs.2023.3305870

IF: 7.231

2023-01-01

IEEE Transactions on Information Forensics and Security

Abstract:Cloud computing has been widely accepted as a computing paradigm to offer high-quality data services on demand. However, it suffers from various attacks as the cloud service provider and data owners are not in the same trusted domain. To support data confidentiality, existing cloud-based systems apply cryptographic tools to issue the decryption key to data users to share data in a controlled way. However, fine-grained cloud data sharing still faces many challenges, especially when dealing with dynamic user groups. In this paper, we introduce a secure and efficient cloud-based data-sharing system with fine-grained access control and dynamic user groups. Our system enjoys 1) adaptive security in prime-order groups, 2) forward secrecy against revoked user fetches data generated before being revoked, and 3) decryption key exposure resistance against the compromise of the frequently used decryption key, where the previous solutions only concentrate on one or two above-mentioned properties. More specifically, we introduce two timestamp management mechanisms that manage the timestamp in each ciphertext to support dynamic user groups with forward secrecy. By applying the proposed timestamp management mechanisms, we introduce two novel designs of attribute-based encryption schemes with formal definition and security analyses. The proposed schemes are adaptively secure in prime-order groups under a standard assumption and support decryption key exposure resistance. We conduct theoretical analysis and experimental simulation to demonstrate the outperformance of our solutions.

Atul Kumar Srivastava,Dhiraj Pandey,Alok Agarwal

DOI: https://doi.org/10.1007/s11277-024-11021-6

IF: 2.017

2024-04-27

Wireless Personal Communications

Abstract:Due to the exponential growth of cloud data and network services, computational resources and cloud data security have one of the most attractive research issues in the real-time cloud environment. Numerous types of cloud services are combined into various domain applications, including, e-health, defence, clinical databases, and so on, for data storage and resource computing. However, a traditional challenge to consider is that the Data Owner (DO) no longer has the ability to modify the access control policy or key policy, resulting in data sharing inflexibility, inefficiency, and key abusers. To address these concerns, we propose an enhanced d level cut-off point-Quantum Secret Sharing (EdLCp-QSS) scheme based on an efficient Monitoring Key Ciphertext-ABE (MKCABE) –access control with Blockchain and Key Controller (EQMBK) mechanism for security. The proposed EQMBK mechanism provides security for monitoring the data from getting accessed by un-authorized users as well as offers updating security when a new user joins the cloud environment. The proposed EQMBK system ensures that data is not accessible by unauthorised users and that security is updated when a new user joins the cloud environment. Finally, experimental simulation reveals that the suggested technique is very efficient in preserving the privacy of the user's data against unauthorised parties in terms of computation time encryption time, system initialization time, key generation time, and decryption time. Furthermore, when compared to state-of-the-art techniques, the proposed methods are more resilient and provide greater performance.

telecommunications

Shahnawaz Ahmad,Shabana Mehfuz,Shabana Urooj,Najah Alsubaie

DOI: https://doi.org/10.1007/s10586-024-04288-8

2024-02-19

Cluster Computing

Abstract:Ensuring the confidentiality, integrity, and availability of sensitive data in cloud environments relies heavily on the robust management of cryptographic keys. With the expansion of cloud usage and the increase in data volumes, ensuring the security and reliability of key management services is becoming an essential aspect of overall cloud security. These policies encompass various aspects, such as the lifecycle management of keys, controlling access, encryption protocols, and safeguarding keys, all of which collectively contribute to enhanced security and compliance with regulatory requirements. Two case studies demonstrate the application of existing frameworks in a financial institution and a healthcare organization. The paper concludes by highlighting potential applications and use cases across different industries. This study introduces a secure application management framework within the realm of cloud security called the secure policies of cloud security framework (SPCSF). SPCSF is built around the idea of implementing precise control over application permissions and encrypting REST API communications to enhance protection against malicious attacks. The framework is made up of two main parts: (i) a permission detection engine that determines whether an application's permissions are legitimate. By looking at permission manifests, byte codes, and cross-referencing permissions against a well-defined list of sensitive APIs, it accomplishes this. (ii) Registration Authorization Engine: this engine makes it easier for applications to register securely with the controller. It makes use of a suggested technique for safe authentication, allowing or denying applications access to requested REST APIs based on the level of danger they pose. With this strategy, approved and secure access to vital resources is guaranteed.

computer science, information systems, theory & methods

C. Tamizshelvan,V. Vijayalakshmi

DOI: https://doi.org/10.1007/s11276-024-03658-9

IF: 2.701

2024-01-27

Wireless Networks

Abstract:To address the concerns about security and privacy in cloud-based data storage, this study proposes a unique approach to secure cloud-based data governance using hybrid machine learning architectures. With the increasing reliance on cloud resources and the need for improved security measures, this research aims to provide a solution that enhances data access governance while ensuring data privacy. To achieve this, the study introduces a Distributed Data Service (DDS) specifically designed for collecting and analyzing data in Internet of Things (IoT) contexts. The DDS enables various IoT middleware methods to exchange common data services from a loosely coupled provider. The functional specifications of the DDS are revised to facilitate effective data gathering, filtering, and storage in this environment. The proposed approach leverages distributed cloud architecture and hybrid machine learning techniques to establish cloud data access governance with enhanced security. A privacy-aware architecture is built upon distributed middleware services and supply chain quantum neural networks to ensure data privacy and protection. Additionally, multi-agent federated Bayes vector-based blockchain and partial homomorphic encryption techniques are employed to enhance network security. Throughout the experimental investigation, several performance metrics are considered. Scalability, latency, quality of service, data integrity, and time consumption are analyzed to assess the efficiency of the proposed approach. By addressing security and privacy concerns in cloud-based data storage through the utilization of hybrid machine learning architectures and distributed cloud infrastructure, this research provides a novel approach to cloud data access governance. Overall, the study offers a comprehensive solution to secure and privacy-aware data management in the cloud, paving the way for further advancements in this field.

computer science, information systems,telecommunications,engineering, electrical & electronic

B. Murugeshwari,R. Amirthavalli,C. Bharathi Sri,S. Neelavathy Pari

DOI: https://doi.org/10.48550/arXiv.2304.14652

2023-04-28

Cryptography and Security

Abstract:Since communication signals are publicly exposed while they transmit across space, Ad Hoc Networks (MANETs) are where secured communication is most crucial. Unfortunately, these systems are more open to intrusions that range from passive listening to aggressive spying. A Hybrid Team centric Re-Key Control Framework (HT-RCF) suggests that this research examines private group communication in Adhoc environments. Each group selects a Group Manager to oversee the group's members choose the group manager, and the suggested HT-RCF uses the Improved Hybrid Power-Aware Decentralized (I-HPAD) mechanism. The Key Distribution Center (KDC) generates the keys and distributes them to the group managers (GMs) using the base algorithm Rivest Shamir Adleman (RSA). The key agreement technique is investigated for safe user-user communication. Threats that aim to exploit a node are recognized and stopped using regular transmissions. The rekeying procedure is started every time a node enters and exits the network. The research findings demonstrate that the suggested approach outperforms the currently used Cluster-based Group Key Management in terms of power use, privacy level, storage use, and processing time.

D. Dhinakaran,D. Selvaraj,N. Dharini,S. Edwin Raja,C. Sakthi Lakshmi Priya

2024-07-09

Abstract:The intersection of cloud computing, blockchain technology, and the impending era of quantum computing presents a critical juncture for data security. This research addresses the escalating vulnerabilities by proposing a comprehensive framework that integrates Quantum Key Distribution (QKD), CRYSTALS Kyber, and Zero-Knowledge Proofs (ZKPs) for securing data in cloud-based blockchain systems. The primary objective is to fortify data against quantum threats through the implementation of QKD, a quantum-safe cryptographic protocol. We leverage the lattice-based cryptographic mechanism, CRYSTALS Kyber, known for its resilience against quantum attacks. Additionally, ZKPs are introduced to enhance data privacy and verification processes within the cloud and blockchain environment. A significant focus of this research is the performance evaluation of the proposed framework. Rigorous analyses encompass encryption and decryption processes, quantum key generation rates, and overall system efficiency. Practical implications are scrutinized, considering factors such as file size, response time, and computational overhead. The evaluation sheds light on the framework's viability in real-world cloud environments, emphasizing its efficiency in mitigating quantum threats. The findings contribute a robust quantum-safe and ZKP-integrated security framework tailored for cloud-based blockchain storage. By addressing critical gaps in theoretical advancements, this research offers practical insights for organizations seeking to secure their data against quantum threats. The framework's efficiency and scalability underscore its practical feasibility, serving as a guide for implementing enhanced data security in the evolving landscape of quantum computing and blockchain integration within cloud environments.

Cryptography and Security

Varun Prabhakaran,Ashokkumar Kulandasamy

DOI: https://doi.org/10.1007/s00521-021-06085-5

2021-05-27

Neural Computing and Applications

Abstract:Cloud computing helps users to store and retrieve their data in the cloud online on an as-per-pay basis anytime, anywhere in the world. As a consequence, the security of data stored in the cloud serves as a key concern for cloud consumers due to ongoing hacking incidents in the cloud. Both cloud service providers (CSPs) and consumers face various attacks that pose a serious threat to both the organization and the user. Therefore, a robust intrusion detection system (IDS) needs to be configured to identify and avoid potential attacks in the cloud at an earlier stage. The state-of-the-art IDS system which used shallow machine learning techniques suffered from poor accuracy with a higher false alarm rate and higher response time. To overcome this problem, a hybrid semantic deep learning (HSDL) architecture is developed in this paper by integrating the long short-term memory (LSTM), convolutional neural network (CNN), and support vector machine (SVM) architectures. The semantic information present in the network traffic is identified using a semantic layer known as the Word2Vec embedding layer. The HSDL model classifies the intrusion present in the text along with its corresponding attack class. The normal text without any trace of intrusion is encrypted using an advanced encryption standard (AES) algorithm to enhance cloud storage security, and the optimal key with the largest key breaking time for the AES algorithm is selected using the crossover-based mine blast optimization algorithm (CMBA). The proposed HSDL scheme is evaluated and tested using two real-time intrusion detection benchmark datasets, namely NSL-KDD and UNSW-NB15. The proposed model achieves an accuracy of 99.98% for the NSL-KDD and 98.47% for the UNSW-NB15 dataset, respectively. The experimental and security analysis conducted proves the efficiency and robustness of the proposed scheme.

computer science, artificial intelligence

Zaid Alaa Hussien,Zaid Ameen Abduljabbar,Mohammed Abdulridha Hussain,Mustafa A. Al Sibahee,Songfeng Lu,Hamid A. Al-Asadi

DOI: https://doi.org/10.1145/3331453.3361648

2019-01-01

Abstract:People have proposed many data integrity techniques to secure data storage in cloud. The majority of these schemes assume that only the owner of the data can modify their storage in cloud. In recent years, researchers have allowed different cloud users to use integrity assurance for modifying data. As a result, schemes with stronger reality than before have been proposed. Nevertheless, these attempts are impractical due to the large computing costs for cloud users. Clients must also perform numerous computations to ensure the integrity of data storage. A robust and efficient scheme is put forward in this study to maintain data integrity in cases that involve public auditing. In this way, multiuser modification can be used to check the public integrity for cloud data and reduce the auditing cost. The proposed scheme uses public key cryptography equipped with a proxy re-encryption and a cryptographic hash function. We allow a third-party auditor (TPA) to conduct preprocessing of data for the sake of cloud users prior to uploading these data to the cloud service providers (CSPs) and then verify the integrity of data. We also allow the TPA to perform re-encryption of data for sharing data without losing privacy. The scheme is characterised by significant security features, such as management of key, privacy, low-cost computation, exchange of key, freeing clients from burdens, failure of CSPs in creating right verifier response in absence of data and one-time key requirement. Numerical analysis and extensive experimental results verify that the proposed scheme is efficient and scalable.

Lidia Ogiela,Marek R. Ogiela,Hoon Ko

DOI: https://doi.org/10.3390/s20123458

IF: 3.9

2020-06-18

Sensors

Abstract:This paper will present the authors’ own techniques of secret data management and protection, with particular attention paid to techniques securing data services. Among the solutions discussed, there will be information-sharing protocols dedicated to the tasks of secret (confidential) data sharing. Such solutions will be presented in an algorithmic form, aimed at solving the tasks of protecting and securing data against unauthorized acquisition. Data-sharing protocols will execute the tasks of securing a special type of information, i.e., data services. The area of data protection will be defined for various levels, within which will be executed the tasks of data management and protection. The authors’ solution concerning securing data with the use of cryptographic threshold techniques used to split the secret among a specified group of secret trustees, simultaneously enhanced by the application of linguistic methods of description of the shared secret, forms a new class of protocols, i.e., intelligent linguistic threshold schemes. The solutions presented in this paper referring to the service management and securing will be dedicated to various levels of data management. These levels could be differentiated both in the structure of a given entity and in its environment. There is a special example thereof, i.e., the cloud management processes. These will also be subject to the assessment of feasibility of application of the discussed protocols in these areas. Presented solutions will be based on the application of an innovative approach, in which we can use a special formal graph for the creation of a secret representation, which can then be divided and transmitted over a distributed network.

engineering, electrical & electronic,chemistry, analytical,instruments & instrumentation

G. A. Thushara,S. Mary Saira Bhanu

DOI: https://doi.org/10.1007/s42044-022-00129-2

2022-12-19

Iran Journal of Computer Science

Abstract:Secure data-sharing in fog–cloud computing is receiving greater attention in information communication systems since it provides users with efficient and effective data transmission. Data-sharing in a smart hospital management system provides a vital service that was previously unavailable or inaccessible. Sharing medical data over a centralized cloud through an insecure channel exposes insider threats and hostile attacks. Fog–cloud-based environments now offer improved data-sharing security. A secure multi-authority data-sharing technique for a smart hospital management system with attribute-based encryption, blowfish encryption, and Boneh–Lynn–Shacham signature is proposed in this paper. Data-sharing requires an additional layer of security even though Attribute-Based Encryption allows for flexible and fine-grained data access control. Hybrid encryption offers greater resistance against brute force assaults. To overcome the issue of user management and key revocation, the proposed work employs a multi-authority short signature scheme. According to the comparison and findings, the proposed approach offers secure and efficient data-sharing in a smart hospital management system.

Ishu Gupta,Rishabh Gupta,Ashutosh Kumar Singh,Rajkumar Buyya

DOI: https://doi.org/10.1109/jsyst.2020.3035666

IF: 4.802

2021-09-01

IEEE Systems Journal

Abstract:The organizational valuable data needs to be shared with multiple parties and stakeholders in a cloud environment for storage, analysis, and data utilization. However, to ensure the security, preserve privacy while sharing the data effectively among various parties have become formidable challenges. In this article, by utilizing encryption, machine learning, and probabilistic approaches, we propose a novel model that supports multiple participants to securely share their data for distinct purposes. The model defines the access policy and communication protocol among the involved multiple untrusted parties to process the owners' data. The proposed model minimizes the risk associated with the leakage by providing a robust mechanism for prevention coupled with detection. The experimental results demonstrate the efficiency of the proposed model for different classifiers over various datasets. The proposed model ensures high accuracy and precision up to 97% and 100% relatively and secures a significant improvement up to 0.01%, 103%, 151%, 87%, 96%, 43%, and 186% for average probability, average success rate, detection rate, accuracy, precision, recall, and specificity, respectively, compared to the prior works that prove its effectiveness.

computer science, information systems,telecommunications,engineering, electrical & electronic,operations research & management science

Kaiping Xue,Peilin Hong

DOI: https://doi.org/10.1109/tcc.2014.2366152

IF: 5.697

2014-01-01

IEEE Transactions on Cloud Computing

Abstract:With the popularity of group data sharing in public cloud computing, the privacy and security of group sharing data have become two major issues. The cloud provider cannot be treated as a trusted third party because of its semi-trust nature, and thus the traditional security models cannot be straightforwardly generalized into cloud based group sharing frameworks. In this paper, we propose a novel secure group sharing framework for public cloud, which can effectively take advantage of the cloud servers' help but have no sensitive data being exposed to attackers and the cloud provider. The framework combines proxy signature, enhanced TGDH and proxy re-encryption together into a protocol. By applying the proxy signature technique, the group leader can effectively grant the privilege of group management to one or more chosen group members. The enhanced TGDH scheme enables the group to negotiate and update the group key pairs with the help of cloud servers, which does not require all of the group members been online all the time. By adopting proxy re-encryption, most computationally intensive operations can be delegated to cloud servers without disclosing any private information. Extensive security and performance analysis shows that our proposed scheme is highly efficient and satisfies the security requirements for public cloud based secure group sharing.

Vaibhav Khadilkar,Murat Kantarcioglu,Bhavani Thuraisingham,Sharad Mehrotra

DOI: https://doi.org/10.48550/arXiv.1105.1982

2011-05-10

Abstract:Cloud computing has made it possible for a user to be able to select a computing service precisely when needed. However, certain factors such as security of data and regulatory issues will impact a user's choice of using such a service. A solution to these problems is the use of a hybrid cloud that combines a user's local computing capabilities (for mission- or organization-critical tasks) with a public cloud (for less influential tasks). We foresee three challenges that must be overcome before the adoption of a hybrid cloud approach: 1) data design: How to partition relations in a hybrid cloud? The solution to this problem must account for the sensitivity of attributes in a relation as well as the workload of a user; 2) data security: How to protect a user's data in a public cloud with encryption while enabling query processing over this encrypted data? and 3) query processing: How to execute queries efficiently over both, encrypted and unencrypted data? This paper addresses these challenges and incorporates their solutions into an add-on tool for a Hadoop and Hive based cloud computing infrastructure.

Distributed, Parallel, and Cluster Computing

Changsha Ma,Chang Wen Chen

DOI: https://doi.org/10.1109/ICME.2014.6890308

2014-01-01

Abstract:Media sharing in cloud environment, which supports sharing media content at any time and from anywhere, is a promising paradigm of social interaction. However, it also brings forth security issues in terms of data confidentiality and access control on media data consumers with different access privileges. One promising solution is scalable media access control, which is capable of providing data confidentiality by encrypting the media data and issuing the key to only authorized data consumers. More importantly, it can empower the data distributor to provide the same media content with various quality levels to the consumers with different privileges. Traditional schemes without utilizing the cloud resources achieve scalable media access control by generating access keys using hash chains. Despite of their computational efficiency, such schemes suffer from various problems including vulnerability to user collusion attack in two-dimensional case, inflexible key distribution, and ambiguous key revocation strategy. In this paper, we propose a novel two-dimensional-scalable access control by generating access keys based on Attribute-Based Encryption (ABE) algorithm. Moreover, the proposed scheme can efficiently achieve comprehensive key management including key distribution and key revocation by fully exploiting the cloud. Security analysis shows that the proposed scheme is able to provide collusion resistance, as well as forward and backward secrecy. We have also evaluated the efficiency of the scheme through numerical analysis and initial implementation.

Sathish Chander Krishnan

DOI: https://doi.org/10.1016/j.future.2024.04.054

IF: 7.307

2024-05-19

Future Generation Computer Systems

Abstract:– The Internet of Things is susceptible to seepage of private information during the data sharing. To circumvent this problem, access control and secure data sharing have been familiarized in cloud- IoT which is prevalent now days due to it storage and data access services. An intrusion detection implementation defends the veracity of the data sharing confining record are stored in a data base by recognizing when something changed unpredictably so that security and privacy are major anxieties. Therefore, it is crucial to develop the security apparatus that perceive and mitigate any feasible attack in cloud security services. In this paper, we proposed secure access control method with two-fold revocation for ensuring cloud computing security by hybrid blockchain (AI-Hybrid chain). Initially, all the users and services are registered their credentials to Secure Agent (SA) and provides image-based user authentication. Then, SA provides a long-term secret key which is generated by Improved Advanced Encryption Standard (IAES) algorithm, both user and service credentials are encrypted and stored in cloud chain. After that, gateway verifies the incoming requests are legitimate or illegitimate. For verifying the incoming packets, the proposed work utilizes Di-Fuzzy Inference System (Di-FIS) based on effective metrics. Further, legitimate request is optimally classified as sensitive and non-sensitive request for achieving secure service allocation using Tomtit Flock Optimization algorithm (TFO) based on optimal features. Once the service is allocated to users, we perform novel access control mechanism based on role and attribute of the users, the trust can be validated using Transfer Learning based Double Deep Q Network (TL-DDQN). Furthermore, virtual firewall is deployed in the cloud environment for analyzing the user storage request traffic as normal validated using Transfer Learning based Double Deep Q Network (TL-DDQN). Furthermore, virtual firewall is deployed in the cloud environment for analyzing the user storage request traffic as normal and malicious based on Contractive Residual Network (Con-ResNet). The implementation of proposed work is conducted by Network Simulator – 3.26 and the performance of the proposed AI-Hybrid chain model is itemized based on various performance metrics in terms of attack detection rate, overhead, success ratio, throughput, traffic rate, delay, response time and unauthorized access.

computer science, theory & methods

Meikang Qiu,Han Qiu,Hui Zhao,Meiqin Liu,Bhavani Thuraisingham

DOI: https://doi.org/10.1109/SmartBlock52591.2020.00010

2020-01-01

Abstract:With the rapid development of cloud technology and the huge amount of big data generation, outsourcing data storage to a cloud service provider is an efficient solution. The challenges on the trustworthiness of cloud providers are urgent to be solved due to many security and privacy violation incidents in recent years. Some enhanced data protection methods such as All-Or-Nothing Transformation (AONT) are proposed to provide additional protection on data security. However, the key management and access revocation operations will become a difficult task and the key manager will be vulnerable. In this paper, we propose to use the scalable consortium blockchain system to solve the key management for the AON-based data protection and outsourcing in the multi-clouds scenario. We propose a model that can provide secure data sharing through untrusted clouds with the key management provided by the consortium blockchain system as a service. We also provide practical case studies for using the novel AON data approaches to protect data security and tamper-proofing on key management.