SECURITY OF CLOUD STORAGE AND CLOUD COMPUTING

SECURITY OF CLOUD STORAGE AND

CLOUD COMPUTING

GIRI PRANEETH KOMMALAPATI VENKAT RAMAN SRIPERUMBUDUR ECE 646

Final Presentation

Introduction

 Save and access the files online.

 Data stored in the cloud can be accessed from anywhere.

 There are many security threats faced by the User and the Cloud Service Provider.

 This cloud storage can be trusted when there is enough security from the server side.

 There are many security issues with the cloud computing. These

security concerns are faced by both the providers and the consumers.  In order to protect the data, the providers/organizations must ensure

that the infrastructure is secure and the data of the consumers must be protected.

MOTIVATION



There is a huge amount of data that is stored in the cloud. Over the

years many popular cloud services like Dropbox, Amazon cloud

service, iCloud, etc. have been attacked by the hackers.



Hackers attack the cloud and steal the information of many users.

Although there are many attacks on the cloud, it is very important to

store the sensitive data due to its huge advantages.



Reducing or eliminating the problem of loosing sensitive data

through reliable security at the client side.



Fundamental services like confidentiality, availability, integrity and

reliability are required for the consumers which are rendered by the

CSP.

Hypothesis

Main focus is on the analytical assessment of deployment of

cryptools to safeguard the data. Some services a CSP must render

are-

Confidentiality: The data stored by the consumer must not be

accessed by any other person including the service provider.



Availability: The data must be accessible from anywhere from any

computer/mobile phones, etc.



Integrity: The data must not be modified by anyone other than the

consumer by maintaining data integrity.

CRYPTOOLS

The tools which we are using out of many for encryption are:

•

SharedSafe Launcher for Windows

•

Cloudfogger for Mac

•

BoxCryptor for Windows

•

Viivo SecretSync for Android

•

AES Crypt for Windows

CLIENT

Cloud

Storage

BASIC BLOCK DIAGRAM

SHAREDSAFE LAUNCHER

•

_{simple way to share files on our FTP, e-mail, Dropbox with friends}

& co-workers.

•

_{encrypts files with the well known AES-256 (Advanced Encryption}

Standard) and is an Open Source with client side encryption.

•

_{protects files and file names before uploading.}

•

_{automatically shares files in the background and is available to}

operate offline.

Step-1

• Sharedsafe

Step-2

BOXCRYPTOR

•

_{Fast and easy Encryption}

•

_{available for all the cloud storage providers like Dropbox, Sky drive,}

Google Drive, etc.

•

_{supports all the clouds that use the WebDAV standard such as Cubby,}

Strato HiDrive and Owncloud.

•

_{PGP can be used for sharing the files.}

•

_{It creates a Virtual Drive on our computer that allows us to encrypt}

our files locally before uploading them to the cloud.

BOX CRYPTOR ENCRYPTION (CLIENT SIDE)

A

KEY

ENCRYPTION PRIVATE KEYENCRYPTED RSA

PRIVATE KEY

BOX CRYPTOR ENCRYPTION (SERVER SIDE)

A

ENCRYPTION ENCRYPTED FILE ---ENCRYPTED KEY AES-256 KEY ENCRYPTION With RSA public key FILE CLOUD

BOX CRYPTOR DECRYPTION

VIIVO

• VIIVO is a client side encryption tool used in android operating system.

• uses RSA 2048 and AES 256 algorithms to encrypt the data by creating an RSA key pair.

• The private key is secured with the password using PBKDF2 (Password-Based Key Derivation Function 2).

• The files are encrypted using AES-256 before they are uploaded in to the cloud.

• Most widely used by accountants, attorneys and Govt. & Health Care in the country.

VIIVO ENCRYPTION

RSA PRIVATE KEY

PASSWORD (PBKDF2) ENCRYPTED KEY FILE ENCRYPTED FILE (USING AES-256) CLOUD

AES CRYPT

•

AES encrypts files using AES encryption.

•

Files encrypted on one platform can be decrypted in other

platforms.

•

After encrypting the files locally we have to upload them to the

cloud.

DISKCRYPTOR

•

It offers encryption for all disk partitions.

•

It uses AES-256, Twofish, Serpent and also their combinations.

•

By cascading the algorithms, even if one algorithms is broken

CLOUDFOGGER

• Cloudfogger for MAC allows manual encryption and decryption of files.

• Uses AES-256 and RSA-4096 algorithm for the encryption of files.

• Private key is encrypted using the RSA-4096 algorithm.

Observations

• BoxCryptor secures the file that are uploaded into dropbox by encrypting them with a safe key.

• SharedSafe is used for sharing the files and file names securely using safe key.

• SharedSafe when a file is uploaded, it’s then encrypted and sent to a folder called My Safes.

• All the cryptools uses RSA-4096 and AES-256 algorithms for encryption of keys and files respectively.

• Cloud Fogger also uses same encryption algorithms at the client side.

• AES Crypt can be used to encrypt the files locally.

• Security mechanisms of all the tools are identical.

TOOL ENCRYPTION ALGORITHM

USED SHARING PLATFORM

Boxcryptor Client Side RSA 4096

AES 256 YES Windows, MAC, iOS, Android

Viivo Client Side RSA 4096

AES 256 YES Windows, MAC, iOS, Android Sharedsafe Client Side RSA 4096

AES 256 YES Windows,MAC Cloudfogger Client Side RSA 4096

AES 256 Yes Windows, MAC, iOS, Android AES Crypt Single file

encryption Tool AES NO Windows, MAC,Linux DiskCryptor Local drive

encryption Tool AES-256, Twofish, Serpent

CONCLUSIONS

• Client side encryption is important before uploading data to the cloud.

• Through the analytical assessment of the cryptools, we found boxcryptor to better for encryption in various terms of confidentiality, availability,

reliability and ease of use.

• All the cryptools have the same algoriths in common, i.e., the RSA for key encryprion and AES for file encryption.