Devendrakumar, IJRIT 179 International Journal of Research in Information Technology (IJRIT)
International Journal of Research in Information Technology (IJRIT) International Journal of Research in Information Technology (IJRIT) International Journal of Research in Information Technology (IJRIT) www.ijrit.com
www.ijrit.comwww.ijrit.com www.ijrit.comISSN 2001-5569
Study on Dynamic Proof Verifier Protocol for Data Storage in Unsecured Cloud Storage
Servers
Devendrakumar Shashanka H P Sahanadevi K J
M.tech Student Asst. Professor Asst. Professor
Department of CSE Department of CSE Department of CSE
East West Institute of Technology SBMSIT EWIT
Bangalore, India Bangalore, India Bangalore, India
[email protected] [email protected] [email protected] Abstract
Cloud Computing provides data owner to deposit their data on many cloud servers and user can able to access these data from different cloud servers. During the data transaction between the data owner and cloud and also between the user and cloud, it may arise some of the security issues. For the data integrity on the cloud needs some auditing protocols which convince data owners that the data are stored in the cloud correctly. Some existing data integrity verifiers can apply only to static data (the data that cannot be altered) but it cannot be applied to the data on the cloud is altered dynamically.
This paper has made survey on designing of auditing framework for cloud storage systems and also to the auditing protocols which supports data dynamic operations and batch auditing for both numerous data owners and numerous clouds.
Index Terms: Cloud Computing, Auditing protocols, Data integrity, Batch Auditing, Privacy preserving auditing, dynamic auditing, Zero knowledge.
1. INTRODUCTION
Cloud Computing is come up with the computing services over the Internet. Computing services have the ability to provide a user or a group of users to access the software or hardware that is managed by the third party at the remote locations. Online file storage, online business applications, social networking sites are the best examples to the computing services. The major characteristics of cloud computing includes On-demand self-service, broad network access, resource pooling, rapid elasticity, measured service. On-demand self service means that the customer can request and manage their own computing resources. Broad network access allows services to be on the web or private networks.
Pooled resource means that the customer
Layers Cloud Computing
Components
Devendrakumar, IJRIT 180
CharacteristicsService Delivery Models
Deployment Models
Fig 1 Cloud Architecture
draw from a pool of computing resources, usually in remote data centres. Services can be scaled larger or smaller, and use of a service is measured and customers are billed accordingly.
The cloud computing includes three service delivery models. They are System as a Service (SaaS), Infrastructure as a Service (IaaS) and Platform as a Service (PaaS). The Cloud in the Cloud Computing includes set of hardware’s, software’s, networks, storage and interfaces that are needed to provide computing services.
Cloud services are typically made available via four deployment models. They are private cloud, public cloud, community cloud and hybrid cloud. In a private cloud, services offered over the network or over a private internal network to only selected users. In a public cloud, services offered over the public internet and available to anyone who wants to get access to the services. In a hybrid cloud, which includes both the features of private and public cloud. In a community cloud, it is controlled and used by a group of organizations that have shared interests, such as specific security requirements or a common mission.
Cloud storage is one of the best services provided by the cloud computing [1]. In this service, it allows data owner to deposit data from their local computing systems to the cloud. With this the more and more owners started to store their data on the cloud [2]. This new technique arises some security issues [3]. Providing security to the cloud is one of the major issues in cloud computing. Data integrity, data intrusion and service availability are some of the security risks of the cloud computing.
1.1 Data Integrity
It is one of the major security issue in the cloud computing. The data stored in the cloud may get damage during data transaction.
On- demand Self Service
Broad- Network Access Resource Pooling
Rapid Elasticity Measured Service
SaaS IaaS PaaS
Private
Public
Hybrid
Community
Devendrakumar, IJRIT 181
1.2 Data intrusionIt is another security issue in the cloud computing. If the hacker gets the cloud service provider’s password, he can modify or delete the data on the cloud or even disable its services.
1.3 Service Availability
In this the user’s web service may terminate at any time if any user’s violates the cloud servicing policy. If a delay in payments affects the users not to access the data on the cloud. To overcome from this issue backups or use of multiple providers is needed.
This paper mainly concentrated on data integrity issues. To overcome from the data integrity issues auditing protocols used. Auditing protocols convince the data owners that the data are stored in the cloud correctly. Auditing protocols should have following properties.
• Confidentiality: Auditing protocol should hide the owner’s data from the auditor.
• Dynamic Auditing: The auditing protocol should support dynamic updates of the data transaction between data owner and the users.
• Batch Auditing: The auditing protocols should also support to the batch auditing for multiple data owners and multiple clouds.
2. RELATED WORK
Filho [4] proposed a cryptographic protocol which uses RSA-based secure hash function, in which a prover can show a set of data known to the verifier. In this protocol requires to exponentiate the entire data file which leads high computation time. To overcome from the issues of Filho’s protocol Sebe[5] proposed protocol in which data is divided into blocks and fingerprinting each block and then apply RSA-based hash function on each block and verification data integrity done by using Deffie-Hellman approach, this protocol reduces the computation time of verification but it increases the computation cost. Yamamoto [6] proposed a fast integrity checking from batch verification of homomorphic hash functions on the selected blocks of data. In this the verifier needs to store the copy of the meta data such as they cannot be applied to the storage auditing in cloud storage system. Ateniese [7] proposed a dynamic provable data possession protocol using cryptographic function and symmetric key encryption. They pre compute the certain number of meta data during the setup period so that the number of updates and challenges are limited and fixed beforehand. Their protocol update operation requires recreating of all the remaining meta data which problematic for the large files. Their protocol perform only append type insertion instead of block insertion.Erway [8] extend the provable data possession scheme to support dynamic updated on the data stored in the cloud and proposed two dynamic provable data possession scheme by using authenticated dictionaries based on rank information. But this scheme cause heavy computation burden to the server so they relied on the PDP scheme of Ateniese. Shingare Vidya marshal [9] proposed an essentially secure dynamic auditing system to achieve the information integrity and availability in the cloud developing the system values of user by TPA. So that client will trust on cloud storage service and is provided by cloud as result of TPA work as the data owner. Zhu[10] the cooperative provable data possession scheme proposed this can support the batch auditing for multiple clouds and extend the dynamic auditing, but it is impossible for their scheme to support the batch auditing for multiple owners because parameters for generating the data tag used by owners are different and the cannot combine the data tags from multiple owners to conduct the batch auditing their scheme require the additional trusted organizer to send the commitment to the auditor during the batch auditing for multiple clouds because their scheme require the additional organizer it is not practical in cloud storage system.
Devendrakumar, IJRIT 182 3. PROPOSED SYSTEM
Fig 2 Auditing System
The auditing system use for cloud storage shown in the Fig 2. It includes data owners, cloud servers, third party auditor, users and the index table. The owner creates the data and deposits their data in the cloud. The cloud server stores owner’s data and provide the data access to users. The owner after deposit their data in the cloud they send the file id and hash of the data to the auditor. The auditor after taking abstract information of the data from the owner, auditor sends the challenge to the cloud service provider. The cloud service provider after receiving the challenge, it verifies the data and generate the proof and send this to the auditor. The auditor sends the result to owner. The users can upload and download the owner’s data in the cloud after receiving the secret key from the owners and perform the dynamic operations on the owners data such as modify, insertion and deletion and upload detail to the auditor, the auditor record all the updating in the index table.
4. CONCLUSION
In this paper we made survey on several security issues of the cloud computing and addressed several techniques with their pitfalls, which are related to data integrity. The proposed idea is to design dynamic verifier proof protocol which provides data integrity verification on dynamic data by third party auditor. As the data integrity is verified by the third
Devendrakumar, IJRIT 183
party auditor, auditing becomes transparent to the user. This protocol also provides batch auditing for the multiple owners and multiple cloud servers. The multiple cloud batch system does not require additional trusted organizer by this we can reduce computational cost for the auditing.REFERENCES
[1] P. Mell and T. Grance, “The NIST Definition of Cloud Computing,” technical report, Nat’l Inst. of Standards and Technology, 2009.
[2] M. Armbrust, A. Fox, R. Griffith, A.D. Joseph, R.H. Katz, A. Konwinski, G. Lee, D.A. Patterson, A. Rabkin, I.
Stoica, and M. Zaharia, “A View of Cloud Computing,” Comm. ACM, vol. 53, no. 4, pp. 50-58, 2010.
[3] T. Velte, A. Velte, and R. Elsenpeter, Cloud Computing: A Practical Approach, first ed., ch. 7. McGraw-Hill, 2010.
[4] Filho, D.L.G., Barreto, P.S.L.M.: Demonstrating data possession and uncheatable data transfer. IACR Cryptology ePrint Archive 2006, 150 (2006).
[5] Sebe, F., Domingo-Ferrer, J., Martinez-Balleste, A., Deswarte, Y., Quisquater, J.J.: Efficient remote data possession checking in critical information infrastructures. IEEE Trans. Knowl. Data Eng. 20(8), 1034–1038 (2008).
[6] Yamamoto, G., Oda, S.Aoki “Fast integrity for large data”. In Proceedings of the ECRYPT workshop on software performance enhancement for encryption and decryption, pp. 21–32. ECRYPT, Amsterdam, the Netherlands (2007) [7] Ateniese, G., Di Pietro, R., Mancini, L.V.Tsudik, G. “Scalable and efficient provable data possession” In Proceedings of the 4th international conference on Security and privacy in communication networks (SecureComm’08), pp. 1–10. ACM (2008)
[8] C.C. Erway, C. Papamanthou, and R. Tamassia,“Dynamic Provable Data Possession,” Proc. ACM Conf. Computer and Comm. Security, E. Al-Shaer, S.Jha, and A.D. Keromytis, eds., pp. 213-222, 2009.
[9] ShingareVidya Marshal “Secure Audit Service by Using TPA for Data Integrity in Cloud System” International Jproposednal of Innovative Technology and Exploring Engineering (IJITEE) ISSN: 2278-3075, Volume-3, Issue-4, September.
[10] Zhu, H.,Ahn, G.,Yu, M.: Cooperative provable data possession for integrity verification in multi-cloud storage.
IEEE Trans. Parallel Distrib. Syst. 23(12) 2231–2244 (2012).
