Volume 5, Issue 3, March 2019 (ISSN: 2394 – 6598)
PROTECTED ENTRY DESIGN FOR DATA ENCRYPTION AND DECRYPTION USING
BIG DATA IN CLOUD
Ms.Sruthi.M.S, Anishwara Aathish T.V, Arul Balaji R
1Assistant professor, 2,3 UG Students
Sri Krishna College of Technology, Coimbatore
[email protected], [email protected] , [email protected]
ABSTRACT
Due to the difficulty and capacity, cryptography to a cloud is to be one of the most effective attributes for big data storage and access. However, verifying the access legitimacy of a user and securely updating cryptography in the cloud based on a new access policy selected by the data owner are also critical challenges to make cloud-based big data storage practical and active. In this paper, we propose a secure and access control based on NTRU cryptosystem for big data. Our process allows the cloud server to efficiently update the cryptography when a new access policy is identified by the data owner, who is also able to authenticate the update to counter against cheating behaviours of the protected entry design for big data in cloud. It conjointly permits the data owner and eligible users to effectively verify the legitimacy of a user for accessing the data, and a user to validate the information provided by different users for proper plaintext recovery.
KEY TERMS: NTRU, cloud, cryptography
I. INTRODUCTION
Big Data is a high volume, and high speed, high variety data quality, which needs new varieties of processing to enhance increased decision-making insight discovery, and process optimization. Due to its complexness and huge volume, managing Big Data using on hand database management tools is difficult. An effective solution is to outsource the data to a cloud serve that has the capabilities of storing massive data and processing users’ access requests in an effective manner. For instance, in e-health applications, the genome information should be securely stored in an e-health cloud as a single sequenced human genome is around 140 gigabytes in size. However, when a data owner outsources its data to a cloud, sensitive information may be disclosed because the cloud server is not trusted. Therefore, usually the cipher text of the data is stored in the cloud.
But a way to update the cipher text stored in a cloud when a new access policy is selected by the data owner and how to verify the legitimacy of a user who intends to access the data are still of great concern. Most existing approaches for securing the outsourced huge data in clouds are supported either attributed-based encryption (ABE) or secret sharing. ABE based approaches give the Flexibility for a data owner to predefine the set of users who are eligible for accessing the data.
108 NTRU is a lattice-based cryptographic method, is an open source public-key cryptosystem to encrypt and decrypt data. It consists of two algorithms: NTRU Encrypt, which is employed for encoding, and NTRU Sign, that is employed for digital signatures. The NTRU cryptosystem is a type of lattice-based cryptography and its security is based on the shortest vector problem (SVP) in a lattice. The major advantages of NTRU are quantum computing attack resistance and lighting fast computation capability. However, NTRU suffers from the problem of decryption failures.
II. LITERATURE REVIEW
Due to the high volumeof data, presently outsourcing cipher text to a cloud is one of the most effective approaches for big data access and storage. In this paper, a secure and verifiable access control scheme based on the NTRU cryptosystem for big data storage in cloud is proposed. A new NTRU decryption algorithm to overcome the decryption failures of the original NTRU, and then detail this scheme and analyze its correctness, security strengths, and computational efficiency. It allows the cloud server to efficiently update the cipher text when a new access policy is specified by the data owner, who is also authorized to validate the update to counter against cheating behaviors of the cloud[1]. Another system based on Attribute-based encryption (ABE) technique to ensure the end-to-end security of big data ,it implements the data owners to retrieve the data and re-encrypt it. This method helps to incure high communication overhead and heavy computation burden on data owners. In this model, a novel scheme that enabling efficient access control with dynamic policy updating for big data in the cloud. The main emphasis is on developing an outsourced policy updating method for ABE systems. This method can avoid the transmission of encrypted data and minimize the computation work of data ownerswith the help of previously encrypted data with old access policies[2]. Another work with Cipher text-policy attribute-based encryption (CP- ABE) can be followed to realize data access control in fog-cloud computing systems. In this paper, a verifiable outsourced multi-authority access control scheme, named VO-MAACS is adopted. In this system ,the computation results are verified after the encryption and decryption computations are outsourced to fog devices. Along with this, an efficient user and attribute revocation method is used to address the revocation issue[3].
It deals with the theories and algorithms that has been used to implement the system as reference for the work that is being carried out in this literature review.
III. DESIGN METHODOLOGY
This Project is an improved NTRU cryptosystem to overcome the decryption failures of the original NTRU. Initially a secure and verifiable scheme based on the improved NTRU and secret sharing for big data storage is designed. The cloud server can directly update the stored cipher text without decryption based on the new access policy specified by the data owner, who is able to validate the update at the cloud. Our system can verify the shared secret information to prevent users from cheating and can counter various threats.
During design, progressive refinement of data structure, program structure, and procedural details are developed reviewed and documented. System design can be monitored from either technical or project management perspective. From the technical perspective, system is designed by four activities – architectural design, data structure design, interface design and procedural design.
Fig 4.1 Database Design
Fig 4.2 File upload Table
Fig 4.3 File request Table
Fig 4.4 Members Table
110
IV. SYSTEM ARCHITECTURE
Fig 1. Architecture Diagram
The following are the various module descriptions which have been used in various applications:
• ADMIN
• DATA OWNER
• DATA USE
Admin module includes the login page at first.The admin has a separate account to which he has to login in order to check the information contained in the account.Once logged in, the admin can see and monitor all the profiles that are present in the cloud.The admin will be able to see all the details of the data owner like username, email, the data stored by him and his transactions.The admin has access to all the user details which includes the same username, email and the requests made by him for obtaining data.
A data owner has to first register for an account on the cloud.Once registered, he can login to his cloud account and start using it for storage.The data owner can then upload files to his account which will then be encrypted according to the security policy updated by him. This module also includes the permission requests received by the data owner from the user for accessing the file.The data owner will have the permission details like the details of the user requesting it and the data which is requested
The user needs to register for an account on the cloud.He can then login to his cloud to access the cloud data. The user sends a file request to the data owner, requesting for permission to access his data. Once the request is accepted by the data owner, using the key the user can decrypt the data and download it for his usage. The user can view all his transaction details, like the requests sent by him, the requests accepted by the data owner and the files granted to the user.
V. CONCLUSION AND FUTURE WORK
For the past decades a user can access cloud for saving the data. In this system, user can secure their data stored in the cloud by using the NTRU Cryptosystem with the encryption and decryption process. While request for the data download the user will sent the secure id to user who needs to download with the access of the mail. This system allows the data owner to update dynamically the data access policy and the cloud server to update successfully the related outsourced cipher text to enable efficient access control over the big data in the cloud.
In our future research, we will further improve our scheme by combining the threshold secret sharing with attribute- based access control, which involves an access structure that can place various requirements for a user to decrypt an outsourced cipher text data in the cloud. Meanwhile, we will investigate the security problems when a data owner outsources its data to multi-cloud servers and consider an attribute-based access structure that can be
dynamically updated, which is more applicable for practical scenarios in big data storage.
REFERENCES
[1]. Dr. S.Prayla Shyry, Dhrupad Kumar Das,” A SECURE AND VERIFIABLE ACCESS CONTROL SCHEME FOR BIG DATA STORAGE IN CLOUDS”, International Journal of Pure and Applied Mathematics Volume 119 No. 12 2018, 14147-14153 ISSN: 1314-3395 (on-line version) url: http://www.ijpam.eu Special Issue.
[2]. Kan Yang, Associate Member, IEEE, Xiaohua Jia, Fellow, IEEE, Kui Ren, Senior Member, IEEE , “Secure and Verifiable Policy Update Outsourcing for Big Data Access Control in the Cloud”., DOI 10.1109/TPDS.2014.2380373,
[3]. Kowsalyadevi Prakash , ”A Survey On Security And Privacy In Cloud Computing “,International Journal of Engineering Research & Technology (IJERT) Vol. 2 Issue 2, February- 2013 ISSN: 2278-0181
[4]. Lina Ni, Chao Li, Xiao Wang, Honglu Jiang, Jiguo Yu, "DP-MCDBSCAN: Differential Privacy Preserving Multi-Core DBSCAN Clustering for Network User Data", Access IEEE, vol. 6, pp. 21053-21063, 2018.
[5]. Qianmu Li, Shunmei Meng, Sainan Zhang, Jun Hou, Lianyong Qi, "Complex Attack Linkage Decision-Making in Edge Computing Networks", Access IEEE, vol. 7, pp. 12058-12072, 2019.
[6]. Abid Mehmood, Iynkaran Natgunanathan, Yong Xiang, Guang Hua, Song Guo, "Protection of Big Data Privacy", Access IEEE, vol. 4, pp. 1821-1834, 2016.
[7]. Qin Yu, Yizhe Zhao, Lanxin Zhang, Kun Yang, Supeng Leng, Fan Wu, "Fair energy-efficient resource allocation based on queue balancing in data and energy integrated communication networks", Computer Communications Workshops (INFOCOM WKSHPS) 2016 IEEE Conference on, pp. 812-819, 2016.
[8]. Xiang Cheng, Luoyang Fang, Liuqing Yang, Shuguang Cui, "Mobile Big Data: The Fuel for Data-Driven Wireless", Internet of Things Journal IEEE, vol. 4, no. 5, pp. 1489-1516, 2017.
[9]. Zoltán Balogh, Milan Turčáni, "Modeling of data security in cloud computing", Systems Conference (SysCon)
112 [10]. Fengyu Tian, Peng Zhang, Zheng Yan, "A Survey on C-RAN Security", Access IEEE, vol. 5, pp. 13372- 13386, 2017.
[11]. Jian Shen, Dengzhi Liu, Jun Shen, Haowen Tan, Debiao He, "Privacy Preserving Search Schemes over Encrypted Cloud Data: A Comparative Survey", Computational Intelligence Theory Systems and Applications (CCITSA) 2015 First International Conference on, pp. 197-202, 2015.
[12]. Mehrnoosh Monshizadeh, Vikramajeet Khatri, Andrei Gurtov, "NFV security considerations for cloud-based mobile virtual network operators", Software Telecommunications and Computer Networks (SoftCOM) 2016 24th International Conference on, pp. 1-5, 2016.
[13]. Rajkumar, Dr M. Newlin, M. Sruthi, and Dr V. Venkatesa Kumar. "IoT based smart system for controlling
Co2 emission." Int. J. Sci. Res. Comput. Sci. Eng. Inf. Technol 2.2 (2017): 284.
[14]. S. Shin, G. Gu, "Attacking Software-Defined Networks: A First Feasibility Study", Proc. ACM SIGCOMM Workshop Hot Topics in Software Defined Networking, pp. 165-166, 2013.
[15]. M.S Sruthi, “IOT BASED REAL TIME PEOPLE COUNTING SYSTEM FOR SMART BUILDINGS”
International Journal of Emerging Technology and Innovative Engineering Volume 5, Issue 2, February 2019 (ISSN: 2394 – 6598).
[16] SathyaBama, S., A Survey on Recent Trends in Digital Data Storage on DNA (February 21, 2019).
International Journal of Emerging Technology and Innovative Engineering, Volume 5, Issue 2, February 2019 .
[17] Regional Campus, Coimbatore. "Phonological Disorder Identification in Children Using Artificial Neural
Network Techniques."
[18] S, Kiruthika, A Survey on Healthcare and Agriculture in Internet of Things (October 17, 2018). International
Journal of Emerging Technology and Innovative Engineering, Volume 4, Issue 5, October 2018.
[19] Devi, C. Akalya, D. KarthikaRenuka, and S. Soundarya. "A Survey Based on Human Emotion Identification
Using Machine Learning and Deep Learning." Journal of Computational and Theoretical Nanoscience 15.5 (2018):
1662-1665.
[20] G, Priyanka, Prediction of Airline Delays Using K-Nearest Neighbor Algorithm (August 15, 2018).
International Journal of Emerging Technology and Innovative Engineering, Volume 4, Issue 5, August 2018.
[21] X. Jiang, X. Wang, D. Xu, "Stealthy Malware Detection Through VMM-Based ‘Out-of-the-Box’ Semantic View Reconstruction", Proc. ACM Conf. Computer and Comm. Security, pp. 128-138, 2007.
[22] B. Braun et al., "Verifying Computations with State", Proc. 24th ACM Symp. Operating Systems Principles, pp. 341-357, 2013.
[23] Sree, G. M., and S. Ashika Apurva. "S. Karthi, V. Sathesh, M. Shankar, and J. Pamina." CHURN PREDICTION IN TELECOM USING CLASSIFICATION ALGORITHMS."." International Journal of Emerging Technology and Innovative Engineering 5 (2019).
[24] Deepa, V., A. Jenifa, and J. Pamina. "APPROACHES BASED ON DATA MINING IN NATURAL LANGUAGE PROCESSING." International Journal Of Emerging Technology And Innovative Engineering 4 (2018).
[25] Akhila, V., et al. "ANALYSING THE BEHAVIOUR OF CUSTOMERS TO PREDICT CHURN IN TELECOM SECTOR." International Journal of Emerging Technology and Innovative Engineering 5 (2019).
[26] Raja, J. Beschi, S. Chenthur Pandian, and J. Pamina. "Certificate revocation mechanism in mobile ADHOC grid architecture." Int. J. Comput. Sci. Trends Technol 5 (2017): 125-130.
[27] Pamina, J., and J. Beschi Raja. "SURVEY ON DEEP LEARNING ALGORITHMS." International Journal of Emerging Technology and Innovative Engineering 5 (2019).
[28] Lydia, E. Laxmi, et al. "Correlating NoSQL Databases With a Relational Database: Performance and Space."
International Journal of Pure and Applied Mathematics 118.7: 235-244.
[29] Raja, Beschi, et al. "Market Behavior Analysis Using Descriptive Approach." Available at SSRN 3330017 (2019).
[30] Raja, J. Beschi, and V. Vetriselvi. "Mobile Ad Hoc Grid Architecture Based On Mobility of Nodes."
International Journal of Innovative Research in Computer and Communication Engineering 2 (2014): 49-55.
[31] Lydia, E. Laxmi, et al. "Correlating NoSQL Databases With a Relational Database: Performance and Space."
International Journal of Pure and Applied Mathematics 118.7: 235-244.
[32] M.S Sruthi, “IOT BASED REAL TIME PEOPLE COUNTING SYSTEM FOR SMART BUILDINGS”
International Journal of Emerging Technology and Innovative Engineering Volume 5, Issue 2, February 2019 (ISSN: 2394 – 6598).
