Secure cloud storage model to preserve confidentiality and integrity

Cloud Service Providers (CSPs) offer remotely located cloud storage services to business organizations which include cost-effective advantages. From an industrial perspective, Amazon Simple Storage Service (S3) and Google Cloud Storage (GCS) are the leading cloud storage services. These storages are...

Full description

Saved in:
Bibliographic Details
Main Author: Brohi, Sarfraz Nawaz
Format: Thesis
Language:English
Published: 2015
Subjects:
Online Access:http://eprints.utm.my/id/eprint/44640/5/SarfrazNawazBrohiPAIS2015.pdf
Tags: Add Tag
No Tags, Be the first to tag this record!
id my-utm-ep.44640
record_format uketd_dc
spelling my-utm-ep.446402017-06-11T04:54:10Z Secure cloud storage model to preserve confidentiality and integrity 2015-01 Brohi, Sarfraz Nawaz QA76 Computer software Cloud Service Providers (CSPs) offer remotely located cloud storage services to business organizations which include cost-effective advantages. From an industrial perspective, Amazon Simple Storage Service (S3) and Google Cloud Storage (GCS) are the leading cloud storage services. These storages are secured using the latest data security approaches such as cryptography algorithms, data auditing processes, and strict access control policies. However, organizations where confidentiality of information is a significant act, they are not assertive to adopt these services due to emerging data confidentiality and integrity concerns. Malicious attackers have violated the cloud storages to steal, view, manipulate, and tamper clients’ data. The researchers have attempted to overcome these shortcomings by designing and developing various security models. These solutions incorporate limitations and require enhancements as well as improvements before they can be widely accepted by CSPs to guarantee secure cloud storage services. In order to solve the stated problem, this research developed an improved security solution namely Secure Cloud Storage Model (SCSM) which consists of Multi-factor authentication and authorization process using Role-Based Access Control (RBAC) with Complex Random Security Code Generator (CRSCG), Partial homomorphic cryptography using Rivest, Shamir and Adleman (RSA) algorithm, Trusted Third Party (TTP) services including Key Management (KM) approach and data auditing process, Implementation of 256-bit Secure Socket Layer (SSL), and Service Level Agreement (SLA). SCSM was implemented using Java Enterprise Edition with glassfish server and deployed on a cloud computing infrastructure. The model was evaluated using extended euclidean algorithm, system security analysis, key management recommendations, web-based testing tool, security scanner, and survey. The survey results presented that 83.33% of the respondents agreed for SCSM to be widely accepted by CSPs to offer secured cloud storage services. The aggregate evaluation results proved that SCSM is successful in preserving data confidentiality and integrity at remotely located cloud storages. 2015-01 Thesis http://eprints.utm.my/id/eprint/44640/ http://eprints.utm.my/id/eprint/44640/5/SarfrazNawazBrohiPAIS2015.pdf application/pdf en public http://dms.library.utm.my:8080/vital/access/manager/Repository/vital:75644?site_name=Restricted Repository phd doctoral Universiti Teknologi Malaysia, Advanced Informatics School Advanced Informatics School
institution Universiti Teknologi Malaysia
collection UTM Institutional Repository
language English
topic QA76 Computer software
spellingShingle QA76 Computer software
Brohi, Sarfraz Nawaz
Secure cloud storage model to preserve confidentiality and integrity
description Cloud Service Providers (CSPs) offer remotely located cloud storage services to business organizations which include cost-effective advantages. From an industrial perspective, Amazon Simple Storage Service (S3) and Google Cloud Storage (GCS) are the leading cloud storage services. These storages are secured using the latest data security approaches such as cryptography algorithms, data auditing processes, and strict access control policies. However, organizations where confidentiality of information is a significant act, they are not assertive to adopt these services due to emerging data confidentiality and integrity concerns. Malicious attackers have violated the cloud storages to steal, view, manipulate, and tamper clients’ data. The researchers have attempted to overcome these shortcomings by designing and developing various security models. These solutions incorporate limitations and require enhancements as well as improvements before they can be widely accepted by CSPs to guarantee secure cloud storage services. In order to solve the stated problem, this research developed an improved security solution namely Secure Cloud Storage Model (SCSM) which consists of Multi-factor authentication and authorization process using Role-Based Access Control (RBAC) with Complex Random Security Code Generator (CRSCG), Partial homomorphic cryptography using Rivest, Shamir and Adleman (RSA) algorithm, Trusted Third Party (TTP) services including Key Management (KM) approach and data auditing process, Implementation of 256-bit Secure Socket Layer (SSL), and Service Level Agreement (SLA). SCSM was implemented using Java Enterprise Edition with glassfish server and deployed on a cloud computing infrastructure. The model was evaluated using extended euclidean algorithm, system security analysis, key management recommendations, web-based testing tool, security scanner, and survey. The survey results presented that 83.33% of the respondents agreed for SCSM to be widely accepted by CSPs to offer secured cloud storage services. The aggregate evaluation results proved that SCSM is successful in preserving data confidentiality and integrity at remotely located cloud storages.
format Thesis
qualification_name Doctor of Philosophy (PhD.)
qualification_level Doctorate
author Brohi, Sarfraz Nawaz
author_facet Brohi, Sarfraz Nawaz
author_sort Brohi, Sarfraz Nawaz
title Secure cloud storage model to preserve confidentiality and integrity
title_short Secure cloud storage model to preserve confidentiality and integrity
title_full Secure cloud storage model to preserve confidentiality and integrity
title_fullStr Secure cloud storage model to preserve confidentiality and integrity
title_full_unstemmed Secure cloud storage model to preserve confidentiality and integrity
title_sort secure cloud storage model to preserve confidentiality and integrity
granting_institution Universiti Teknologi Malaysia, Advanced Informatics School
granting_department Advanced Informatics School
publishDate 2015
url http://eprints.utm.my/id/eprint/44640/5/SarfrazNawazBrohiPAIS2015.pdf
_version_ 1747817259892473856