A Cloud Secure Storage Mechanism Based on Data Dispersion and Encryption

 ABSTRACT

Cloud storage service has shown its great power and wide popularity which provides fundamental support for rapid development of cloud computing. However, due to management negligence and malicious attack, there still lie enormous security incidents that lead to quantities of sensitive data leakage at cloud storage layer. From the perspective of protecting cloud data confidentiality, this paper proposed a Cloud Secure Storage Mechanism named CSSM. To avoid data breach at the storage layer, CSSM integrated data dispersion and distributed storage to realize encrypted, chucked and distributed storage. In addition, CSSM adopted a hierarchical management approach and combined user password with secret sharing to prevent cryptographic materials leakage. The experimental results indicate that proposed mechanism is not only suitable for ensuring the data security at storage layer from leakage, but also can store huge amount of cloud data effectively without imposing too much time overhead. For example, when users upload/download 5G sized file with CSSM, it only takes 646seconds/269seconds, which is acceptable for users.

Existing System:

A cloud-oriented data security storage mechanism under the framework of Apache Spark, which prevents data leakage and improves the security of Apache Spark framework. To protect user data on the cloud, different encryption schemes have been adopted to avoid information leakage during machine learning process. Nevertheless, above researches require secure key management mechanisms to prevent cryptographic materials exposure

Presented a data privacy preserving scheme for sensor-cloud system, based on edge computing and differential storage method. In this scheme, user data would be divided into different parts and stored in local, edge and cloud layer respectively. But the scheme relies on the characteristics of data from wireless sensor networks, and requires skilled users to manage the edge servers. To improve the efficiency and decrease the redundancy

Proposed System

This paper presents CSSM, a Cloud Secure Storage Mechanism. CSSM combines data dispersion with data encryption, so that large-scale cloud data and keys would be stored in chunked cipher texts. On this basis, user password and secret sharing are introduced to further protect keys security. We implemented CSSM based on OpenStack Swift mechanism and made several tests.

The major contributions of this work are listed below:

Data Secure Storage: In order to prevent data leakage and increase the difficulty of attack, this paper presents a method combining data distribution and data encryption to improve data storage security.

Hierarchical Key Management: To protect the key and prevent the attacker from using the key to recover the data, this paper introduces secret sharing and key hierarchy derivation algorithm in combination with user password to enhance key security.

Experimental Evaluation and Analysis: The security analysis and experimental results show that CSSM can effectively guarantee the security of data storage, and the increased performance cost is acceptable to users

CSSM system model architecture