A method for ensuring data confidentiality in cloud storage

Computer Engineering & Science

Previous Articles Next Articles

A method for ensuring data confidentiality in cloud storage

REN Jingsi1,2,WANG Jinlin1,CHEN Xiao1,YE Xiaozhou1

（1.National Network New Media Engineering Research Center,Institute of Acoustics,Chinese Academy of Sciences,Beijing 100190;

2.University of Chinese Academy of Science,Beijing 100049,China）

Received:2015-05-14 Revised:2015-10-12 Online:2016-12-25 Published:2016-12-26

Abstract

Abstract:

The most popular method to ensure confidentiality of users’data is to encrypt the data stored in the cloud. We propose a new method to ensure data confidentiality in cloud storage. Its properties include: (1) an encryption system which processes user data between clients and servers, is deployed on the front end of cloud storage servers; (2) real time encryption of user data: data is encrypted while being uploaded and decrypted while being downloaded; (3) the encryption system is transparent to both clients and cloud servers. Currently the widespread HTTP protocolbased cloud storage systems, such as Amazon S3 and OpenStack Swift, can use this method directly. Test data show that: this method can effectively offload the burden of data encryption and decryption without reducing the throughput.

Key words: cloud storage, data confidentiality, real time encryption, transparent encryption, TCP agent, HTTP protocol

REN Jingsi1,2,WANG Jinlin1,CHEN Xiao1,YE Xiaozhou1. A method for ensuring data confidentiality in cloud storage[J]. Computer Engineering & Science.

[1]	ZHANG Feng, WEN Bin, YAN Yi-fei, ZENG Zhao-wu, ZHOU Wei, . An identity-encryption multi-cloud multi-copy integrity auditing protocol [J]. Computer Engineering & Science, 2024, 46(03): 453-462.
[2]	YE Xi, ZHANG Yu-shu, ZHAO Ruo-yu, XIAO Xiang-li, WEN Wen-ying. Usability-enhanced thumbnail-preserving encryption [J]. Computer Engineering & Science, 2023, 45(09): 1563-1571.
[3]	FU Wei, XIE Zhen-jie, ZHU Ting-ting, REN Zheng-wei. An assured deletion scheme of cloud data based on strongly non-separable cipher [J]. Computer Engineering & Science, 2023, 45(03): 434-442.
[4]	ZHENG Si-fei, FENG Zi-jing, LIU Cheng-yu, CHEN Ri-qing, LIU Xiao-long. An image camouflage encryption method based on vector quantization in cloud storage environment [J]. Computer Engineering & Science, 2022, 44(06): 1030-1036.
[5]	NIU Shufen, WANG Jinfeng, WANG Bobin, CHEN Jingmin, DU Xiaoni. A searchable encryption scheme supporting multi-keyword retrieval on blockchain [J]. Computer Engineering & Science, 2020, 42(11): 2005-2012.
[6]	QIAN Zheng1,2,XIA Hongxia2. Remote audit of big data cloud storage based on finite field algebraic signature partition table [J]. Computer Engineering & Science, 2018, 40(11): 1907-1914.
[7]	FU Wei1，LI Moci2，ZHAO Huarong2，WU Yong2. CRSHE: A novel ciphertext retrieval scheme based on homomorphic encryption [J]. Computer Engineering & Science, 2018, 40(09): 1540-1545.
[8]	YANG Xiaodong,YANG Miaomiao,LIU Tingting,WANG Caifen. A multi-domain access control scheme based on multi-authority attribute encryption for cloud storage [J]. Computer Engineering & Science, 2018, 40(07): 1192-1198.
[9]	JIANG Xiao-ping,ZHANG Wei,LI Cheng-hua,ZHOU Hang,SUN Jing. A document similarity calculation method based on fully homomorphic encryption technology for cloud storage [J]. Computer Engineering & Science, 2017, 39(10): 1807-1811.
[10]	WANG Yan,WANG Jin-kuan. A dynamic replication placement mechanism in cloud storage [J]. Computer Engineering & Science, 2017, 39(09): 1581-1587.
[11]	HUANG Dong-mei1,XU Hui-fang1,HE Qi1,DU Yan-ling1,WEI Quan-miao2. A secret sharing-based authentication scheme for ocean remote sensing images in cloud environment [J]. Computer Engineering & Science, 2017, 39(08): 1410-1418.
[12]	ZHANG Zhi-xin1,WANG Chun-dong2,JIANG Shu-hao1. Integrity check of cloud storage threat model based on pseudo random bilinear mapping [J]. Computer Engineering & Science, 2017, 39(06): 1048-1055.
[13]	ZHOU Lanfeng1,MENG Chi1,PENG Junjie2. A file storage scheme based on cloud environment [J]. J4, 2016, 38(02): 262-268.
[14]	WANG Caifen，XU Ting，ZHANG Yulei，YANG Xiaodong. An access control scheme in cloud storage based on content extraction signature and attribute encryption [J]. J4, 2015, 37(02): 238-244.
[15]	FU Xiong,GONG Xiaojie,WANG Ruchuan. A cluster based data replication strategy in cloud storage systems [J]. J4, 2014, 36(12): 2296-2304.

A method for ensuring data confidentiality in cloud storage

PDF

Knowledge

Abstract

Cite this article

share this article

Related Articles 15

Recommended Articles

Metrics

Comments