Vimmi Malhotra
580 California St., Suite 400
San Francisco, CA, 94104
Secure Cloud Data Storage Using Hybrid Cryptography
2022, International Journal for Research in Applied Science and Engineering Technology
https://doi.org/10.22214/IJRASET.2022.41081visibility
…
description
6 pages
Sign up for access to the world's latest research
checkGet notified about relevant papers
checkSave papers to use in your research
checkJoin the discussion with peers
checkTrack your impact
Abstract
Nowadays a huge number of organizations use the cloud for storing Big data. And some of the sectors have sensitive data, for example, Military, Agencies, Colleges, Industries, etc. The data can be retrieved when the user requests it. And others can also access the data. Cloud computing provides a lot of features with affordable prices and knowledge accessibility by using the Internet. Security is the main concern in the cloud computing environment as clients store secret information with cloud providers, but sometimes these providers may not be trustful. Splitting data in a safe approach while protecting data from an untrusted cloud is still a demanding topic. In this paper we ensure the right approach for data security and privacy, using Blowfish, and RSA/SRNN algorithms.
Related papers
An Approach to Hybrid Cryptography on Cloud Environment
2018
Now a day's cloud computing is used in many areas like industry, military colleges etc to storing huge amount of data. We can retrieve data from cloud on request of user. To store data on cloud we have to face many issues .To provide the solution to these issues there are n number of ways .Cryptography and steganography techniques are more popular now a day's for data security. Use of a single algorithm is not effective for high level security to data in cloud computing. This paper presents Hybrid (RSA & AES) encryption algorithm to safeguard data security in Cloud. Security being the most important factor in cloud computing has to be dealt with great precautions. This paper mainly focuses on the following key tasks: 1. Secure Upload of data on cloud such that even the administrator is unaware of the contents. 2. Secure Download of data in such a way that the integrity of data is maintained. The use of a single key for both encryption and decryption is very prone to maliciou...
Secure the File Storage on Cloud Computing Using Hybrid Cryptography Algorithm
International Journal for Research in Applied Science & Engineering Technology (IJRASET), 2022
The proposed of this paper is for the security needs of the cloud data center. Blowfish is used to convert encrypt file cuts, takes the minimum amount of time, and has the extreme throughput for encryption and decryption from other compatible algorithms. The idea of spreading and mixing meets the principle of information security. The hybrid approach makes the remote servers more secure when deployed in a cloud environment and, thus helps cloud providers gain more trust from their users. Used for data safety and privacy issues, the basic challenge of separating sensitive data and access control has been met. Cryptography techniques translate original data into an unreadable format. The encryption technique is divided into private key encryption and public-key encryption. Here we will use AES 128-algorithm, DES, RC, and LSB encryption techniques. This technique uses keys to translate data into an unreadable format. Therefore only authorized persons can access data from the cloud server. Ciphertext data is visible to all.
Cloud data security and various cryptographic algorithms
International Journal of Electrical and Computer Engineering (IJECE), 2023
Cloud computing has spread widely among different organizations due to its advantages, such as cost reduction, resource pooling, broad network access, and ease of administration. It increases the abilities of physical resources by optimizing shared use. Clients' valuable items (data and applications) are moved outside of regulatory supervision in a shared environment where many clients are grouped together. However, this process poses security concerns, such as sensitive information theft and personally identifiable data leakage. Many researchers have contributed to reducing the problem of data security in cloud computing by developing a variety of technologies to secure cloud data, including encryption. In this study, a set of encryption algorithms (advance encryption standard (AES), data encryption standard (DES), Blowfish, Rivest-Shamir-Adleman (RSA) encryption, and international data encryption algorithm (IDEA) was compared in terms of security, data encipherment capacity, memory usage, and encipherment time to determine the optimal algorithm for securing cloud information from hackers. Results show that RSA and IDEA are less secure than AES, Blowfish, and DES). The AES algorithm encrypts a huge amount of data, takes the least encipherment time, and is faster than other algorithms, and the Blowfish algorithm requires the least amount of memory space.
Secure file storage in cloud computing using hybrid cryptography algorithm
2016 International Conference on Wireless Communications, Signal Processing and Networking (WiSPNET), 2016
In the cloud environment, resources are shared among all of the servers, users and individuals. So it is difficult for the cloud provider to ensure file security. As a result, it is very easy for an intruder to access, misuse and destroy the original form of data. In case of compromise at any cost; entrusting cloud is of no use. A need for "practically strong and infeasible to get attacked" technique becomes vital. The paper presents the file security model which uses the concept of hybrid encryption scheme to meet security needs. In the proposed model, encryption and decryption of files at cloud servers done using blowfish and modified version of RSA. Further, it is tested in cloud environment: Open Nebula.
Hybrid Cryptographic Approach to Safeguard Cloud Computing Services: A Survey
2021
Cloud computing is a broad solution that cost-effectively delivers information technology as a service that encourages organizations and individuals to transfer their data and applications to the cloud. It may be used for storing and accessing sensitive information on servers beyond the management and control of the customers making this information susceptible to malicious attacks. Therefore, data security is a fundamental issue that limits the benefits of this technology. Cryptography plays an important role in achieving an appropriate level of data security on the cloud. Hybrid cryptography exploits the advantages of symmetric and asymmetric cryptosystems by blending them instead of applying separately. In this article, an experimental survey has been conducted on the trending hybrid cryptographic models to secure information on the cloud within the period from 2017 to 2020. Each model was reviewed and simulated separately by explaining the methodology, its advantages, weaknesses, and application areas. An important point in this article is the implementation of all of these models using the Python programming language then an analytical comparison of the results was obtained in terms of encryption time and throughput. We aim to provide a scientific contribution in the field of information security in the cloud computing environments.
Implementing Cryptographic Method for Ensuring Data Security In Cloud Computing Based On Hybrid Cloud
International Journal of Scientific Research in Science and Technology, 2018
In this modern era, Cloud Computing is the most emerging technology in the world, through which people can share resources, services and information among the people using the internet. Information security has been a major issue in cloud computing because the data is stored in different location in the cloud so Data security is the key factors of people's concerns, because cloud computing have been investigated in both academics and industries so data security and privacy are most essential for the future development of cloud computing technology in government, industry, and business. For enhancing the security in cloud computing we have developed the new technology and methodology to secure data in cloud computing, accordingly I have built an application using Cryptographic Algorithms encryption technology to secure & upload data in database, and during upload & retrieve the data they have to use the three level of encryption method to fetch the information.
Enhancement of Security in Cloud using Hybrid Encryption Technique
2016
Cloud computing is a model that delivers various set of services which a user can avail over the internet on rent basis. Nowadays, cloud computing has attained great prominence due to various reasons for instance, on demand resource sharing and online storage of data. However, security is one of the major task that hinder the growth of cloud computing. Due to this security issue, organizations are reluctant towards cloud computing despite of having various features. Hence, the major concern of this research work is to ensure cloud security. For this, a hybrid encryption system has been proposed that merges the accessibility of a public-key cryptosystem (using RSA) with the proficiency of a symmetric key cryptosystem (via AES). This hybrid technique is a two way secured data encryption system, which focusses on the matters related to user’s privacy, authentication and accuracy. This hybrid algorithm offers more security along with authentication in comparison to other hybrid algorith...
Hybridization of Cryptography for Security of Cloud Data
International Journal of Future Generation Communication and Networking, 2020
Due to evolution of distributed computing, many of the on line system related to banks, financial organizations, etc are transferring the importent information from administrator to the users through the cloud server provided by the various internet providing componies. The basic question is that whether the transformation is highly secure or not. The main propose of this paper is to indroduce a hybrid approach in the form of algorithm for securing the information with high integrity, less time consuming and more confidentiality . The presented algorithm has been implemented by taking an example, object oriented Python Programming language is used for implemented of example and results are displayed in the form of table and figures.
Efficient Hybrid Encryption Algorithm for Securing Data in Cloud Environment
Research Square (Research Square), 2024
Protecting sensitive data is crucial in the age of widespread data digitalization and cloud-based services. This paper proposes a unique hybrid encryption algorithm deployed and tested over the cloud platform. The algorithm is reinforced with the robust cryptographic combination of Advanced Encryption Standard (AES) and Rivest-Shamir-Adleman (RSA). By utilizing the inherent bene ts of symmetric and asymmetric encryption, the algorithm aims to improve the e ciency and security of data at rest and data being transmitted in a cloud-based environment. When tested on varied-length les and large data, the proposed algorithm encrypts the data securely and quickly. Various attacks including brute force, cryptanalysis were performed in the deployed environment to test the e ciency and effectiveness of the algorithm. It is observed that the algorithm outperformed Di e-Hellman algorithm in terms of speed of encryption and data security with a factor of 6%. The algorithm's robustness against different security risks and its exibility in changing cloud situations through an extensive examination is proven. The results not only highlight the hybrid approach's e cacy but also support its possible use in practical applications, therefore launching a new wave of robust cloud-based data management systems.
Private cloud security: Secured user authentication by using enhanced hybrid algorithm
2014 International Conference on Advances in Communication and Computing Technologies (ICACACT 2014), 2014
Using cloud computing, users store their data remotely to third party owners and enjoy the on-demand applications, services and storage from a shared pool of configurable computing resources, without the burden of data storage and maintenance and costs. However, we must provide security guarantees not only on authentication but also on files over the cloud for the outsourced data, which is now maintained by third parties such as cloud providers. This research focuses on mechanism, the hybrid of AES and Blowfish for encryption. For key management and key exchange hashing is used. This provides security protection for outsourced data, while introducing only minimal performance and monetary cost overhead.
10 IV April 2022
https://doi.org/10.22214/ijraset.2022.41081
International Journal for Research in Applied Science & Engineering Technology (IJRASET)
ISSN: 2321-9653; IC Value: 45.98; SJ Impact Factor: 7.538
Volume 10 Issue IV Apr 2022- Available at www.ijraset.com
Secure Cloud Data Storage Using Hybrid
Cryptography
Nidhi Kumari1, Prof. Vimmi Malhotra2
1
Master of Technology, Computer Science Engineering
2
Professor, Computer Science Department, Dronacharya College of Engineering, Gurugram
Abstract: Nowadays a huge number of organizations use the cloud for storing Big data. And some of the sectors have sensitive
data, for example, Military, Agencies, Colleges, Industries, etc. The data can be retrieved when the user requests it. And others
can also access the data. Cloud computing provides a lot of features with affordable prices and knowledge accessibility by using
the Internet. Security is the main concern in the cloud computing environment as clients store secret information with cloud
providers, but sometimes these providers may not be trustful. Splitting data in a safe approach while protecting data from an
untrusted cloud is still a demanding topic. In this paper we ensure the right approach for data security and privacy, using
Blowfish, and RSA/SRNN algorithms.
Keywords: Cloud Computing, Data storage, RSA/SRNN algorithm, Blowfish algorithm, Data storage.
I. INTRODUCTION
Cloud computing security is becoming a prominent study topic these days. The majority of businesses have begun using cloud
storage in place of traditional data storage, which gives a well-organized approach to access data from anywhere at any time. The
biggest issue in authorizing cloud computing for any corporation is data security. This study presents a multi-tiered cryptography-
based cloud computing security approach. Cloud computing arose from the large-scale distributed computer technology of the past.
As a solution, the cloud provider can encrypt the attached files/document using an authenticate algorithm. This paper describes a
file/document security model that provides a cost-effective solution to the fundamental security issues in the cloud. The technique
uses a cross-cryptography technique in which files/documents are securely enciphered with a middleware interface.
A. Data Security Issues
There are many security issues with cloud data and applications because of their open nature and multi-tenancy. There are several
issues to consider:
1) Cloud computing's dynamic scalability, service, and location transparency make it possible for any type of application or data to
run on any platform or infrastructure.
2) The task is challenging to implement a single security plan due to conflicts of interest in cloud computing service delivery
models. Various providers can own resources and cloud services.
3) The cloud's openness and the shared virtualization of resources between multiple tenants may allow unauthorized users to
access user data.
II. HYBRID CRYPTOGRAPHY SCHEME
Hybrid cryptosystem work on cloud to secure data. Secluded servers are presumed to be trustworthy, server-side encryption is used
for files, and then after files are encrypted on the server, they are stored there. Hybrid cryptography combines:
1) Using Blowfish algorithms combined with file splitting and merging
2) RSA Algorithm
Hybrid techniques combine symmetric algorithms with asymmetric algorithms to provide efficiency and security. When compared
with other symmetric algorithms, hybrid cryptosystem (Blowfish) has the better method of avoiding data/file exploits. Blowfish has
the highest bandwidth performance. RSA/SRNN's speed and security are well balanced. The user provides the equalizing key
Blowfish key using which each slice of uploaded files is encoded. RSA/SRNN is then used to encrypt each of the n keys with n
being the number of slices.
©IJRASET: All Rights are Reserved | SJ Impact Factor 7.538 | ISRA Journal Impact Factor 7.894 | 60
International Journal for Research in Applied Science & Engineering Technology (IJRASET)
ISSN: 2321-9653; IC Value: 45.98; SJ Impact Factor: 7.538
Volume 10 Issue IV Apr 2022- Available at www.ijraset.com
A. Blowfish Algorithm
The Luby-Rackoff block cipher network used in Blowfish was designed to provide 16 repeating encryption and decryption rounds.
There are five different key sizes: four to four hundred and forty-eight bits for block size and 64 bits for the key. Each P-box of the
cipher is 32-bits with 256 entries, and each Substitution box is 32-bits, with 256 entries. Two phases are involved in the encryption
process: The key Expansion Stage and Data Encryption Stage. Data encryption is carried out with 16-round networks during the
Key Expansion and Data Encryption phases. During the permutation and substitution process, permutations are performed based on
the key, and substitutions are performed based on the data.
Fig.1.Blowfish Algorithm
B. RSA Algorithm (Revist-Shamir-Aldeman)
There are two distinct keys contemplated in RSA, which are public and private. A public key is added to all of them, but a private
key is kept secret. It is used encryption and authentication algorithms. Based on prime numbers, RSA encrypts and decrypts data
steadily using positive integer prime numbers. This process is in fig.2.
Fig.2.RSA Algorithm
C. SRNN Algorithm
SRNN algorithm is an upgraded version of RSA algorithm. Whenever a number is extremely large and has two prime factors, it is
used in this algorithm. Additionally, a pair of keys are based on short-range natural numbers. Cryptography security is increased.
Cloud storage and remote backup are made safe.
III. HYBRID CRYPTOGRAPHY SYSTEM STAGES
For maintaining the integrity of files, a hybrid cryptosystem is used has two stages:
A. Encryption Stage
When encryption process is complete:
1) Slices are made according to the requirement of the user for the encryption of the file. The users provide Blowfish keys for each
slice that is encrypted.
2) RSA/SRNN public key will be used to encrypt the key.
3) Our encoded files slices then correspond to the matching encrypted keys.
©IJRASET: All Rights are Reserved | SJ Impact Factor 7.538 | ISRA Journal Impact Factor 7.894 | 61
International Journal for Research in Applied Science & Engineering Technology (IJRASET)
ISSN: 2321-9653; IC Value: 45.98; SJ Impact Factor: 7.538
Volume 10 Issue IV Apr 2022- Available at www.ijraset.com
B. Decryption Stage
When decryption process is complete:
1) In accordance with the number of slices created at the time of encryption stage (n), the user will provide (n)SRNN private keys.
SRNN private keys for each slice are used to decrypt the blowfish key at the server end.
2) Slices of files stored on a server are decrypted by using corresponding Blowfish keys
3) Original file will be generated by merging decrypted slices.
IV. PROPOSED MODEL ARCHITECTURE
A hybrid cryptosystem such as the one described above is deployed on cloud in order to guarantee file security. Generally, cloud
servers are assumed as trusted, but for security reasons, the data in encrypted format to prevent tampering, misuse or leakage by
intruders. The implementation of cloud schemes can be broadly categorized into three stages:
A. Registration Stage
Clients register themselves for the purpose of uploading and downloading files on the cloud server during the Registration Stage.
Clients send requests to the front node, in turn, assigns the client the VM that has least load among all other VMs on the network.
Clients are assigned IP addresses of corresponding VMs at the end of registration. A new request is sent every time he issues it to
the corresponding VM. SRNN public keys, encryption blowfish keys, and encrypted blowfish keys are all stored on his registered
virtual machine.
B. Uploading Stage
As part of the Upload Stage, need to do the following:
1) Step1: A client sends an authentication request to the front node requesting authentication.
2) Step2: During step two, the front end sends an IP address of the virtual machine associated with the user's registration on
successful authentication.
3) Step3: The client uploads the documents to the registered server (VM).
4) Step4: Hybrid cryptography is used to encrypt uploaded files.
5) Step5: The encrypted slices and Blowfish encrypted keys both are stored in virtual machine data storage.
6) Step6: It's only the user that can view his uploaded file because the SRNN private keys are sent to him and they're finally
deleted from the server.
C. Downloading Stage
The following steps are involved in the downloading stage:
1) Step1: Authentication will be requested by the client from the front node.
2) Step2: The front end which sends the corresponding IP address of the VM to which authentication is successful.
3) Step3: SRNN private keys for each slice will be uploaded by the users.
4) Step4: SRNN private keys are used to unlock the Blowfish encryption keys; these keys are then used to decrypt the encrypted
slices.
5) Step5: A merged version of the decrypted files is made.
6) Step6: This is done by downloading and viewing the decrypted file on the client's end.
V. BENEFITS OF PROPOSED MODEL
Cloud data centers need adequate security. The proposed model addresses their security needs. In comparison with other symmetric
algorithms, using blowfish to encrypt file slices takes less time and has a lower latency than others. An improved SRNN can provide
greater security than RSA. It contributes to the security of data by splitting and merging. In a cloud environment, hybrid techniques
enhance security for the remote server and help cloud providers gain more user confidence. Separation of sensitive data and access
control, in terms of data security and privacy, fulfills the first principle challenge. Here are a few of the advantages:
1) This method of public key cryptography facilitates the permission process for every file.
2) File information in cloud is protected by a secure encryption system.
3) This makes the model impossible to attack due to the split and merge files.
©IJRASET: All Rights are Reserved | SJ Impact Factor 7.538 | ISRA Journal Impact Factor 7.894 | 62
International Journal for Research in Applied Science & Engineering Technology (IJRASET)
ISSN: 2321-9653; IC Value: 45.98; SJ Impact Factor: 7.538
Volume 10 Issue IV Apr 2022- Available at www.ijraset.com
VI. CONCLUSION
Getting data security and privacy protection right is the main concern for cloud service delivery models and deployment models. In
SPI model service delivery models, security concerns are at all levels. This model promotes data as a service, a feature applicable to
other models of cloud service delivery. This approach could be applied to other cloud environments as well. Hopefully, they will be
able to choose from among them in the future
REFERENCES
[1] Peter Mel and Tim Grace, "The NIST Definition of Cloud Computing", NIST, 2010.
[2] Achill Buhl, "Rising Security Challenges in Cloud Computing", in Proc. of World Congress on Information and correspondence Technologies ,pp. 217-222,
Dec. 2011.
[3] Srinivasarao D et al., "Breaking down the Superlative symmetric Cryptosystem Encryption Algorithm", Journal of Global Research in Computer Science, vol.
7, Jul. 2011
[4] Tingyuan Nye and Tang Zhang "An investigation of DES and Blowfish encryption algorithm‟, in Proc. IEEE Region 10 Conference, pp. 1-4 ,Jan. 2009.
[5] Jitendra Singh Adam et al.," Modified RSA Public Key Cryptosystem Using Short Range Natural Number Algorithm" , International Journal of Advanced
Research in Computer Science and Software Engineering ,vol. 2,Aug. 2012.
[6] Manikandan.G et al., "A changed cryptographic plan improving information", Journal of Theoretical and Applied Information Technology, vol. 35, no.2, Jan.
2012. [7] Niles Maintain and Subhead Bhingarkar, " The examination and Judgment of Nimbus, Open Nebula and Eucalyptus", International Journal of
Computational Biology , vol. 3, issue 1, pp 44-47, 2012.
©IJRASET: All Rights are Reserved | SJ Impact Factor 7.538 | ISRA Journal Impact Factor 7.894 | 63
References (6)
- Peter Mel and Tim Grace, "The NIST Definition of Cloud Computing", NIST, 2010.
- Achill Buhl, "Rising Security Challenges in Cloud Computing", in Proc. of World Congress on Information and correspondence Technologies ,pp. 217-222, Dec. 2011.
- Srinivasarao D et al., "Breaking down the Superlative symmetric Cryptosystem Encryption Algorithm", Journal of Global Research in Computer Science, vol. 7, Jul. 2011
- Tingyuan Nye and Tang Zhang "An investigation of DES and Blowfish encryption algorithm", in Proc. IEEE Region 10 Conference, pp. 1-4 ,Jan. 2009.
- Jitendra Singh Adam et al.," Modified RSA Public Key Cryptosystem Using Short Range Natural Number Algorithm" , International Journal of Advanced Research in Computer Science and Software Engineering ,vol. 2,Aug. 2012.
- Manikandan.G et al., "A changed cryptographic plan improving information", Journal of Theoretical and Applied Information Technology, vol. 35, no.2, Jan. 2012. [7] Niles Maintain and Subhead Bhingarkar, " The examination and Judgment of Nimbus, Open Nebula and Eucalyptus", International Journal of Computational Biology , vol. 3, issue 1, pp 44-47, 2012.