02-07-2012, 12:39 PM
Privacy Management in Cloud by making use of Homomorphic Functions
Privacy Management.pdf (Size: 364.64 KB / Downloads: 60)
ABSTRACT
Cloud computing is new era, attracting peoples for different services providing in cost effective manner. Privacy management is one of the critical issues in cloud when these services accessed through untrusted service provider or third party. There is risk with sending personal information to such parties. We proposed a strong privacy preserving scheme for processing of personal information at untrusted service provider or third party end in the cloud. With making use of homomorphic encryption function on personal information, the proposed scheme maintains confidentiality of personal information sent by the cloud users to untrusted service provider or third party. While registering to a cloud, the personal information sent by cloud user is encrypted by making use of homomorphic function. cloud server receives this information in encrypted form and decrypts it by using homomorphic decryption function.
INTRODUCTION
Cloud computing provides different services like, Software-as-Service (SaaS), Platform-as-Service (PaaS) and Infrastructure-as-Service (IasS) to its users with diminutive cost and effective manner. The reason to become trendier is its ability to create a virtual office that can be run from anywhere.
While using the cloud services it requires to register with personal information that may be used while authentication and authorization process. Also, Cloud is a great target for attackers who may get or examine the personal information during sending and receiving such information, which causes to harm on privacy protection. When third party comes in focus it becomes more crucial to manage it.
PRELIMINARIES
Term- Cloud Computing
Key to the definition of cloud computing is the “cloud” itself.
For our purposes, the cloud is a large group of interconnected
computers. These computers can be personal computers or
network servers; they can be public or private. This cloud of
computers extends beyond a single company or enterprise.
The applications and data served by the cloud are available to
broad group of users, cross-enterprise and cross-platform.
Access is via the Internet. Any authorized user can access
these docs and apps from any computer over any Internet
connection. And, to the user, the technology and infrastructure
behind the cloud is invisible [8].
Need of privacy management in cloud
Cloud computing is a topic on software and distributed
computing based on Internet, which means user can access
storage and applications from remote servers by web browsers
or other fixed or mobile terminals. To provide access to users
and/or such terminals it is essential to maintain private
information for authentication purpose. Personal information
may be stored to the servers within the Cloud through the
network and used while processing user requests.
RELATED WORKS
Ten major obstacles found in [1] which provides opportunities for work in cloud environment as below: Availability of service, Data Lock-In, Data confidentiality and Auditability, Data transfer bottleneck, Performance Unpredictability, Scalable storage, Bugs in large scale distributed systems, Scaling quickly, Reputation fate sharing, Software Licensing. Some security challenges some cloud computing issues and some security benefits found in [2]. However, it identified seven security issues [2] as: Privileged user access, regularly compliance, Data location, Data segration, Recovery, Investigate support, Long term viability It is important to take privacy into account when designing cloud services and found privacy threats and risks for cloud computing [3].However, some guidelines for designing privacy enhanced cloud and most six recommended privacy practices are found as [3]: Minimize personal information sent to and store in the cloud, Protect personal information in the cloud, Minimize user control, Allow user choice, Specify and limit the purpose of data usage, Provide feedback.
CONCLUSION AND FEATURE WORK
In this paper, we first identified the potential privacy issues in cloud computing. Then we proposed a strong privacy preserving scheme for third party in cloud. By making use of homomorphic encryption function, the proposed scheme maintains confidentiality of personal information sent by the cloud users. The proposed scheme offers three significant features, Enhanced privacy management, Competency, Reduced server side computation. We have implemented the scheme in Java with simulative results.