Name
Title | ||
|---|---|---|
CloudSafe: Securing data processing within vulnerable virtualization environments in the cloud |
Abstract | ||
|---|---|---|
Data protection in public cloud remains a challenging problem. Outsourced data processing on vulnerable cloud platforms may suffer from cross-VM attacks, e.g. side-channel attacks that leak secrecy keys. We design and develop CloudSafe, a general and practical data-protection solution by integrating cryptographic techniques and systematic mechanisms seamlessly to address this issue. CloudSafe first allows a data owner to outsource encrypted data in the cloud. It then employs a cloud-based proxy to re-encrypt stored encrypted data and delivers it to authorized cloud applications upon access requests. To combat cross-VM side-channel attacks, the final data decryption key is one-time use and can be retrieved from the data owner ondemand. Any key leakage after an authorized access cannot compromise data confidentiality. For data sharing, CloudSafe allows authorized applications to efficiently access the protected data. The prototype evaluation demonstrates the efficiency of the scheme towards large-scale cloud applications. |
Year | DOI | Venue |
|---|---|---|
2013 | 10.1109/CNS.2013.6682705 | CNS |
Keywords | Field | DocType |
vulnerable cloud platforms,secrecy keys,systematic mechanisms,data confidentiality,cryptography,cross-vm side-channel attacks,access requests,cloud security,side-channel attack,vulnerable virtualization environments,proxy re-encryption,virtual machines,cryptographic techniques,authorized cloud applications,data-protection solution,cloud-based proxy,outsourced computation,data processing security,virtualisation,authorisation,data decryption key,cloudsafe,cloud computing,outsourced data processing,one-time key,large-scale cloud applications,public cloud,stored encrypted data reencryption | Virtualization,Computer science,Computer security,Data sharing,Computer network,Encryption,Cloud computing security,Data virtualization,Data Protection Act 1998,Cloud testing,Cloud computing | Conference |
ISSN | Citations | PageRank |
2474-025X | 2 | 0.41 |
References | Authors | |
20 | 4 | |
Name | Order | Citations | PageRank |
|---|---|---|---|
| Huijun Xiong | 1 | 96 | 6.60 |
| Qingji Zheng | 2 | 2 | 0.41 |
| Xinwen Zhang | 3 | 697 | 46.90 |
| Danfeng Yao | 4 | 965 | 74.85 |