A Strongly Trusted Integrity Preservance based Security Framework for Critical Information Storage over Cloud Platform

Sharma, Shweta

doi:10.5120/ijais2016451612

Cited by 5 publications

(3 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…However, the complexity of Cloud environment (in particular, auto-scaling, redundant systems, and load balancers) and the scale of generated logs bring more challenges for the storage, access, and verification of the logs. Sharma [103] points out the complexity of mega-scale Cloud environment and suggests incorporation of various cryptographic algorithms and digital signature to achieve high integrity for storing critical information in the Cloud. Liu et al [73] focus on the data storage integrity verification for Big Data in the areas of Cloud and Internet of Things (IoT), stating that data integrity is critical for any computation-related system.…”

Section: Log Tampering Prevention/detection Solutionsmentioning

confidence: 99%

Scalable Blockchain-assisted Log Storage System for Cloud-generated Logs

Pourmajidi¹

2021

Preprint

View full text Add to dashboard Cite

During the normal operation of a Cloud solution, no one pays attention to the logs except the technical department, which may periodically check them to ensure that the performance of the platform conforms to the Service Level Agreements. However, the moment the status of a component changes from acceptable to unacceptable, or a customer complains about accessibility or performance of a platform, the importance of logs increases significantly. Depending on the scope of the issue, all departments, including management, customer support, and even the actual customer, may turn to logs to find out what has happened, how it has happened, and who is responsible for the issue. The party at fault may be motivated to tamper the logs to hide their fault. Given the number of logs that are generated by the Cloud solutions, there are many tampering opportunities. While tamper detection solution can be used to detect any changes in the logs, we argue that the critical nature of logs calls for immutability. In this thesis, we propose a blockchain-based log system, called Logchain, that collects the logs from different providers and avoids log tampering by sealing the logs cryptographically and adding them to a hierarchical ledger, hence, providing an immutable platform for log storage.

show abstract

Section: Log Tampering Prevention/detection Solutionsmentioning

confidence: 99%

Scalable Blockchain-assisted Log Storage System for Cloud-generated Logs

Pourmajidi¹

2021

Preprint

View full text Add to dashboard Cite

show abstract

“…However, the complexity of the Cloud environment and the scale of generated logs bring more challenges for the storage, access, and verification of the logs. Sharma [37] points out the complexity of a mega-scale Cloud environment and suggests incorporation of various cryptographic algorithms and digital signature to achieve high integrity for storing critical information in the Cloud. Liu et al [38] focus on the data storage integrity verification for Big Data in the areas of Cloud and Internet of Things (IoT), stating that data integrity is critical for any computation-related system.…”

Section: Cloud Logs and Related Challengesmentioning

confidence: 99%

Immutable Log Storage as a Service on Private and Public Blockchains

Pourmajidi,

Zhang,

Steinbacher

et al. 2020

Preprint

View full text Add to dashboard Cite

During the normal operation of a Cloud solution, no one pays attention to the logs except the system reliability engineers, who may periodically check them to ensure that the Cloud platform's performance conforms to the Service Level Agreements (SLA). However, the moment a component fails, or a customer complains about a breach of SLA, the importance of logs increases significantly. All departments, including management, customer support, and even the actual customer, may turn to logs to determine the cause and timeline of the issue and to find the party responsible for the issue. The party at fault may be motivated to tamper with the logs to hide their role. Given the number and volume of logs generated by the Cloud platforms, many tampering opportunities exist. We argue that the critical nature of logs calls for immutability and verification mechanism without the presence of a single trusted party.This paper proposes such a mechanism by describing a blockchain-based log system, called Logchain, which can be integrated with existing private and public blockchain solutions. Logchain uses the immutability feature of blockchain to provide a tamper-resistance storage platform for log storage. Additionally, we propose a hierarchical structure to combine the hash-binding of two blockchains to address blockchains' scalability issues. To validate the mechanism, we integrate Logchain into two different types of blockchains. We choose Ethereum as a public, permission-less blockchain and IBM Blockchain as a private, permission-based one. We show that the solution is scalable on both the private and public blockchains. Additionally, we perform the analysis of the cost of ownership for private and public blockchains implementations to help a reader selecting an implementation that would be applicable to their needs. The Logchain's scalability improvement on a blockchain is achieved without any alteration on the fundamental architecture of blockchains. As shown in this work, it can function on private and public blockchains and, therefore, can be a suitable alternative for organizations that need a secure, immutable log storage platform.

show abstract

“…However, the complexity of Cloud environment (in particular, redundant systems and load balancers) and the scale of generated logs bring more challenges for the storage, access, and verification of the logs. Sharma [15] points out the complexity of mega-scale Cloud environment and suggest incorporation of various cryptographic algorithms and digital signature to achieve high integrity for storing critical information in the Cloud. Liu et al [16] focus on the data storage integrity verification for Big Data in the areas of Cloud and IoT, stating that data integrity is critical for any computation-related system.…”

Section: Literature Reviewmentioning

confidence: 99%

Logchain: Blockchain-Assisted Log Storage

Pourmajidi

Miranskyy

2018

2018 IEEE 11th International Conference on Cloud Computing (CLOUD)

View full text Add to dashboard Cite

During the normal operation of a Cloud solution, no one usually pays attention to the logs except technical department, which may periodically check them to ensure that the performance of the platform conforms to the Service Level Agreements. However, the moment the status of a component changes from acceptable to unacceptable, or a customer complains about accessibility or performance of a platform, the importance of logs increases significantly. Depending on the scope of the issue, all departments, including management, customer support, and even the actual customer, may turn to logs to find out what has happened, how it has happened, and who is responsible for the issue. The party at fault may be motivated to tamper the logs to hide their fault. Given the number of logs that are generated by the Cloud solutions, there are many tampering possibilities. While tamper detection solution can be used to detect any changes in the logs, we argue that critical nature of logs calls for immutability. In this work, we propose a blockchain-based log system, called Logchain, that collects the logs from different providers and avoids log tampering by sealing the logs cryptographically and adding them to a hierarchical ledger, hence, providing an immutable platform for log storage.

show abstract

A Strongly Trusted Integrity Preservance based Security Framework for Critical Information Storage over Cloud Platform

Cited by 5 publications

References 12 publications

Scalable Blockchain-assisted Log Storage System for Cloud-generated Logs

Scalable Blockchain-assisted Log Storage System for Cloud-generated Logs

Immutable Log Storage as a Service on Private and Public Blockchains

Logchain: Blockchain-Assisted Log Storage

Contact Info

Product

Resources

About