Secure Data Sharing with Confidentiality, Integrity and Access Control in Cloud Environment

Rajkumar, V.; Prakash, M.; Vennila, V.

doi:10.32604/csse.2022.019622

Cited by 8 publications

(3 citation statements)

References 22 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The lower PLC accesses through Modbus TCP protocol to obtain the sensor data of each control point. Modbus TCP protocol communication adopts C/S mode structure, the local server is the client, and the lower controller PLC is the server [4]. The monitoring data of hydropower station are typical data.…”

Section: Hydropower Station Operation and Maintenance Monitoring Data...mentioning

confidence: 99%

Research on Monitoring Data Security Sharing Method for Hydropower Station Operation and Maintenance

Ma¹,

Liu²,

Qin³

et al. 2022

J. Phys.: Conf. Ser.

View full text Add to dashboard Cite

The computer monitoring system centrally and uniformly manages the hydropower stations in the basin, which has high operation efficiency. The current data security sharing methods can not solve the multi-party trust problems such as data ownership and data security. In this regard, a monitoring data security sharing method for hydropower station operation and maintenance is proposed. The monitoring data of hydropower station comes from multiple independent operation systems developed by different suppliers according to different application requirements. The multi-source data are integrated and processed to meet the interactive needs of users. User permission has the characteristics of dynamic change, which can identify the permission attributes. Create a trusted container based on the user ID, locate the monitoring data, and trace the source in data sharing and storage. The access policy is formulated by the data user and bound with the private key, while the data is given an attribute set during encryption. Each data user has a corresponding access policy and a private key corresponding to the access policy, so as to realize the security sharing of monitoring data. The test results show that the design method in this paper can effectively reduce the communication overhead and storage overhead, and has good computing performance.

show abstract

Section: Hydropower Station Operation and Maintenance Monitoring Data...mentioning

confidence: 99%

Research on Monitoring Data Security Sharing Method for Hydropower Station Operation and Maintenance

Ma¹,

Liu²,

Qin³

et al. 2022

J. Phys.: Conf. Ser.

View full text Add to dashboard Cite

show abstract

“…Data users use symmetric keys to encrypt attribute queries. The management protocol manages the private key periodically, including generation, publishing and storage [13]. This management mode can ensure the forward and backward nature of attributes, and the hosting form of immediate revocation is more conducive to private key hosting.…”

Section: Cloud Computing Data Security Sharing Analysismentioning

confidence: 99%

Cloud computing data security access control model using improved CP-ABE algorithm

Tang¹

2022

International Conference on Network Communication and Information Security (ICNCIS 2022)

View full text Add to dashboard Cite

The current cloud computing data security access control model reduces the risk of data being maliciously modified, but it can't change the local attributes, and lacks some flexibility in the dynamic update of permissions. An improved CP-ABE algorithm is applied to design a cloud computing data security access control model. Between the cloud computing server and data users, a collaborative private key management mode is established based on the single attribute authority architecture. Each user has the attribute set and the corresponding private key. The CP-ABE algorithm cannot revoke the authority of a single user. A revocation scheme is added to the CP-ABE algorithm. The data belongs to the master, changes the hidden cloud key and authorized user attributes, and updates the private key with new random parameters. The improved CP-ABE algorithm is applied to establish the access control model. After the user accesses, the public key is obtained, and the input public and private keys are converted by the conversion algorithm. The test results show that the design model can reduce the time of key encryption and decryption when increasing the number of user attributes, complete data security access with less energy consumption, and is conducive to the expansion of access attributes.

show abstract

“…The research community has done a lot of work to protect sensitive data security and privacy. In terms of addressing data usage conditions, there are data anonymization [1][2][3] and various data access control methods which include access control in internet of things [4,5], access control in cloud environments [6][7][8]. To solve the purpose of data usage, many privacy-protection system architectures can be found between decentralized data privacy with blockchain [9][10][11], data use policy [12], privacy property [13], and data usage control [14].…”

Section: Introductionmentioning

confidence: 99%

TrustControl: Trusted Private Data Usage Control Based on Security Enhanced TrustZone

Lei¹,

Li²,

Li³

et al. 2022

Computers, Materials &Amp; Continua

View full text Add to dashboard Cite

The past decade has seen the rapid development of data in many areas. Data has enormous commercial potential as a new strategic resource that may efficiently boost technical growth and service innovation. However, individuals are becoming increasingly concerned about data misuse and leaks. To address these issues, in this paper, we propose TrustControl, a trusted data usage control system to control, process, and protect data usage without revealing privacy. A trusted execution environment (TEE) is exploited to process confidential user data. First of all, we design a secure and reliable remote attestation mechanism for ARM TrustZone, which can verify the security of the TEE platform and function code, thus guaranteeing data processing security. Secondly, to address the security problem that the raw data may be misused, we design a remote dynamic code injection method to regulate that data can only be processed for the expected purpose. Our solution focuses on protecting the sensitive data of the data owner and the function code of the data user to prevent data misuse and leakage. Furthermore, we implement the prototype system of TrustControl on TrustZone-enabled hardware. Real-world experiment results demonstrate that the proposed Trust-Control is secure and the performance overhead of introducing our prototype system is very low.

show abstract

Secure Data Sharing with Confidentiality, Integrity and Access Control in Cloud Environment

Cited by 8 publications

References 22 publications

Research on Monitoring Data Security Sharing Method for Hydropower Station Operation and Maintenance

Research on Monitoring Data Security Sharing Method for Hydropower Station Operation and Maintenance

Cloud computing data security access control model using improved CP-ABE algorithm

TrustControl: Trusted Private Data Usage Control Based on Security Enhanced TrustZone

Contact Info

Product

Resources

About