AC-RRNS: Anti-collusion secured data sharing scheme for cloud storage
Cloud security issues are important factors for data storage and processing. Apart from the existing security and reliability problems of traditional distributed computing, there are new security and reliability problems. They include attacks on a virtual machine, attacks on the synchronization keys, and so on. According to the assessment of international experts in the field of cloud security, there are risks of cloud collusion under uncertain conditions. To mitigate this type of uncertainty and reduce harms it can cause, we propose AC-RRNS algorithm based on modified threshold Asmuth–Bloom and Mignotte secret sharing schemes. We prove that the algorithm satisfies the formal definition of computational security. If the adversary coalition knows the secret shares, but does not know the secret key, the probability to obtain the secret is less than . The probability is less than with unknown secret shares and known secret key, and with unknown secret key. Its complexity is equal to brute-force method. We demonstrate that the proposed scheme ensures security under several types of attacks. We propose approaches for selection of parameters for AC-RRNS secret sharing scheme to optimize the system behavior and data redundancy of encryption.
Almost all of the technologies that are now part of the cloud paradigm existed before, but so far the market has not been proposals that bring together emerging technologies in a single commercially attractive solution. However, in the last decade, there were public cloud services, through which these technologies, on the one hand, available to the developer, and on the other - it is clear to the business community. But many of the features that make cloud computing attractive, may be in conflict with traditional models of information security.
Due to the fact that cloud computing bring with them new challenges in the field of information security, it is imperative for organizations to control the process of information risk management in the cloud. In this article on the basis of Common Vulnerability Scoring System, allowing to determine the qualitative indicator of exposure to vulnerabilities of information systems, taking into account environmental factors, we propose a method of risk assessment for different types of cloud deployment environments.
Information Risk Management, determine the applicability of cloud services for the organization is impossible without understanding the context in which the organization operates and the consequences of the possible types of threats that it may face as a result of their activities. This paper proposes a risk assessment approach used in the selection of the most appropriate configuration options cloud computing environment from the point of view of safety requirements. Application of risk assessment for different types of deployment of cloud environments will reveal the ratio counter possible attacks and to correlate the amount of damage to the total cost of ownership of the entire IT infrastructure of the organization.
The use of cloud computing to ensure interaction between the state and citizens allows to speed up information interaction, to realize state services, to reduce the costs of providing such interaction, but at the same time this interaction raises important questions about the reliability of the cloud provider and security of interaction. Providers of the cloud can be both public authorities and private organizations. In the event that the cloud provider is a government agency, it can be assumed that all the requirements for security will be met. However, if the cloud provider is a private person, then we cannot be sure of security, if these requirements for security are not mandatory. It should be noted that Russian legislation does not require the mandatory application of information security standards. In this regard, the security of stored information in the clouds and its legislative support, the responsibility of providers providing cloud access services are very significant for the use of this technology in Russia.
The proceedings of the 11th International Conference on Service-Oriented Computing (ICSOC 2013), held in Berlin, Germany, December 2–5, 2013, contain high-quality research papers that represent the latest results, ideas, and positions in the field of service-oriented computing. Since the first meeting more than ten years ago, ICSOC has grown to become the premier international forum for academics, industry researchers, and practitioners to share, report, and discuss their ground-breaking work. ICSOC 2013 continued along this tradition, in particular focusing on emerging trends at the intersection between service-oriented, cloud computing, and big data.
Cloud-based technologies proliferated in the past few years, while the manufacturing industry moved towards digitization and network. Therefore, cloud-based technologies have been adopted in the development of new generation manufacturing systems which orchestrate different activities, including product design, process and task planning, production, customer service, etc. These new cloud-ingrained technologies have the potential to change the collaboration of product development partners, the processing and sharing of information as well as utilization rates of critical equipment. Cloud-based technologies affect many aspects of manufacturing activities, and they therefore have the power to enable new or change existing business models of the manufacturing industry. Based on the literature review, this paper analyzes the latest requirements, challenges, and trends of the manufacturing industry. It structures the findings in the coherent manner and further hypothesizes how cloud computing may address identified requirements and challenges as well as realize or support new concepts in manufacturing.
International Science and Technology Conference "Modern Networking Technologies (MoNeTec): SDN&NFV Next Generation of Computational Infrastructure" was dedicated to the Software defined Networks (SDN) and Network Function Virtualization (NFV). These technologies have emerged as the hottest networking trends of the past a few years. The conference proceeding represent the papers where the broad scope of SDN&NFV topics are discussed.