Filters








219 Hits in 6.1 sec

Managing Data Sharing in OpenStack Swift with Over-Encryption

Enrico Bacis, Sabrina De Capitani di Vimercati, Sara Foresti, Daniele Guttadoro, Stefano Paraboschi, Marco Rosa, Pierangela Samarati, Alessandro Saullo
2016 Proceedings of the 2016 ACM on Workshop on Information Sharing and Collaborative Security - WISCS'16  
In a data sharing scenario, the management of access privileges then requires an adequate support for key derivation and for managing policy evolution.  ...  Especially when the data are organized in objects, the application of an encryption layer is an interesting solution to this problem, because it o↵ers strong confidentiality guarantees with a limited performance  ...  CONCLUSIONS We presented the realization of an encryption solution, and of Over-Encryption for the management of policy updates, in OpenStack Swift.  ... 
doi:10.1145/2994539.2994549 fatcat:in7cm67blnc7tohszpki47j4ba

EncSwift and key management: An integrated approach in an industrial setting

Enrico Bacis, Marco Rosa, Ali Sajjad
2017 2017 IEEE Conference on Communications and Network Security (CNS)  
Yet, in many scenarios the adoption of an external cloud service provider may be a worry for data confidentiality since it leads to a partially loss of control over data.  ...  One of the solutions for letting users put trust in a provider is the use of encryption to protect data.  ...  The original Over-Encryption proposal assumed the presence of a single data owner instead of a scenario with resource sharing, and operated with an abstract provider capable of resources and keys management  ... 
doi:10.1109/cns.2017.8228711 dblp:conf/cns/BacisRS17 fatcat:xeljr5uvwbgj7cdfp4zw3zgtxa

A Cloud-Based Distributed Platform for Secured EPUB EBOOK Contents

2020 International Journal of Emerging Trends in Engineering Research  
We have implemented a prototype with OpenStack open source cloud computing platform enforce access control and efficient in data management with data-at-rest encryption.  ...  Digital content creators who also own their digitally created content Utilizing Digital Rights Management or DRM in order to safeguard and govern the distribution and usage of their digital contents.  ...  The proposed system will also be integrate Sigil EPUB editor with EncSwift (Bacis et al, 2016) which enforce access control and efficient in data management with data-at-rest encryption for OpenStack  ... 
doi:10.30534/ijeter/2020/018102020 fatcat:mxyppnppizhwxj2klab7mdxzm4

Protecting Resources and Regulating Access in Cloud-Based Object Storage [chapter]

Enrico Bacis, Sabrina De Capitani di Vimercati, Sara Foresti, Stefano Paraboschi, Marco Rosa, Pierangela Samarati
2018 Lecture Notes in Computer Science  
Cloud storage services offer a variety of benefits that make them extremely attractive for the management of large amounts of data.  ...  The research and development community has addressed these concerns by proposing solutions where encryption is adopted not only for protecting data but also for regulating accesses.  ...  This work was supported in part by the EC within the H2020 under grant agreement 644579 (ESCUDO-CLOUD) and within the FP7 under grant agreement 312797 (ABC4EU).  ... 
doi:10.1007/978-3-030-04834-1_7 fatcat:vphuk5cspbdirb4aqwjp24dagm

A Proposed Framework for Outsourcing and Secure Encrypted Data on OpenStack Object Storage (Swift)

Hala Albaroodi, Selvakumar Manickam, Mohammed Anbar
2015 Journal of Computer Science  
Swift is a multi-user based model in which every owner encrypts her/his files; each owner uses different levels of cryptographic security.  ...  OpenStack Swift security can provide a greater understanding of how OpenStack Swift functions and what types of security issues arise therein.  ...  Conclusion This paper discusses issues that arise with the OpenStack Swift; Swift enables users to manage their own data in a secure and centralised manner, which significantly facilitates the storage  ... 
doi:10.3844/jcssp.2015.590.597 fatcat:uw6frcxgvbgnzdssofxgu6tvim

CRITICAL REVIEW OF OPENSTACK SECURITY: ISSUES AND WEAKNESSES

Hala Albaroodi, Selvakumar Manickam, Parminder Singh
2014 Journal of Computer Science  
In the second part, an overview of the security issues in OpenStack is presented.  ...  The purpose of this study is to examine the state of both cloud computing security in general and OpenStack in particular.  ...  In fact, OpenStack does not provide any data encryption at all; thus, users would need to encrypt their data before uploading it and manage their encryption keys themselves.  ... 
doi:10.3844/jcssp.2014.23.33 fatcat:u6ho744osjc33o5wu77itphxs4

Access Control Management for Secure Cloud Storage [chapter]

Enrico Bacis, Sabrina De Capitani di Vimercati, Sara Foresti, Stefano Paraboschi, Marco Rosa, Pierangela Samarati
2017 Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering  
We present the design and implementation of an approach to realize policy-based encryption for enforcing access control in OpenStack Swift.  ...  With the widespread success and adoption of cloud-based solutions, we are witnessing an ever increasing reliance on external providers for storing and managing data.  ...  This work was supported in part by the EC within the H2020 under grant agreement 644579 (ESCUDO-CLOUD) and within the FP7 under grant agreement 312797 (ABC4EU).  ... 
doi:10.1007/978-3-319-59608-2_21 fatcat:aculgivxs5hbbf72suvufirfda

EGEON: Software-Defined Data Protection for Object Storage [article]

Raul Saiz-Laudo, Marc Sanchez-Artigas
2022 arXiv   pre-print
The EGEON prototype has been built atop OpenStack Swift. Evaluation results shows promise in developing data protection services with little overhead directly into the object store.  ...  With the growth in popularity of cloud computing, object storage systems (e.g., Amazon S3, OpenStack Swift, Ceph) have gained momentum for their relatively low per-GB costs and high availability.  ...  Therefore, the data owner can securely share data with other users, i.e., without sharing her private key nor performing any encryption for them on her personal device.  ... 
arXiv:2206.13162v1 fatcat:u7jdcwbixbfs7dycmos5fe6fdu

Assured Deletion in the Cloud

Kopo M. Ramokapane, Awais Rashid, Jose M. Such
2016 Proceedings of the 2016 ACM on Cloud Computing Security Workshop - CCSW '16  
However, data that is not properly destroyed may lead to unintended disclosures, in turn, resulting in heavy financial penalties and reputational damage.  ...  Much focus has been on other data leakage vectors, such as side channel attacks, while issues of data disposal and assured deletion have not received enough attention to date.  ...  This allows data to be scattered all over the storage infrastructure. To access data, OpenStack makes multiple requests to these storage servers through a Swift API.  ... 
doi:10.1145/2996429.2996434 dblp:conf/ccs/RamokapaneRS16 fatcat:ftbtfon7angdfffwsqdkkpbozi

Enhancement of Security within OpenStack – Some measures

JKR Sastry
2020 International Journal of Emerging Trends in Engineering Research  
confidentially of the data stored in Open Stack.  ...  While that being the Security of the data and software stored on the Cloud has been a real threat and still many issues in relation to the security enforcement within cloud based infrastructure has been  ...  In fact, OpenStack does not provide any data encryption at all; thus, users would need to encrypt their data before uploading it and manage their encryption keys themselves.  ... 
doi:10.30534/ijeter/2020/49832020 fatcat:x4qyeihgjbh4ldmxqoyp356zfe

Implementing User defined Attribute and Policy based Access Control

JKR Sastry
2020 International Journal of Emerging Trends in Engineering Research  
Each component in OpenStack provides fine-grained control over the access of data and service through OpenStack component defined policies and Role-based access provided at the system level.  ...  OpenStack does not offer support for user-specific access control. Confidentiality of the data, as such, is left to the responsibility of the user.  ...  A System component within OpenStack generated each user's private and public Key and shared with the users, and the user, in turn, shares the public with other users with whom the user wants to share the  ... 
doi:10.30534/ijeter/2020/171872020 fatcat:jolnnlym2jd7joet2hne26wzn4

Data Confidentiality in Public Cloud: A Method for Inclusion of ID-PKC Schemes in OpenStack Cloud

Bhanu PrakashGopularam, Nalini N
2014 International Journal of Computer Applications  
While the traditional encryption based on PKI infrastructure still works in cloud scenario the management of public-private keys and trust certificates is difficult.  ...  It provides a method to integrate ID-PKC schemes for securing data when in transit and storage and explains the key measures for safe guarding data.  ...  The deployment uses Ubuntu Server 12.04 LTS with OpenStack software for inclusion of ID-PKC schemes for data encryption.  ... 
doi:10.5120/16239-5784 fatcat:poo7myp2knh3tj3ioujhkl52ha

Intel SGX Enabled Key Manager Service with OpenStack Barbican [article]

Somnath Chakrabarti, Brandon Baker, Mona Vij
2017 arXiv   pre-print
Protecting data in the cloud continues to gain in importance, with encryption being used to achieve the desired data protection.  ...  While there is desire to use encryption, various cloud components do not want to deal with key management, which points to a strong need for a separate key management system.  ...  OpenStack [2] is becoming a cloud OS of choice in cloud space. To provide strong data protection in the cloud, encryption is typically used to protect the data in transit as well as data at rest.  ... 
arXiv:1712.07694v1 fatcat:43qe52kc2ja7ne4l5pcvmzrghe

A Secure Client Side Deduplication Scheme in Cloud Storage Environments

Nesrine Kaaniche, Maryline Laurent
2014 2014 6th International Conference on New Technologies, Mobility and Security (NTMS)  
That is, every client computes a per data key to encrypt the data that he intends to store in the cloud. As such, the data access is managed by the data owner.  ...  Towards these security challenges, we propose and implement, on OpenStack Swift, a new client-side deduplication scheme for securely storing and sharing outsourced data via the public cloud.  ...  These services can be used by the client to manage his data stored in the cloud servers. • Client: a client makes use of provider's resources to store, retrieve and share data with multiple users.  ... 
doi:10.1109/ntms.2014.6814002 dblp:conf/ntms/KaanicheL14 fatcat:cb2ojsthvrdfzgigij4poceuiu

Cloud Penetration Testing

Ralph LaBarge
2012 International Journal on Cloud Computing Services and Architecture  
This paper presents the results of a series of penetration tests performed on the OpenStack Essex Cloud Management Software.  ...  store user or administrative login credentials, and to correct a software bug found in the OpenStack Cinder typedelete command.  ...  Shared services include "Identity" and "Image". Figure 1 shows a block diagram of the OpenStack cloud management software.  ... 
doi:10.5121/ijccsa.2012.2604 fatcat:jkwfhek52re55jsxyblaklvcb4
« Previous Showing results 1 — 15 out of 219 results