SocialClouds: Concept, security architecture and some mechanisms

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 6163 LNCS, Issue , 2010, Pages 104-128

  Xu, Shouhuai ^a   Yung, Moti ^b  

^a University of Texas at San Antonio   (United States)

^b Columbia University ^*  (United States)

Author keywords

authentication; Cloud computing; credentials; security; social computing; social networks

Indexed keywords

CLOUD COMPUTING; COMPUTING PLATFORM; CRYPTOGRAPHIC ARCHITECTURE; DATA CENTERS; IDENTIFICATION SCHEME; LARGE POPULATION; SECURITY; SECURITY ARCHITECTURE; SECURITY CHALLENGES; SOCIAL COMPUTING; SOCIAL NETWORKS; SOCIAL RELATIONSHIPS;

AUTHENTICATION; SOCIAL NETWORKING (ONLINE);

DISTRIBUTED COMPUTER SYSTEMS;

EID: 77955007911     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/978-3-642-14597-1_7     Document Type: Conference Paper

References (39)

1. Anderson, J., Diaz, C., Bonneau, J., Stajano, F.: Privacy-enabling social networking over untrusted networks. In: Proc. WOSN 2009, pp. 1-6 (2009)
2. Armbrust, M., Fox, A., Griffith, R., Joseph, A., Katz, R., Konwinski, A., Lee, G., Patterson, D., Rabkin, A., Stoica, I., Zaharia, M.: Above the clouds: A berkeley view of cloud computing. Technical Report UCB/EECS-2009-28 (February 2009)
3. Ateniese, G., Burns, R., Curtmola, R., Herring, J., Kissner, L., Peterson, Z., Song, D.: Provable data possession at untrusted stores. In: ACM CCS 2007 (2007)
4. Ateniese, G., Di Pietro, R., Mancini, L., Tsudik, G.: Scalable and efficient provable data possession. In: Proc. SecureComm 2008, pp. 1-10 (2008)
5. Bellare, M., Micciancio, D.,Warinschi, B.: Foundations of group signatures: Formal definitions, simplified requirements, and a construction based on general assumptions. In: Biham, E. (ed.) EUROCRYPT 2003. LNCS, vol. 2656, pp. 614-629. Springer, Heidelberg (2003)
6. Bellare, M., Rogaway, P.: Random oracles are practical: A paradigm for designing efficient protocols. In: Proc. ACM CCS 2003, pp. 62-73 (2003)
7. Berger, S., Caceres, R., Goldman, K., Pendarakis, D., Perez, R., Rao, J., Rom, E., Sailer, R., Schildhauer, W., Srinivasan, D., Tal, S., Valdez, E.: Security for the cloud infrastructure: Trusted virtual data center implementation. IBM Journal of Research and Development 53(4)
8. Boneh, D., Franklin,M.: Identity-based encryption from the weil pairing. In: Kilian, J. (ed.) CRYPTO 2001. LNCS, vol. 2139, pp. 213-229. Springer, Heidelberg (2001)
9. Bowers, K., Juels, A., Oprea, A.: Hail: A high-availability and integrity layer for cloud storage, http://eprint.iacr.org/
10. Bowers, K., Juels, A., Oprea, A.: Proofs of retrievability: Theory and implementation, http://eprint.iacr.org/
11. Brodkin, J.: Gartner: Seven cloud-computing security risks, http://www.networkworld.com/news/2008/070208-cloud.html (07/02/2008)
12. Buchegger, S., Datta, A.: A case for P2P infrastructure for social networks - opportunities and challenges. In: WONS 2009 (2009)
13. Buchegger, S., Schiöberg, D., Vu, L., Datta, A.: PeerSoN: P2P social networking - early experiences and insights. In: WOSN 2009 (2009)
14. Chandra, A., Weissman, J.: Nebulas: Using Distributed Voluntary Resources to Build Clouds. In: Proc. HotCloud 2009 (2009)
15. Chaum, D.: Blind signatures for untraceable payments. In: Proc. CRYPTO 1982 (1982)
16. Chaum, D., Van Heyst, E.: Group signatures. In: Davies, D.W. (ed.) EUROCRYPT 1991. LNCS, vol. 547, pp. 257-265. Springer, Heidelberg (1991)
17. Cramer, R.: Modular Design of Secure yet Practical Cryptographic Protocols (1997)
18. Cramer, R., Damgård, I., Schoenmakers, B.: Proofs of partial knowledge and simplified design of witness hiding protocols. In: Desmedt, Y.G. (ed.) CRYPTO 1994. LNCS, vol. 839, pp. 174-187. Springer, Heidelberg (1994)
19. Cutillo, L., Molva, R., Strufe, T.: Privacy preserving social networking through decentralization. In: WONS 2009 (2009)
20. Desmedt, Y., Frankel, Y.: Threshold cryptosystems. In: Brassard, G. (ed.) CRYPTO 1989. LNCS, vol. 435, pp. 307-315. Springer, Heidelberg (1990)
21. Dodis, Y., Katz, J., Xu, S., Yung, M.: Key-insulated public key cryptosystems. In: Knudsen, L.R. (ed.) EUROCRYPT 2002. LNCS, vol. 2332, pp. 65-82. Springer, Heidelberg (2002)
22. Douceur, J.: The sybil attack. In: Proc. IPTPS 2001, pp. 251-260 (2001)
23. Fiat, A., Shamir, A.: How to prove yourself: practical solutions to identification and signature problems. In: Odlyzko, A.M. (ed.) CRYPTO 1986. LNCS, vol. 263, pp. 186-194. Springer, Heidelberg (1987)
24. Ibarra, O., Kim, C.: Fast approximation for the knapsack and sum of subset problems. Journal of ACM 22(4), 463-468 (1975)
25. Li, N., Mitchell, J., Winsborough, W.: Design of a role-based trust-management framework. In: Proc. IEEE Symposium on Security and Privacy, pp. 114-130 (2002)
26. Marks, K.: Social web q&a with googles kevin marks (February 23, 2009), http://www.techcrunchit.com/2009/02/23/social-web-qa-with-googleskevin- marks/
27. Ostrovsky, R., Yung, M.: How to withstand mobile virus attacks (extended abstract). In: Proc. ACM Principles of Distributed Computing, pp. 51-59 (1991)
28. Ristenpart, T., Tromer, E., Shacham, H., Savage, S.: Hey, you, get off of my cloud! exploring information leakage in third-party compute clouds. In: CCS 2009 (2009)
29. De Santis, A., Di Crescenzo, G., Persiano, G., Yung, M.: On monotone formula closure of SZK. In: Proc. 35th IEEE Symp. on Foundations of Comp. Science
30. Santos, N., Gummadi, K., Rodrigues, R.: Towards trusted cloud computing. In: Proc. HotCloud 2009 (2009)
31. Shakimov, A., Varshavsky, A., Cox, L., Cáceres, R.: Privacy, cost, and availability tradeoffs in decentralized osns. In: Proc. WOSN 2009, pp. 13-18 (2009)
32. Shamir, A.: How to share a secret. C. ACM 22, 612-613 (1979)
33. Shamir, A.: Identity-based cryptosystems and signature schemes. In: Blakely, G.R., Chaum, D. (eds.) CRYPTO 1984. LNCS, vol. 196, pp. 47-53. Springer, Heidelberg (1985)
34. Stutzbach, D., Rejaie, R.: Understanding churn in peer-to-peer networks. In: Proc. ACM Conference on Internet Measurement (IMC 2006), pp. 189-202 (2006)
35. TCG, https://www.trustedcomputinggroup.org/
36. Wood, T., Shenoy, P., Gerber, A., Ramakrishnan, K., Van der Merwe, J.: The case for enterprise-ready virtual private clouds. In: Proc. HotCloud 2009 (2009)
37. Xu, S., Li, X., Parker, P.: Exploiting social networks for threshold signing: Attack-resilience vs. availability. In: Proc. ACM ASIACCS 2008, pp. 325-336 (2008)
38. Xu, S., Yung, M.: SocialClouds: Concept, Security Architecture and Some Mechanisms. Full version of the present paper, www.cs.utsa.edu/~shxu
39. Yu, H., Kaminsky, M., Gibbons, P., Flaxman, A.: Sybilguard: defending against sybil attacks via social networks. In: Proc. ACM SIGCOMM 2006, pp. 267-278 (2006)