Data security in cloud computing

Handbook on Securing Cyber-Physical Critical Infrastructure

Volumn , Issue , 2012, Pages 389-410

  Yu, Shucheng ^a   Lou, Wenjing ^b   Ren, Kui ^c  

^a University of Arkansas at Little Rock   (United States)

^b Illinois at Singapore Pte Ltd   (United States)

^c Illinois Institute of Technology   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

EID: 84884004936     PISSN: None     EISSN: None     Source Type: Book    
DOI: 10.1016/B978-0-12-415815-3.00015-7     Document Type: Chapter

References (63)

1. M. Armbrust, A. Fox, R. Griffith, A.D. Joseph, R.H. Katz, A. Konwinski, et al., Above the clouds: a Berkeley view of cloud computing. Tech. rep., University of California, Berkeley (February 2009).
2. The nist definition of cloud computing. http://csrc.nist.gov/groups/SNS/cloud-computing/cloud-def-v15.doc.
3. Parkhill D. The Challenge of the Computer Utility 1966, Addison-Wesley.
4. The health insurance portability and accountability act of 1996 (hipaa)., 1996, (accessed October, 2011). http://www.hhs.gov/ocr/privacy/.
5. Ristenpart T., Tromer E., Shacham H., Savage S. Hey, you, get offof my cloud: exploring information leakage in third-party compute clouds November 2009.
6. Introducing Blue Pill., (accessed October, 2011). http://theinvisiblethings.blogspot.com/2006/06/introducing-blue-pill.htm l.
7. Blue Pill (malware)., (accessed October, 2011). http://en.wikipedia.org/wiki/Blue_Pill_(malware).
8. Anderson R.J., Kuhn M.G. Low cost attacks on tamper resistant devices April 1997.
9. Boneh D., Gentry C., Waters B. Collusion resistant broadcast encryption with short ciphertexts and private keys August 2005.
10. Goodrich M., Sun J., Tamassia R. Efficient tree-based revocation in groups of low-state devices August 2004.
11. Naor D., Naor M., Lotspiech J. Recovation and tracing schemes for stateless receivers August 2001.
12. Boneh D., Franklin M.K. An efficient public key traitor tracing scheme August 1999.
13. Boneh D., Sahai A. BrentWaters: fully collusion resistant traitor tracing with short ciphertexts and private keys May-June 2006.
14. Chor B., Fiat A., Naor M. Tracing traitors August 1994.
15. Kiayias A., Yung M. Traitor tracing with constant transmission rate April-May 2002.
16. Yu S., Ren K., Lou W., Li J. Defending against key abuse attacks in KP-ABE enabled broadcast systems September 2009.
17. Agrawal R., Srikant R., Xu Y. Order-preserving encryption for numeric data June 2004.
18. Bellare M., Boldyreva A., O'Neill A. Deterministic and efficiently searchable encryption August 2007.
19. Boneh D., Waters B. Conjunctive, subset, and range queries on encrypted data 2007, 535-554.
20. Curtmola R., Garay J.A., Kamara S., Ostrovsky R. Searchable symmetric encryption: improved definitions and efficient constructions October-November 2006.
21. Goh E.J. Secure indexes, Cryptology ePrint Archive (accessed October, 2011). http://eprint.iacr.org/2003/216.
22. Song D., Wagner D., Perrig A. Practical techniques for searches on encrypted data May 2000.
23. Homomorphic Encryption. (accessed October, 2011). http://en.wikipedia.org/wiki/Homomorphic_encryption.
24. Bellare M., Ristenpart T., Rogaway P., Stegers T. Format-Preserving Encryption. Lecture Notes in Computer Science 2009, 5867.
25. C. Gentry, A fully homomorphic encryption scheme (2009), PhD Thesis.
26. Machanavajjhala A., Kifer D., Gehrke J., Venkitasubramaniam M. l-diversity: privacy beyond k-anonymity. TKDD 2007.
27. Ciriani V., De Capitani di Vimercati S., Foresti S., Samarati P. k-Anonymity. Secure Data Management in Decentralized Systems 2007, Springer-Verlag. T. Yu, S. Jajodia (Eds.).
28. Li N., Li T., Venkatasubramanian S. t-closeness: Privacy beyond k-anonymity and l-diversity April 2007.
29. Samarati P. Protecting respondents' identities in microdata release. IEEE Trans. Knowl. Data Eng. 2001, 13(6):1010-1027.
30. Sweeney L. k-anonymity: a model for protecting privacy. Int. J. Uncertain. Fuzziness Knowledge-based Syst. 2002, 10(5):557-570.
31. Emc, information-centric security, (accessed October, 2011). http://www.idc.pt/resources/PPTs/2007/IT&Internet_Security/12.EMC.pd f.
32. Ateniese G., Pietro R.D., Mancini L.V., Tsudik G. Scalable and efficient provable data possession September 2008.
33. Perrig A., Song D., Tygar D. Elk, a new protocol for efficient large-group key distribution May 2001.
34. Hash Tree., (accessed October, 2011). http://en.wikipedia.org/wiki/Hash_tree.
35. Wang Q., Wang C., Li J., Ren K., Lou W. Enabling public verifiability and data dynamics for storage security in cloud computing September 2009.
36. Ateniese G., Burns R., Curtmola R., Herring J., Kissner L., Peterson Z., Song D. Provable data possession at untrusted stores October 2007.
37. Shacham H., Waters B. Compact proofs of retrievability December 2008.
38. Juels A., Burton J., Kaliski S. Pors: proofs of retrievability for large files October 2007.
39. Dodis Y., Vadhan S.P., Wichs D. Proofs of retrievability via hardness amplification May 2009.
40. Boneh D., Lynn B., Shacham H. Short signatures from the Weil pairing. Cryptology 2004, 17(4):297-319.
41. Shah M.A., Baker M., Mogul J.C., Swaminathan R. Auditing to keep online storage services honest May 2007.
42. Shah M.A., Swaminathan R., Baker M. Privacy-Preserving Audit and Extraction of Digital Contents, Cryptology ePrint Archive (2008) http://eprint.iacr.org/2008/186.
43. Wang C., Wang Q., Ren K., Lou W. Ensuring data storage security in cloud computing July 2009.
44. Wang Q., Wang C., Li J., Ren K., Lou W. Enabling public verifiability and data dynamics for storage security in cloud computing September 2009.
45. Erway C., Kupcu A., Papamanthou C., Tamassia R. Dynamic provable data possession November 2009.
46. Role Based Access Control. (accessed October, 2011). http://csrc.nist.gov/rbac/rbac-std-ncits.pdf.
47. De Capitani di Vimercati S., Foresti S., Jajodia S., Paraboschi S., Samarati P. Over-encryption: management of access control evolution on outsourced data September 2007.
48. Kallahalla M., Riedel E., Swaminathan R., Wang Q., Fu K. Scalable secure file sharing on untrusted storage March-April 2003.
49. Goh E., Shacham H., Modadugu N., Boneh D. SiRiUS: Securing remote untrusted storage February 2003.
50. Ateniese G., Fu K., Green M., Hohenberger S. Improved proxy re-encryption schemes with applications to secure distributed storage February 2005.
51. Yu S., Wang C., Ren K., Lou W. Achieving secure, scalable, and fine-grained data access control in cloud computing March 2010.
52. Goyal V., Pandey O., Sahai A., Waters B. Attribute-based encryption for fine-grained access control of encrypted data October-November 2006.
53. Blaze M., Bleumer G., Strauss M. Divertible protocols and atomic proxy cryptography May-June 1998.
54. The HIPAA privacy rule and electronic health information exchange in a networked environment: individual choice. 2008, (accessed October, 2011). http://www.hhs.gov/ocr/privacy/hipaa/understanding/special/healthit/indi vidualchoice.pdf.
55. Federal Information Security Management Act. (accessed October, 2011). http://csrc.nist.gov/drivers/documents/FISMA-final.pdf.
56. Sarbanes-Oxley Act. (accessed October, 2011). http://en.wikipedia.org/wiki/Sarbanes-Oxley_Act.
57. SAS 70 Overview. ,(accessed October, 2011). http://sas70.com/sas70_overview.html.
58. Amazon Web Services., (accessed October, 2011). http://aws.amazon.com.
59. Microsoft Azure. (accessed October, 2011). http://www.microsoft.com/windowsazure.
60. Google App Engine. (accessed October, 2011). http://code.google.com/appengine.
61. Amazon Web Services: Overview of Security Processes., (accessed October, 2011). http://awsmedia.s3.amazonaws.com/pdf/AWS_Security_Whitepaper.pdf.
62. Kaufman C., Venkatapathy R. Windows Azure Security Overview (accessed October, 2011). http://www.globalfoundationservices.com/security/documents/WindowsAzureS ecurityOverview1_0Aug2010.pdf.
63. Security Whitepaper: Google Apps Messaging and Collaboration Products. (accessed October, 2011). http://static.googleusercontent.com/external_content/untrusted_dlcp/www. google.com/en/us/a/help/intl/en-GB/admins/pdf/ds_gsa_apps_whitepaper_020 7.pdf.