Two Step Factor Based Authentication Control to Access Cloud Services
Main Article Content
Abstract
The innumerable points of interest of distributed computing have conveyed an enormous change to the way of life and the best approach to adapt to the world today, yet the cloud needs to achieve development. Be that as it may, the primary boundary to it's across the board appropriation is the security and protection issues. So as to make and keep up common trust among the clients and the cloud specialist co-ops, a well-characterized trust establishment ought to be executed. The information put away in the cloud remotely by the singular client or an association, so they lost control over the information, in this way making a security issue. The most difficult and hot research region in distributed computing now daily is the information security and access control. A powerful measure to ensure distributed computing assets and administrations in the begin is to execute an entrance control system. In this paper, the highlights of different access control systems are examined, and a novel structure of access control is proposed for distributed computing, which gives a multi-step and multifaceted confirmation of a client. The model proposed is an efficient and provably secure arrangement of access control for remotely facilitated applications.
Article Details
This work is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License.
IJCERT Policy:
The published work presented in this paper is licensed under the Creative Commons Attribution 4.0 International (CC BY 4.0) license. This means that the content of this paper can be shared, copied, and redistributed in any medium or format, as long as the original author is properly attributed. Additionally, any derivative works based on this paper must also be licensed under the same terms. This licensing agreement allows for broad dissemination and use of the work while maintaining the author's rights and recognition.
By submitting this paper to IJCERT, the author(s) agree to these licensing terms and confirm that the work is original and does not infringe on any third-party copyright or intellectual property rights.
References
L. M. Vaquero, L. Rodero-Merino, J. Caceres and M. Lindner, "A break in the clouds: towards a cloud definition," ACM SIGCOMM Computer Communication Review, vol. 39, no. 1, (2008), pp. 50-55.
S. Ullah and Z. Xuefeng, "Cloud Computing Research Challenges," In Proceedings of 5th IEEE International Conference on Biomedical Engineering and Informatics, (2012), pp. 1397-1401.
S. Yu, C. Wang, K. Ren and W. Lou, "Achieving secure, scalable, and fine-grained data access control in cloud computing," In INFOCOM, 2010 Proceedings IEEE, IEEE, (2010), pp. 1-9.
L. Yousef, M. Butrico and D. Da Silva, "Toward a Unified Ontology of Cloud Computing," Grid Computing Environments Workshop, GCE '08, (2008), pp. 1-10.
Z. Shen and Q. Tong, "The Security of Cloud Computing System enabled by Trusted Computing Technology," In Proceedings of 2nd International Conference on Signal Processing Systems, (2010), pp. 11- 15.
R. L. Grossman, "The Case for Cloud Computing," IT Professional, vol. 11, no. 2, (2009), pp. 23-27.
S. Ullah, Z. Xuefeng and Z. Feng, "TCloud: Challenges and Best Practices for Cloud Computing," International Journal of Engineering Research and Technology, vol. 1, no. 9, (2012), pp. 01-05.
S. Subashini and V. Kavitha, "A survey on security issues in service delivery models of cloud computing", Journal of Network and Computer Applications, vol. 34, no. 1, (2011), pp. 1-11.
Di Vimercati, S. De Capitani, S. Foresti, S. Jajodia, S. Paraboschi and P. Samarati, "A data outsourcing architecture combining cryptography and access control", In Proceedings of the 2007 ACM workshop on Computer security architecture, ACM, (2007), pp. 63-69.
W. Wang, L. Zhiwei, R. Owens and B. Bhargava, "Secure and efficient access to outsourced data", In Proceedings of the 2009 ACM workshop on Cloud computing security, ACM, (2009), pp. 55-66.
S. Kamara and K. Lauter, "Cryptographic cloud storage", Financial Cryptography and Data Security, (2010), pp. 136-149.
J. Dai and Q. Zhou, "A PKI-based mechanism for secure and efficient access to outsourced data", In Networking and Digital Society (ICNDS), 2010 2nd International Conference on, vol. 1, (2010), pp. 640- 643, IEEE.
G. Zhao, X. Hu, Y. Li and L. Du, "Implementation and testing of an identity-based authentication system", In Computing, Communication, Control, and Management, 2009, CCCM 2009, ISECS International Colloquium on, vol. 4, IEEE, (2009), pp. 424-427.
E. -J. Yoon and K. -Y. Yoo, "Robust id-based remote mutual authentication with key agreement scheme for mobile devices on ecc", InComputational Science and Engineering, 2009, CSE'09, International Conference on, vol. 2, IEEE, (2009), pp. 633-640.
J. Wiebelitz, S. Piger, C. Kunz and C. Grimm, "Transparent identity-based firewall transition for eScience", In E-Science Workshops, 2009 5th IEEE International Conference on, IEEE, (2009), pp. 3-10.
D. Zissis and D. Lekkas, "Addressing cloud computing security issues", Future Generation Computer Systems, vol. 28, no. 3, (2012), pp. 583-592.
L. Rodero-Merino, L. M. Vaquero, E. Caron, A. Muresan and F. Desprez, "Building safe PaaS clouds: A survey on security in multitenant software platforms", Computers & Security, (2011).
H. Li, Y. Dai, L. Tian and H. Yang, "Identity-based authentication for cloud computing", Cloud Computing, (2009), pp. 157-166.
G. Miklau and D. Suciu, "Controlling access to published data using cryptography", In Proceedings of the 29th international conference on Very large data bases, vol. 29, VLDB Endowment, (2003), pp. 898-909.
D. Naor, A. Shenhav and A. Wool, "Toward securing untrusted storage without public-key operations", In Proceedings of the 2005 ACM workshop on Storage security and survivability, ACM, (2005), pp. 51-56.
E. -J. Goh, H. Shacham, N. Modadugu and D. Boneh, "SiRiUS: Securing remote untrusted storage", NDSS, (2003).
H. Ahn, H. Chang, C. Jang and E. Choi, "User Authentication Platform using Provisioning in Cloud Computing Environment", Advanced Communication and Networking, (2011), pp. 132-138.
G. Ateniese, K. Fu, M. Green and S. Hohenberger, "Improved proxy re-encryption schemes with applications to secure distributed storage", NDSS, (2005).
R. Blom, "An optimal class of symmetric key generation systems", In Advances in Cryptology, Springer Berlin/Heidelberg, (1985), pp. 335-338.
FARZANA, A.HARSHAVARDHAN,”Integrity Auditing for Outsourced Dynamic Cloud Data with Group User Revocation. “International Journal of Computer Engineering in Research Trends., vol.2, no.11, pp. 877-881, 2015.
N. Meghasree,U.Veeresh and Dr.S.Prem Kumar,”Multi Cloud Architecture to Provide Data Privacy and Integrity. “International Journal of Computer Engineering in Research Trends., vol.2, no.9, pp. 558-564, 2015.
A.Shekinah prema sunaina,”Decentralized Fine-grained Access Control scheme for Secure Cloud Storage data. “International Journal of Computer Engineering in Research Trends., vol.2, no.7, pp. 421-424, 2015.
P.Rizwanakhatoon and Dr.C.MohammedGulzar,”SecCloudPro:A Novel Secure Cloud Storage System for Auditing and Deduplication. ”International Journal of Computer Engineering in Research Trends., vol.3, no.5, pp. 210-215, 2016.
B.SameenaBegum,.RaghaVardhini,”Augmented Privacy-Preserving Authentication Protocol by Trusted Third Party in Cloud. “International Journal of Computer Engineering in Research Trends., vol.2, no.5, pp. 378-382, 2015.