Enhanced Security for Public Cloud Storage with Honey Encryption
Recently, the cloud technologies have become a cost-effective data solution among the individuals, government agencies and corporates. However, there is a rising concern on its security. While recent cloud solutions focus on the password-based cryptography, in which a secret key is derived from user’s password, password-based authentication cannot efficiently withstand to password-based attack such as brute-force and dictionary attacks. First, this paper reviews the attack models and security defenses mechanisms of existing public cloud service providers. Subsequently, this paper extends the Honey Encryption scheme to enhance the file storage security on the public cloud computing. The Honey Encryption provides the encrypted data an additional protection layer by providing fake data in response to every incorrect guess on the user’s password. These fake data resemble the actual data and indistinguishable from the attacker’s perspective, therefore hardening the complexity of password guessing.
No Reference information available - sign in for access.
No Citation information available - sign in for access.
No Supplementary Data.
No Article Media
Document Type: Research Article
Affiliations: School of Computer Sciences, Unversiti Sains Malaysia, Penang, 11800, Malaysia
Publication date: May 1, 2017
More about this publication?
- ADVANCED SCIENCE LETTERS is an international peer-reviewed journal with a very wide-ranging coverage, consolidates research activities in all areas of (1) Physical Sciences, (2) Biological Sciences, (3) Mathematical Sciences, (4) Engineering, (5) Computer and Information Sciences, and (6) Geosciences to publish original short communications, full research papers and timely brief (mini) reviews with authors photo and biography encompassing the basic and applied research and current developments in educational aspects of these scientific areas.
- Editorial Board
- Information for Authors
- Subscribe to this Title
- Ingenta Connect is not responsible for the content or availability of external websites