Paper 2018/287

Secure Cloud Storage Scheme Based On Hybrid Cryptosystem

Atanu Basu and Indranil Sengupta

Abstract

This paper presents a secure cloud storage scheme based on hybrid cryptosystem, which consists of Elliptic Curve Cryptography (ECC), Advanced Encryption Standard (AES), and one-way hash function. Here, the data owner exports large volume of encrypted data to a cloud storage provider. The exported encrypted data is over-encrypted by the cloud storage provider, and the data is sent to the requesting user. An existing hybrid cryptosystem based dynamic key management scheme with hierarchical access control has been incorporated in our scheme. The key management scheme groups users in various security classes, and helps to derive efficiently, as well as directly the secret keys of the lower order security classes. The incorporated key management scheme in our proposed scheme incurs low computational, communication, and storage overheads for key generation, and derivation purposes. The security analysis, and the simulation results run on the AVISPA tool (formal security verification tool) show that the proposed scheme is protected from the adversaries. This scheme is useful in `owner-write-users-read' application areas, and the end users may use resource-constrained wireless mobile devices securely in this proposed scheme.

Metadata
Available format(s)
PDF
Publication info
Preprint. MINOR revision.
Keywords
Cloud storageECC based public key cryptographyhybrid cryptosystemover-encryptionadversaryAVISPA tool.
Contact author(s)
atanu @ iitkgp ac in
History
2018-03-25: received
Short URL
https://ia.cr/2018/287
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2018/287,
      author = {Atanu Basu and Indranil Sengupta},
      title = {Secure Cloud Storage Scheme Based On Hybrid Cryptosystem},
      howpublished = {Cryptology {ePrint} Archive, Paper 2018/287},
      year = {2018},
      url = {https://eprint.iacr.org/2018/287}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.