Attacks by modern adversaries regularly targets multi-tenant cloud environments which can create problems for the protection of data and its control. Even though multi-tenancy helps organizations by making it efficient and easy to scale, there are important security problems that come with it, for example, inter-tenant data leaks, gaining unauthorized privileges, access to data not allowed and mistakes in single key management. Overcoming these problems needs a new security concept that manages access control carefully and makes auditing less dependent on any one party. Combining blockchain technology with attribute-based encryption (ABE) enables true data integrity, transparency and access control that do not depend on third-party organizations. We are proposing a hybrid security approach that pairs ciphertext-policy attribute-based encryption (CP-ABE) with blockchain consensus mechanisms to enforce secure and uniform access policies for resources in multi-tenancy cloud environments. Today, they count on distributed ledger techniques, CP-ABE primitives, attribute-based access trees, intrusion detection systems powered by entropy and evaluation measures that monitor a user’s online behaviour. Both a basic CP-ABE and an enhanced blockchain-connected one are used in a simul-ation to observe differences in performance. Performance is studied by checking encryption and decryption latency, throughput of the system, variations in trust scores, reliability of policy usage and resistance to collusion processes. The findings state that the blockchain enhanced ABE model is better at preserving user privacy, takes less time under authorized circumstances and is more resistant against unauthorized access. In addition, the simulations used show that the framework can adjust to different tenant patterns and ensure policies are followed and audits are possible .

错误:搜索内容不能为空,请输入英文关键词
错误:关键词超出字数限制,请精简
高级检索

Enhancing Cyber Security, Data Confidentiality, and Access Control in Multi-Tenant Cloud Infrastructures Through Blockchain-Integrated Attribute-Based Encryption Mechanisms

  • Samara Simha Reddy Yerramada,
  • Rakesh Kumar Pal,
  • Tanvi Desai,
  • Ankur Tiwari

摘要

Attacks by modern adversaries regularly targets multi-tenant cloud environments which can create problems for the protection of data and its control. Even though multi-tenancy helps organizations by making it efficient and easy to scale, there are important security problems that come with it, for example, inter-tenant data leaks, gaining unauthorized privileges, access to data not allowed and mistakes in single key management. Overcoming these problems needs a new security concept that manages access control carefully and makes auditing less dependent on any one party. Combining blockchain technology with attribute-based encryption (ABE) enables true data integrity, transparency and access control that do not depend on third-party organizations. We are proposing a hybrid security approach that pairs ciphertext-policy attribute-based encryption (CP-ABE) with blockchain consensus mechanisms to enforce secure and uniform access policies for resources in multi-tenancy cloud environments. Today, they count on distributed ledger techniques, CP-ABE primitives, attribute-based access trees, intrusion detection systems powered by entropy and evaluation measures that monitor a user’s online behaviour. Both a basic CP-ABE and an enhanced blockchain-connected one are used in a simul-ation to observe differences in performance. Performance is studied by checking encryption and decryption latency, throughput of the system, variations in trust scores, reliability of policy usage and resistance to collusion processes. The findings state that the blockchain enhanced ABE model is better at preserving user privacy, takes less time under authorized circumstances and is more resistant against unauthorized access. In addition, the simulations used show that the framework can adjust to different tenant patterns and ensure policies are followed and audits are possible .