On this page
Research Article | Open Access
Volume 12 2020 | None
CP-ABE-Based Strategies for Protecting Encrypted Cloud Data Against Economic Denial of Sustainability Attacks
Uma Rani Koppula,Venkataamarnadh Godugunuri, Mallampati Rakesh Chowdary
Pages: 1351-1359
Abstract
While cloud computing offers significant advantages, concerns about the security and privacy of sensitive data persist, primarily due to the lack of user-to-cloud control. To address confidentiality, data owners often outsource encrypted data rather than plaintext. Ciphertext-Policy Attribute-Based Encryption (CP-ABE) is a viable solution for enabling fine-grained, owner-centric access control when sharing these encrypted files. However, existing schemes fall short in safeguarding against various attacks. Notably, they do not empower cloud providers to verify whether a downloader has the necessary decryption rights, leading to potential vulnerabilities. This lack of verification allows malicious attackers to exploit the system by downloading large volumes of files, resulting in Economic Denial of Sustainability (EDoS) attacks that strain cloud resources and impose financial burdens on service payers. Additionally, the dual role of cloud providers as both the accountant and the payee raise transparency issues for data owners regarding resource consumption fees. To address these challenges in real-world public cloud storage environments, we propose a robust solution designed to protect encrypted cloud storage from EDoS attacks while ensuring resource consumption accountability. Our approach utilizes CP-ABE schemes in a black-box manner and adheres to arbitrary access policies defined by CP-ABE. We present two distinct protocols tailored for different scenarios and provide comprehensive performance and security analyses.
Keywords
Cloud Storage, Combined Compression, Data Access Control
PDF
65
Views
3
Downloads