International Journal of Informative & Futuristic Research

Transcription

1 International Journal of Informative & Futuristic Research Volume 6 Issue 2 October 2018 ISSN : REVIEW OF AUTHORIZED AUDITING OF DYNAMIC BIG-DATA ON CLOUD Paper ID IJIFR/V6/ E2/ 010 Page No Subject Area Computer Engineering Rohit Patil1, Kailash Patidar2, 1, 2 U.G Student, Department of Computer Engineering Sri Satya Sai Institute of Science & Technology, Bhopal Abstract Cloud computing provides the services over the internet. It has the provision of facilitating users to store and access their data in and from server by sitting anywhere and on any device. Storing data in server also opens up so many security threats as data is accessed over internet and client has no direct control over data once uploaded into server. In computing the process of sharing data must be secure for the security reason. It includes it companies, business line, all online shopping sites including cell phone service providers etc. but in other hand storage capacity and security are increasing issues. Cloud users have no longer direct control over their data, which makes data security, one of the major concerns of using. Previous research work already allows data integrity to be verified without possession of the actual data file. The trusted third party known as auditor. The Previous system has many drawbacks regarding third party like any one can challenge to the service provider for proof of data integrity. Also it includes research in BLSS signature algorithm to supporting fully dynamic data updates. This algorithm is used to update an only fixed-sized block known as coarse-grained updates. In our paper, we have discussed the study of authorized auditing of dynamic big-data on. This is a system which support authorized auditing and finegrained update request. Thus, our system does not only increases security and flexibility but also providing a new big data application to all service providers for large data frequent small updates. Key Words : Cloud Computing, Big Data, Data Security, Authorized Auditing, FineGrained Dynamic Data 1. INTRODUCTION Cloud computing is excruciating relate to one of the most authoritative innovations in information technology in recent years. A is a type distributed system consisting of a collection of interrelated and virtualized computers that are dynamically contingency and presented as one or more unified computing resources based on service-level agreements established through negotiation between the service provider and consumers. Cloud service is categorized into Infrastructure-as-a-service (Iaas), Software-as-a-service(Saas), Platform-as- 54 This work is published under Attribution-NonCommercial-ShareAlike 4.0 International License

2 a-service(paas).iaas is the way of providing on-demand computing resources like Server, storage array, virtualized data centres etc. PaaS is providing a higher level Software application which can be companionable to the different user s requirement. SaaS is the way of providing some specific applications as fully or partially remote services. It may include web based application or network interactions. In today s world of digitalization computing has occurred as a concept of handling big data. This paper focus on the nature, origin and security related issues of the Big Data. This offers power-full public services to users. Here Cloud based infrastructure, storage and network, high computing performance helps to manage the features of big data. The above services provided by CSS makes the user to be relaxed from burden of storing, managing and providing on -demand service to the client. So nowdays Cloud computing is in great demand. Data privacy/security is the major concerns in adoption of computing. User will lose direct control over their data by comparing conservative systems. Author will investigate the problem of integrity verification for big data storage in.the issues related to security, integrity and availability of data. There is no direct control of user on. But data integrity can be verified without possession of actual data. Verification done by a trusted third party (TPA) called data auditing. TPA can be anyone challenging the integrity of data stored in CSS. Our research work aim to add modification that can dramatically reduce communication overheads for verification of small updates. It not only enhance security and flexibility, but also significantly lower overheads for Big Data application with large no. of frequent small update such as application in social media and business transactions. 2. SURVEY REVIEW [1] Ralph C. Merkle proposed new scheme "Digital signature based on a conventional encryption function such as DES is described which is more secure as the basic function. Existing Research like "New direction in cryptography" in 1976 and "Making the digital signature legal and safeguard" by S. M. Lipton, S. M. Matyas in Feb Previous work of Ralph C. Merkle in 1982 "Secrecy, Authentication, and public key systems these allrely on conventional encryption functions like one-way-function. But no single among them are much succeed in providing the convenience of system based on more complex mathematical problem. Ralph C. Merkle provides advantage to reduce computational cost as compared with system which require modular arithmetic. The data encryption standard software implementation which runs faster than exponentiation modulo N, because of this digital signature system which is based on use of DES would get benefit from it. DES chips are already available at low cost of different manufacturer. New digital signature system is very fast when Retro fitted to a system that already has a DES chip. In this paper, they describe how new one time signature system can be used in a new way to provide a digital signature system that overcomes the limitation of previous. The general idea in this new system is to use an infinite tree of one time signature. [2] Suthan and Kesavaraja proposed scheme "Granule based File Storage System with Secure Transparent Availability". In this system, they focus on various security algorithms to provide security to the data that we store. The file is to be spitted into n 55

3 [3] [4] [5] [6] number of different particles and this particles be distributed within the system providing transparency to the user. The GFMS makes sure that the file is splitted and spread inside the system in such a way that, even if some part of the file is retrieved no information can be recognized. Three major issues: Spyware, Encryption, File splitting so for Security purpose-the file is encrypted with AES algorithm and the secure key is generated for AES File security by using merkledamagard hash construction. This hash key is used for AES Encryption process. Cong Wang, Qian Wang, Kui Ren and Wenjing Lou proposed system in which they focus on data storage security, which has always been very much important aspect of quality of service. To make sure the correctness of users data in the. And also an effective and flexible distributed scheme with two salient features, opposing to its predecessors. By utilizing the homomorphic token b with distributed verification of erasure-coded data, our scheme achieves the integration of storage correctness insurance and data error localization. Algorithms used-token Pre-computation, correctness verification & error localization, error recovery. Advantages are providing dynamic operations support and security strength against weak advisory. Suganya S, Mrs. Sumathi they proposed system in the recent years, the NetworkAttached Storage (NAS) and the Network File System (NFS) provide storage devices over the network so that user can access the storage devices through network connection.turner proposed a basic timestamp-based resequencer to deal with the cell out-of-order issue, when cells within a virtual circuit are allowed to take different paths in ATM switching systems. In each scheduling, the resequencer implements a smart contention resolution mechanism to select the oldest cell and then compares its age with a predefined threshold equal to the system delay upper bound. If the selected cell exceeds this age threshold, it will be sent without disturbing cell orders since all previously arrived cells have left the system. Henrion improved the timestamp-based resequencer by introducing time-wheel-like hardware which does not need to compare cells timestamps at output. It maintains an array of D pointer lists, where D is larger than delay upper bound at system measured by timeslots. Each pointer at the list stores location of a cell waiting for resequencing. At timeslot t, the pointer list at slot t modulo D is linked to the tail of the output cell list and removed from the array. After that, pointers of arrival cells at timeslot t are linked together and stored in this empty slot (t modulo D) of the array. This approach delays every cell by fixed D timeslots with O(1) complexity and strictly guarantees cell orders. Kaliski presented a proof of retrievability model. This scheme can only be applicable to static data storage for verifying the integrity of data. The main disadvantage of this model as it does not support public auditability. Extended research on this done by Shacham. Shacham, et al [3] provided a scheme with stateless verification and the design is an improved PoR scheme with full proofs of security in the security model. In this model they use publicly verifiable homomorphic authenticators built from BLS signatures based on which the proofs can be aggregated into a small authenticator value by using this public irretrievability is achieved. The main concern comes in front with 56

4 this is the authors only consider static data files which are not preferable because our main concern is about big data files. [7] Ateniese et al proposed an extended scheme based on POR and PDP support only partial data dynamics and supporting limited number of challenges. 3. NEED FOR THE NEW SYSTEM For marketing and research, many of the businesses use big data, but may not have the essential assets particularly from a security perspective. If a security break occurs to big data, it would result in even more severe legal consequences and reputational damage than at present. In this new era, many companies are using the technology to store and analyze peta bytes of data about the company, business and the customers. As a result, information sorting becomes even more critical. For making big data protected, techniques such as encryption, logging, and honey pot detection must be necessary. The challenge of detecting and preventing advanced threats and malicious intruders must be solved using big data style analysis. These methods help in detecting the threats in the premature stages using more sophisticated pattern analysis and analyzing multiple data sources. There should be stability between data privacy and national security. 4. PROPOSED SYSTEM AND METHODOLOGY Figure 1: System Architecture User: users, who have data to be stored in the and rely on the for data computation, consist of both individual consumers and organizations. Cloud Service Provider (CSP): a CSP, who has significant resources and expertise in building and managing distributed storage servers, owns and operates live Cloud Computing systems. Third Party Auditor (TPA): an optional TPA, who has expertise and capabilities that users may not have, is trusted to assess and expose risk of storage services on behalf of the users upon request. 57

5 5. CONCLUSION Today the example of big computing paradigm in computing is to store the big datasets. Important aspect for user is data security and privacy. Here, we discussed the study of Authorized Auditing of Dynamic Big-data on. System providing a formal analysis and ne-grained data updating. Purpose of the scheme is that fully sup-port authorized auditing and ne-grained data updating as per request. Based on the scheme we have also proposed modifications that are dramatically reduce communication overheads for verification of small updates. Also plan that for further investigate on the next step how to improve server side protection methods for data. 6. REFERENCES [1] Prasad Patel, Chaitanya P., Auditing authorization of big data on, IJCRT, Volume 6, Issue 2, [2] Juels and B.S. Kaliski Jr., Pors: Proofs of Retrievability for Large Files, In Pro. 14th ACM Conf. On Computer and Commun. Security (Ccs), 2007, Pp [3] H. Shacham and B. Waters, Compact Proofs of Retrievability, In Proc. 14th Int l Conf. On Theory and Appl. Of Cryptol. And Inf.Security (Asiacrypt), 2008, Pp [4] R.C. Merkle, A Digital Signature Based On A Conventional Encryption Function, In Proc. Int l Cryptol. Conf. On Adv. In Cryptol. (Crypto), 1987, Pp [5] Hadoop Mapreduce. [Online]. Available: [6] Openstack Open Source Cloud Software, Accessed On: March 25, [Online]. Available: [7] Armbrust, A.Fox, R.Griffith, A.D.Joseph, R.Katz, A.Konwinski, G.Lee,D.Patterson, A.Rabkin,I.Stocia, And M Zaharia A View Of Cloud Computing. Commum,Acm, Vol.53,No.4,Pp.50-58,Apr.2010 [8] Mr.Vinay Tila Patil & Gajendra Singh Chandel, Prof. (2014). Implementation of Tpa And Data Integrity In Cloud Computing Using Rsa Algorithm. International Journal of Engineering Trends and Technology / /Ijett-V12p215. [9] Vinay Tila Patil, Prof. Gajendra Singh Chandel, Applying Public Auditability For Securing Cloud Data From Modification Attack, Ijsrd - International Journal For Scientific Research & Development, Vol. 2, Issue 04, 2014, Issn (Online):

6 International Journal of Informative & Futuristic Research IJIFR Impact Factor (2016) = Volume 6, Issue 2, October 2018 This is certified that the paper entitled Review of authorized auditing of dynamic big-data on Authored by Rohit Patil U.G Student, Department of Computer Engineering Sri Satya Sai Institute of Science & Technology, Bhopal, India has been accepted & published online in IJIFR continuous 62nd edition Volume 6-Issue 2, October 2018 under Paper ID: IJIFR /V6/E2/10. The mentioned paper is accepted after rigorous evaluation through double blind peer reviewed process. Authorised Signature With Seal Dated : 29/10/2018

7 International Journal of Informative & Futuristic Research IJIFR Impact Factor (2016) = Volume 6, Issue 2, October 2018 This is certified that the paper entitled Review of authorized auditing of dynamic big-data on Authored by Kailash Patidar U.G Student, Department of Computer Engineering Sri Satya Sai Institute of Science & Technology, Bhopal, India has been accepted & published online in IJIFR continuous 62nd edition Volume 6-Issue 2, October 2018 under Paper ID: IJIFR /V6/E2/10. The mentioned paper is accepted after rigorous evaluation through double blind peer reviewed process. Authorised Signature With Seal Dated : 29/10/2018