Index Terms Authentication, Authentication technique, Cloud computing, Computing services, Multilevel authentication.

Transcription

1 Volume 5, Issue 4, April 015 ISSN: 77 18X International Journal of Advanced Research in Computer Science and Software Engineering Research Paper Available online at: Special Issue on Impact of Technology on Skill Development Conference Held at IETE Amravati Center, Maharashtra, India Multi-level Security for Accessing Distributed Organization Data Sneha K. Khodake, Prof. Maithili S. Deshmukh. Master of Engineering, P.R.M.I.T. & R. Badnera, India Abstract In multilevel to protect cloud services from unauthorized access, implement security measure to protect data of users stored in cloud environment. At present, is done in several ways: such as, textual, graphical, bio-metric, 3D password and third party. Simple approach for a secure is to use one or more of the above mentioned techniques in combination for multi-level, so that, the probability of breaking such a password is reduced to a large extent. Hence multi-level technique can be used for ensuring a more stringent. This work proposes a scheme in which process is carried out in two levels or multi-levels. In this system, activities take place in organization, team and user levels. First activity happens at organization level. It reads the password and checks to cloud access for organization and then it enters into a second level. The second activity happens at team level. It reads the team login details and checks for. It is a team activity, once done; it then enters into a user level. User level activity reads the information to check for the user permission and privileges. In this paper, details of proposed multilevel technique are presented along with the architecture, activities, data flows, and algorithms. Index Terms Authentication, Authentication technique, Cloud computing, Computing services, Multilevel. I. INTRODUCTION Cloud systems can be used to enable data sharing capabilities and this can provide an abundant of benefits to the user. There is currently a push for IT organizations to increase their data sharing efforts. According to a survey by Information, nearly all organizations shared their data somehow with 74 % sharing their data with customers and 64 % sharing with suppliers. A fourth of the surveyed organizations consider data sharing a top priority. The benefits organizations can gain from data sharing is higher productivity. With multiple users from different organizations contributing to data in the Cloud, the time and cost will be much less compared to having to manually exchange data and hence creating a clutter of redundant and possibly out-of-date documents [1]. Cloud computing technology is an open standard, service based, Internet-centric, safe, convenient data storage and network computing service []. Cloud computing is an internet-based model for enabling convenient, on-demand network access to a shared pool of configurable computing resources [3]. It provides various services over internet such as software, hardware, data storage and infrastructure. Cloud computing providers deliver the applications via internet, which are accessed from web browsers, desktop and mobile apps. Cloud Computing Technologies are grouped into 3 sections: they are, SaaS, IaaS and PaaS. SaaS (Software as a Service) is an on-demand application service. It delivers software as a service over the Internet. It eliminates the need of installing and running the application on the customer's own computers. PaaS (Platform as a Service) is an ondemand platform service to host customer application. PaaS is delivery of computing platforms and/or solution stack as a service, often consuming cloud infrastructure and sustaining cloud applications. It facilitates deployment of applications without the cost and complexity of buying and managing the underlying hardware and software layers. It improves the flexibility in having multiple platforms in business environment. IaaS (Infrastructure as a Service) is an on- demand infrastructure service. It delivers the computer infrastructure typically a platform virtualization environment as a service, along with raw (block) storage and networking. Rather than purchasing servers, software, data-center space or network equipment, clients can buy those resources as a fully outsourced service [4] [5]. In this paper, details of proposed multilevel technique are presented along with the architecture, activities, data flows, and algorithms. Cloud computing is an emerging, on-demand and internet- based technology. It provides variety of services over internet such as, software, hardware, data storage and infrastructure. This technology has been used by worldwide customers to improve their business performance. However, to utilize these services by authorized customer, it is necessary to have strict check. Authentication schemes are key techniques to verify the correctness of the identities of all announcement entities. Authentication is quite challenging and difficult in the case of Cloud Computing. In Cloud Computing, a third party is responsible for providing computational power, storage space and application 015, IJARCSSE All Rights Reserved Page 5

2 support etc. Every data which is used by a user is stored in III. LIMITATIONS OF EXISTING TECHNIQUES Cloud database. Cloud database is managed by third party Various approaches have been discussed in literature Cloud provider, so user hesitates to keep his data at Cloud review. As discussed in Section II, there are certain database. In order to utilize the resources of Cloud, user advantages and disadvantages of reviewed techniques. The has to confirm with some identity stating that it is valid disadvantages of various techniques can be categorize into person seeking permission to use their resources. If a user four parameters namely security from insider attack, requirements to use or control a remote server or process presence of control towards server or client, financial transactions, the user needs to pass the extra hardware and software needed and number of phase first [6] [7]. security tiers required. Table I. shows the comparison of various techniques based upon above parameters. II. LITRATURE REVIEW Dinesha H A Chori, Agrawal V K Chori [8],implemented multi-level technique for cloud computing services. Provides various internet based services, on demand services like software, hardware, server, infrastructure and data storage. To provide privacy services to the intended customer, it is a better option to use multi-level password generation and technique. This technique helps in generating the password in many levels of organization so that the strict and authorization is possible. The security levels of cloud environment can be further improved by multi-level of. Vishal saswade [9], proposed work tried to minimize the loop holes related to the security and the of the user in an organization by providing multi level (User ID, Password and MAC Address) encrypted in digital certificate. Cloud is a virtualized pool of computing resources. Cloud computing has been around for over some years in different forms. However the third generation trend in IT industry is now ruled over by cloud computing. Cloud computing is an Internet based resource sharing methodology where in data and resources are shared and integrity of data, resources have become prime concern. Access to intruders can be restricted by providing username and password as first level Cloud computing is an Internet based resource sharing methodology where in data and resources are shared and integrity of data, resources have become prime concern. Yogesh Patel, Nidhi Sethi [10], The proposed work aims to enhance authorization and process by using multilevel to protect cloud from malicious user and unauthorized access, implement security measure to protect data of users stored in cloud environment. It will also provide service level security. Also user based access control is applied over user's data so that user can grant, revoke sharing permission at any point according to individual user. The data is removed completely along with access permissions as soon as owner of file request's to remove the file. The web application is HTTPS enabled. The proposed scheme is resistant to security attacks in cloud computing environment. User needs to enter credentials sent to user when requested first time for each type of service request once per session. TABLE I COMPARISON OF VARIOUS AUTHENTICATION TECHNIQUES Scheme Auth n- ticati on using singl e sign on -level Strong user Strong PAS AQP Architecture based on proactive model Multilevel technique Security from insider attack Presence of authenticatio n control towards Extra H/W And S/W Neede d 1 CLIENT/ CLIENT/. of Sec urit y leve l 1 MORE THAN 015, IJARCSSE All Rights Reserved Page 6

3 IV. CLOUD COMPUTING AND MULTI LEVEL AUTHENTICATION A. Cloud computing Cloud computing has emerged as an innovative and disruptive technology for ALL industry. Cloud computing is the delivery of computing services over the Internet. Cloud services allow individuals and businesses to use software and hardware that are managed by third parties at remote locations. Examples of cloud services include online file storage, social networking sites, webmail, and online business applications. The cloud computing model allows access to information and computer resources from anywhere that a network connection is available. Cloud computing provides a shared pool of resources, including data storage space, networks, computer processing power, and specialized corporate and user applications. B. Multilevel In this technique we can authenticates the data at multiple levels. It generate password at multiple levels and then concatenates them into single password. Multilevel=> password is entre in stages. Multidimensional=> entire password is must be entered in a single stage. Fig.1: Architecture diagram of multi-level system V. PROPOSED MULTILEVEL AUTHENTICATION TECHNIQUE FOR SECURING ORGANIAZATIONAL DATA This technique authenticates the cloud access in multiple levels. It generates the password and concatenates the generated password at multiple levels. Based on the leaf level concatenated password, one can access the cloud services provided that the password is successful in all the previous levels. Fig. 1 shows that the architecture of multilevel password generation technique. This technique has two separate entities: i) Cloud service provider, who provides the cloud services and ii) Authenticated client organizations that access the cloud services (Before using cloud services, company confirms with service agreement and other formal procedure from cloud vendors). This architecture helps in checking the against the services and privileges. It also helps to ensure which customer has what kind of privileges to use cloud services. This is evaluated by multiple levels s. First level of is organization level password /generation. It is for ensuring the cloud access from cloud vendor. If unauthenticated organization or hackers tries to access the cloud services, they are going to terminate in this level itself. Second level of is a team level password / generation. It is to authenticate the team for particular cloud service. Like this, system can have third, fourth, fifth etc level. Finally, the last level will be the user level password /generation, which ensures that customer/end user has particular privileges and permission. Fig. : Activity diagram to generate multi-level password Fig briefs the activities of multi-level system. Authentication activities take place in organization, team and user levels. First activity happens at organization level. It reads the password and checks to authenticate the organization for cloud access and then it enters into a second level. The second activity happens at team level. It reads the team login details and checks for. It is a team activity, once done; it then enters into a user level. User level activity reads the information to check for the user permission and privileges. VI. PROCESS DETAILED DESIGN OF MULTI- LEVEL AUTHENTICATION This section presents the data flow diagram and proposed algorithm of multi-level password generation technique discussed in Fig 3 shows the DFD Level 0 for multi-level password generation and 015, IJARCSSE All Rights Reserved Page 7

4 system. Password generation will happen between the If PA is authenticated user cloud service provider and cloud customer and then the Then password gets authenticated while accessing the cloud Password = Concatenate L0, L1.Ln service. Fig 4 shows the DFD level 1 for the multi-level If password privileged authenticated then system. This DFD describes detailed flow Then of password process. Provide access to the data in the cloud. Else Go to step 6 End Step 6: Exit Fig. 3: Data Flow Diagram Level 0 to shows the Overview of multi-level. Fig. 4: Data Flow Diagram Level 1 to shows the multilevel process. VII. PROPOSED ALGORITHAM A. Algorithm for multilevel password The algorithm for the complete multi-level password technique for securing organizational data is discussed in this section. Important notations being used in the algorithms are SA-service, TA- team and PA- privilege. Initially, the organizational data is processed, routed and uploaded to the servers of the cloud which provide access only to authenticated users. For this purpose, we have proposed Multi-level technique. Multi-level system reads the details given by organization, team and user and produces the password output at different levels. These are discussed as follows: SA - Organization level password generation Authentication at level 0. If SA is authenticated organization then TA - Team level password generation Authentication at level 1. If TA is authenticated then. PA User level password generation Authentication at level n. VIII. DESIRED IMPLICATIONS The implication of the current study work can be stated as.. This technique authenticates data at multiple levels so, generates passwords at multiple levels and then concatenates them into one single password. This password is generated with the help of hash function which provide high security. Authentication activities take place in organization, team and user levels. User has to go through different levels of the, First will ask for the user id and password which defines that user is authenticated or not, second level will assign the number of resources for team member and last one defines the access rights for the resources. It reads the password and checks to authenticate the organization for cloud access. Providing different password at different levels of management, developer and user according to their accessing rights. Also providing data sharing, symmetric key(aes) & asymmetric key(rsa) and its combination for data encryption technique for the purpose of improving data security. IX. CONCLUSION Cloud computing provides various internet-based, on demand services like software, hardware, server, infrastructure and data storage. To provide privacy services to the intended customer, it is a better option to use multi-level password generation and technique. This technique helps in generating the password in many levels of organization so that the strict and authorization will be possible. As here we are going to accept different types of password like SA, TA and PA then it will going to provide different types of data services and data access to organization. In terms of performance, multilevel technique no doubt takes slightly higher CPU time, but this slight difference is in milliseconds, which is negligible and can be overlooked in case of Cloud Computing which provides high processing power, storage capacity, security and scalability. ACKWLEDGMENT I take this opportunity of thanking my guide Prof. Maithili S. Deshmukh, Assistant Professor Department of Information Tech nology Engineering, P.R.M.I.T.& R, Badnera, Amravati. for her indispensable guidance, generous help, perpetual encouragement, constant attention offered throughout in preparation of this paper. 015, IJARCSSE All Rights Reserved Page 8

5 REFERENCES [1] Mell P, Grance T (01) The NIST definition of Miss. Sneha K. Khodake Author is student cloud computing. NIST Spec Publ with Department of Information Technology, 800:145.National Institute of Standards and P.R.M.I.T.&R.,Badnera. Technology, U.S.Department of Commerce. Source: Prof. Miss. Maithili S. Deshmukh Author is 145/SP pdf. Accessed on Oct 01 Assistant Professor with Department of [] Bo Wang, HongYu Xing IEEE - The Application Information Technology, of Cloud Computing in Education P.R.M.I.T.&R.,Badnera. Informatization, Modern Educational Tech... center. [3] Cavoukian Privacy in the clouds, Identity Inf Soc 1(1):89-108, 008. [4] Fawaz A. Alsulaiman and Abdulmotaleb El Saddik, Three-Dimensional Password for More Secure Authentication, IEEE, Last Updated 6 Feb 008. [5] Cloud Computing services & comparisons 0Cloud%0computing% 0services.pdf [6] N.L. Clarke and S.M. Furnell, Advanced user for mobile devices, Computer & Security, pp ,006. [7] A User Identity Management Protocol for Cloud Computing Paradigm Safiriyu Eludiora1, Olatunde Abiona, Ayodeji Oluwatope1, Adeniran Oluwaranti1, Clement Onime3,Lawrence Kehinde apered in Int. J. Communications, Network and System Sciences, 011, 4, [8] Dinesha H. A. CORI, Agrawal V. K. CORI Multi-level Authentication Technique for Accessing Cloud Services, IEEE , Feb 01. [9] Vishal sasawde, Technologies cloud system, [10] Yogesh Patel1, Nidhi Sethi:"Enhancing Security in Cloud Computing Using Multilevel Authentication",International Journal of Electrical Electronics & Computer Science Engineering Volume 1, Issue 1 (February 014), ISSN : , IJARCSSE All Rights Reserved Page 9