enabling self auditing for mobile clients in cloud computing

More documents

Recommendations

Info

International Journal of Advanced Computer Technology (IJACT)ISSN:2319-7900download this template and replace the content with the textof your manuscript.Advantages and Disadvantages of Cloud ComputingStarting from tiny corporations to huge organizations, theinvestment value is saved [23, 24, 36, 42] by avoiding thehardware purchase, hardware maintenance, pricy softwaresystem license, software system maintenance, cooling products,storage and backup devices, value for electricity usage,operational value, upgrading value etc. Apart from this valuesaved, the cloud has few other advantages like high responsibilityand convenience, backup and recovery, device& location independence, easy accessibility to info and fastpreparation. All these advantage makes the cloud computinga grand success. Cloud has several benefits and conjointly ithas few disadvantages. The two big disadvantages of cloudare; Technical Problems and Security. Even though thecloud offers a lot of facility to the users and build their lifestraightforward, some technical problems might produceinconvenience to the users. To access the cloud, Internetusage is should and therefore the problems associated withthe network might have an effect on the performance of thecloud severely. If the user uses mobile devices then severalreasons like signal strength, Bandwidth, battery backup andfrequent handoff might degrade the performance of thecloud dramatically [47, 48]. The security could be a hugedownside within the cloud computing. Because, all the sensitiveinformation’s of an organization or company shouldbe transferred over the Internet which might be a big risk.As shown in figure 1, the clients are ambiguous in choosingwhether the cloud is used or not, since cloud has both benefitsand downsides. Cloud helps the client to scale back theoperational value, preparation time and maintenance value.This reason makes the cloud computing a preferred one andplenty of corporations shifted to the cloud usage. Howeverthe large issue within the cloud computing is lack of managementand security. For this security downside, extra solutionsneed to be developed to form the cloud computing agrand success within the future.Figure 1: Cloud advantages and disadvantagesLiterature SurveyInternet is acting as a lane, where various technologiesdrive on it. Out of that cloud is the most recent technologyand almost all the large scale organizations enter into it. Thecloud has too many advantages as discussed in the previoussection and out of that, hardware and maintenance cost, accessibilityaround the globe, flexibility and highly automatesprocess are most important for the clients, since the hardwareor software up gradation seem to be a everyday headachefor the clients.The execution environment required for a client to developa web based application requires expensive hardware andsoftware support and this may require more time to setup.But by using the cloud one service can continue his workwithout the expensive purchase and time consuming setupby using PaaS of the cloud [7, 8, 17]. The infrastructure andexecution environment can be used by many clients simultaneouslyand managed by third party [10, 11, 18, 23].To make everything (Services) possible, available, manageableand reusable in the cloud, the virtualization techniqueplays a vital role. A single server in the cloud can provideINTERNATIONAL JOURNAL OF ADVANCE COMPUTER TECHNOLOGY | VOLUME 2, NUMBER 354
International Journal of Advanced Computer Technology (IJACT)ISSN:2319-7900multiple services in parallel to huge number of clients viathe virtualization technique [12, 13, 23]. The tools likeVMWare, Micorsoft Virtual PC, VirtualBox, Parallels, QE-MU etc. helps in virtualization of Operating Systems. Thecloud enables the centralization of resources, which is unsafesince the chances for cyber attacks increases. The possibilityfor the attack is more in cloud side because, the user of thecloud needs to send his identity over the Internet frequentlyfor accessing the services.The data security is also a challenging issue in cloudcomputing since all the data of an individual or organizationare centralized and kept in remote servers [14, 15, 19]. Toensure the data security, the strong encryption algorithmshas to be developed to overcome the security threads on storagesecurity. The cloud service provider has to limit theaccess over the file by allowing few actions related to managingthe files without any strict process and should be strictin actions like updating, reading and deleting of file. Thiswill optimize the performance as well as security. To keepthe cloud running smoothly, the multi level security is compulsoryat various levels i.e., network level [16], host level[25] and application level [14, 26, 27]. The basic securitymodels such as SQL Injection attack prevention, Cross SiteScripting (XSS) attack prevention, Man in the Middle attackprevention [20, 21, 32, 32, 37, 44] are not sufficient for thecloud to run seamlessly.In the Internet, it is common to have denial of service attacks[2, 3, 4, 18, 22, 23, 28] and cookies poisoning attacks[43]. To distinguish the human and machine virus in theInternet, the concept of captcha [5] was used by most of theservers. but recent virus and spams have the ability to breakthe captcha. So it is clear that, continuous research in thisfield is must to protect the future Internet oriented services.It is true that certain loopholes in the architecture makethe cloud computing vulnerable to the security threads inhigh probability [45, 46]. There is no guaranty that thecloud service provider could maintain our files on a singleserver or storage. The files may be split into many parts anddistributed over multiple servers to improve the speed viaparallelism. This scenario makes the cloud more vulnerableto the security related threads.Apart from security, cloud has other disadvantages likeperformance, latency [29] and reliability [24, 39]. The reasonfor the latency, poor performance and unreliability in theservices is as follows;a) The complicated or time consumable encryptionand decryption algorithms used in the cloud computingenvironment.b) The unreliable and low bandwidth Internet connectivity.c) Unreliable network with high conjunction andpacket losses.d) Allowing too many users to access the servicesbeyond the limit because of high demand from theclient’s side.e) Mobile clients running with extremely high shortageof resources.However from the survey we can say that, even after severalresearch and development the security and file integrityproblems are keep on persist in the Internet based services,specifically on the cloud. So we need different solutions fordifferent situations and requirements over time.File Integirity ModelChecking file integrity is a challenging task in cloud computing.In the classical method for checking the correctnessof a file the client has to maintain a copy to compare thereceived copy. This is meaningless, because if the client hasenough storage to store the data in the local system, then it isnot necessary to use the cloud service to store the file in remotelocation. The clients, those are not having enough resourcesalone may prefer the cloud services.From the literature we can have hundreds of file integritymodels which are suitable for cloud storage service. Somemodels are lack in providing security and few are poor inperformance. Also, some of the existing models are good insecurity but poor in execution time. The methods should becompact enough to run smoothly on the light weight mobiledevices, since most of the cloud clients are mobile in therecent years.Our proposed model of file integrity is as follows. Theentire file has to be split into number of macro blocks(M1,M2,M3,M4, …, Mn). All the macro blocks should be ofunique size. If the Last block contains no sufficient bits toform the block with fixed size, then padding bits can bemerged with the original data. Each Mi should be processedand the corresponding hash code has to be generated usingour proposed method.ENABLING SELF AUDITING FOR MOBILE CLIENTS IN CLOUD COMPUTING55
Page 1: International Journal of Advanced C
Page 5 and 6: International Journal of Advanced C
Page 7 and 8: International Journal of Advanced C

enabling self auditing for mobile clients in cloud computing

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?