International Journal of Engineering Trends and Technology (IJETT) – Volume 18 Number 5 – Dec 2014
Balancing Operations of Secrecy, Exactness and
Specification over Cloud Transaction
1
Kalyani malla, 2Vasudevrao, 3Amarendra Kothalanka
1
1,2,3
M.Tech Student,2Assistant Professor,3Head of the department
Department of Computer Science & Engineering, Dadi Institute of Engineering &
Technology, Anakapalle-531002, A.P., India
Abstract:Security is the primary factor while transmission
of data between cloud servers and end users.
Authentication, Data confidentiality and key generation are
the principles to construct the secure architecture. In this
paper we are proposing an efficient authentication
mechanism with novel signature mechanism, key can be
generated by the Shamir secret sharing algorithm and data
confidentiality can be maintained by the AES
cryptographic algorithm, before performing encryption and
decryption of transaction data if check the given transaction
coming from the trust user or not. File transfer technique
verifies the trusted transactions and it achieves the accuracy
and performance during secure cloud transactions.
I. INTRODUCTION
Ordinarily, electronic applications have a 3-tier
construction modelling, the Web Server, Application
Server, and the Database Server. When all is said in done,
diverse occasions of use servers and web servers inside the
same application don't impart any state data. Thusly, at the
point when the application burden builds, the application
server layer and the web server layer can be effortlessly
scaled up by generating new machine occurrences that
ingest the expanded burden. Be that as it may in most
normal cases, the database back-end turns into the
adaptability bottleneck, since the database servers don't
effortlessly scale. In such a situation, in the event that the
database server additionally had the versatile property of
scaling all over according to the heap attributes, then the
whole programming stack would scale better[1,2].
In light of the aptitude picked up from building
distributed database frameworks, scientists and creators
have understood that supporting distributed transactions
does not permit adaptable and accessible plans.
Subsequently, to fulfill the adaptability necessities of web
applications, creators have yielded the capacity to backing
distributed transactions. This brought about the outline of
less complex information stores focused around the keyesteem outline, where tables are seen as an immense
accumulation of key-quality sections, also the qualities may
have some structure, or may be seen as un-interpreted
series of bytes[4].
The Owning Transaction Managers (OTM) [6] is
the elements in charge of the execution of transactions on
the parts of the databases, and has restrictive access rights
ISSN: 2231-5381
to the segments they possess. These are closely resembling
the tablet servers in Big table, and own disjoint segments of
the database. An OTM is in charge of all the concurrency
control and recuperation usefulness for the segments it
possesses. Since an OTM has restrictive access to the set of
segments its possesses, it can forcefully reserve the
substance of the parcel in its nearby circle, along these lines
anticipating extravagant gets to the distributed stockpiling
which really stores the information. To ensure the strength
of conferred transactions, all progressions made by an
exchange should be put away on some medium that can
endure the disappointment of the OTM, and permit the
framework to recoup from such disappointments and surety
the sturdiness of conferred transactions.
The Metadata Manager and Master (MMM) [7,8]
is the mind of the framework that stores the framework
state, viz., allotment data, mapping of allotments to OTM,
renting data for the Otms to manage disappointments, and
checking the strength of the framework. Notwithstanding
giving solid sturdiness and consistency ensures for the
metadata of the framework, this element likewise goes
about as a Master which screens the soundness of the
framework and performs the fundamental framework
upkeep in the vicinity of disappointments. The Master
screens the framework and guarantees that if an OTM falls
flat, then an alternate OTM is instantiated to serve the part,
furthermore manages segment reassignment for burden
adjusting. High consistency of the information put away in
the MMM is ensured through synchronous replication of
the substance.
II. RELATED WORK
A becoming number of cloud suppliers over
various servers indecencies over the Internet. These
incorporate online stockpiling and registering assets, e.g.,
Amazon Web Services, web application has, for example,
Google App Engine, and Software as a Administration
(Saas) applications ordered by organizations like Salesforce.com. Information stockpiling is a standout amongst
the most unmistakable cloud applications: people store
their information on the web, organizations go down
neighbourhood information to the cloud, and numerous
clients bunch collaborate on information facilitated by a
remote supplier.
The omnipresence ordered by the Internet and the
ability to instantly scale also grows the assets accessible to
a customer are one of a kind to cloud registering.
http://www.ijettjournal.org
Page 212
International Journal of Engineering Trends and Technology (IJETT) – Volume 18 Number 5 – Dec 2014
Moreover, the commoditization of cloud processing
foundation and its pay-on-interest pricing model, coupled
with the capacity to minimize in-house foundation costs,
over a unique focused advertisement advantage for
organizations and associations, substantial and little[9].
Information security is regularly said as the
greatest test confronting the cloud figuring model. This
places of business information trustworthiness and
consistency for cloud stockpiling. Two orthogonal
concerns are congeniality, as ordered by encryption, and
accessibility, in the feeling of strength and security against
misfortune (really, numerous clients consider cloud
stockpiling to be stronger than nearby stockpiling). Cloud
administrations can be secured emulating two unique
methodologies: from inside the cloud infrastructure or from
the outside. This work falls in the feline category of an
outer security component that can be included
straightforwardly to a current and untrusted administration,
conveyed incrementally, and gives prompt benefits to its
customers [2].
Amid typical operation, clients of cloud
stockpiling ought to not need to speak with one another. In
the event that clients did convey, they could basically trade
the root esteem of a hash tree on the put away protests get
consistency.[5] This, be that as it may, would present a
restrictive coordination overhead | clients ought to have the
capacity to execute operations in detachment, when
alternate clients are separated. At the same time without
customer to-customer correspondence for each operation, a
malignant administration could just disregard compose
operations by a few clients and react to different clients
with old fashioned information. Past arrangements
managed the issue utilizing supposed \forking" semantics
(and different propose). These arrangements ensure
honesty, and by including some additional out-of-band
correspondence among the clients can likewise be utilized
to accomplish a related idea of consistency. On the other
hand, they additionally acquire a real disadvantage that
hampers framework accessibility. Specifically, actually
when the server bad habit works effectively, all these
conventions might in some cases hinder a customer amid
an operation, obliging the customer to sit tight for an
alternate customer to finish, and don't promise that each
customer operation effectively finishes. It has been
demonstrated that this limit is characteristic.
III. PROPOSED SYSTEM
Secure transmission of data over network is always a basic
measure for end users, to maintain the data confidentiality
we are using various cryptographic techniqueswhich
converts the formatted text to unformatted text as
encryption and unformatted text to formatted text as
decryption . In this paper we are emphasizing on mainly on
three concepts i.e.
users Authentication , trusted
transaction identification process and Cryptograhy. The
overall description of proposed system as follows.
ISSN: 2231-5381
Operation of Consumer:
In this module the consumer or end user will perform
verification of users. After successful verification of user
the end user will retrieve points form group key manager.
Using those point the consumer will get secret key. The use
of secret key is decrypt the data coming from the cloud.
Before stored data into cloud the end user will generate
signature for transferring data. After generating the end
user will send the data and signature to group key manager.
If any user wants retrieve that stored he/she generate key
and decrypt it.
Operation of Group key manager:
The group key manager randomly generate group
key K and also generate polynomial function f(x) with
degree of t to pass through points of t+1, (0,k) and
(ai,bi+Ri) where i=1….t. The KGC also generate additional
points pi generate shared key for group members. After
generating points the group key manager randomly send
each three point to individual users. Before sending these
point the group key manager will generate Lagrange’s
equation for generation of secret key. The form of this
equation as follows.
F(x)=secretkey+bx+ax2
Signature generation:
In this module the end user will generate signature for
transmitting data. Before storing data in cloud the end user
generate secret using points. After generating secret key the
end user will upload transferring data and generate
signature for that file or data. The process of generation
signature as follows.
Algorithm: generating signature of file or data
Input: The plain text
Out put: signature of that file and append that file
Procedure :
Msg_Len= Calculate length of file (F)
Block_len=length of block is 128 or 256 or 512
Res_bits---->take the 16 bits are reserved bit
P=Msg_len%Block_len;
Q=Block_len-(Msg_len+Res_bits)
If(Q>0)
Flappend the Q zeros to end of file
Else if(Q<0)
RBlock_len+Q
Fl append R zeros to end of the file
Fl the reserved bits are append to end of file
The following steps are generating signature of file as
Len calculate length of file after append zero to end of file
Count len/Block_len
For I 1 to count
S0
Sreverse[∑block_lena(A®B)V(A^B)]
Where BAscii value of character(A)
Sigsig+to_binary(S)
FNfile+sig
http://www.ijettjournal.org
Page 213
International Journal of Engineering Trends and Technology (IJETT) – Volume 18 Number 5 – Dec 2014
After generation of signature of the file the end user will
append the file and signature send to group key manager.
Encryption and decryption process:
In this module the KGC will retrieve the transferring
data and signature from the end user. After retrieving the
KGC will separate file data and signature. The KGC will
generate signature for that and compare to coming
transaction data trusted one or not. After checking signature
the KGC will encrypt the data and stored into cloud. In this
module the decryption process can be done by the end user
and getting plain text from the cloud. The encryption and
decryption of data can be done by using AES algorithm.
Conclusion:
We have been concluding our current research work with
efficient security framework, it checks the authentication of
the user before sharing of data and By performing these
techniques we propose concept of signature generation for
particular shared data. In this paper we propse concept of
authentication of users for data integrity, generation of
shared key for secure communication, generation of
signature, encryption and decryption of by using AES
algorithm secure transmission of data. By providing that
mechanisms we can provide more efficiency, security and
authentication of users.
REFERENCES
[1] “A new paradigm for building scalable distributed
systems” by M. K. Aguilera, A. Merchant, M. Shah, A.
Veitch, and C. Karamanolis.
[2] “A Berkeley View of Cloud Computing. Technical
Report “ by M. Armbrust, A. Fox, R. Griffith, A. D.
Joseph, R. Katz, A. Konwinski, G. Lee, D. Patterson, A.
Rabkin, I. Stoica, and M. Zaharia.
[3] “Whitepaper: Partitioning in Oracle Database” by H.
Baer.
[4] Building a database on S3. In SIGMOD M. Brantner,
D. Florescu, D. Graf, D. Kossmann, and T. Kraska.
ISSN: 2231-5381
[5] The Chubby Lock Service for Loosely-Coupled
Distributed Systems by M. Burrows.
[6] H. Harney, A. Colgrove, and P. D. McDaniel,
“Principles of policy insecure groups,” in Proc. of
NDSS’01, 2001.
[7] P. D. McDaniel and A. Prakash, “Methods and
limitations of security policy reconciliation,” in Proc. of
SP’02, 2002.
[8] T. Yu and M. Winslett, “A unified scheme for resource
protection in automated trust negotiation,” in Proc. of
SP’03, 2003.
[9] J. Li, N. Li, and W. H. Wins borough, “Automated trust
negotiation using cryptographic credentials,” in Proc. of
CCS’05, 2005.
[10] J. Anderson, “Computer Security Technology
Planning Study,” Air Force Electronic Systems Division,
Report ESD-TR-73-51, 1972,
BIOGRAPHIES
Kalyanimalla is a Student in M.Tech(CSE) in Dadi
Institute ofEngineering&Technology,Anakapalle. She
Received her B.Tech(CSE) from Gokul
Institute
of
Technology
AndSciences(GITAS),
Bobbili.
Herinteresting
areas
are
Cloud
Computing,java and oracle database.
AddalaVasudevaRao
received the
M.Tech. degree in Computer Science& Technology from
Andhra University in 2008. He is an AssociateProfessor in
the Department of Computer Science
&Engineering,DadiInstitute
of
Engineering&Technology, Anakapalle. He
is currently Ph. DScholar in the Computer
Science & Engineering Department,
JNTUKakinada. His research interests are
Data Mining and NetworksSecurity. He is member of
ACM, SIGKDD, CSTA, IAENG and lifemember of CSI
http://www.ijettjournal.org
Page 214