In-Line Auditing and Real-Time Lineage Summaries to Maintain Ownership of Information Stored in Cloud Servers
Published: 2013
Author(s) Name: Hiroshi Fujinoki |
Author(s) Affiliation: Associate Professor, Southern Illinois University Edwardsville, United States
Locked
Subscribed
Available for All
Abstract
We propose new security architecture to enhance
direct control to the information stored in cloud servers.
It splits the cloud stack to two layers and having the
security control for the owner of the information between
them. By executing security-critical operations at the
inline owner agent, the owner of the data logically
preserves the essential security control to its data
physically stored in a private cloud. The shadow
auditor monitors the integrity of information stored in a
cloud server to detect unauthorized modification of the
information even by the administrators in the clouds
while real-time lineage summaries provide cloud users
timely feedback on the quality of data without disturbing
their workflow. Our performance evaluations showed
that real-time lineage summaries are effective for feedbacking
quality of information for systems that have
frequent references to the information. The shadow
auditor was also workload scalable, while the major
bottleneck was securing communication between
the split cloud and the owner agent. The proposed
security architecture will be a solution to make secure
transition to clouds while the advantages of clouds are
maintained.
Keywords: Cloud Security, Data Lineage, Information Assurance, Information Quality, Private Clouds
View PDF