Cryptographic cloud storage aims to build a secure cloud storage service on top of a public cloud infrastructure where the service provider is not fully trusted. The paper describes several architectures that combine recent and non-standard cryptographic primitives to achieve this goal. It surveys the benefits of such an architecture for both customers and service providers, and provides an overview of recent advances in cryptography motivated by cloud storage.
Cloud computing allows organizations to outsource storage and computing needs, offering services like infrastructure as a service (IaaS), platform as a service (PaaS), and software as a service (SaaS). Cloud infrastructures are either private or public. Private clouds are managed by the customer, while public clouds are managed by service providers. Public clouds offer scalability and cost savings but introduce security and privacy risks.
While public clouds are convenient, concerns over data confidentiality and integrity hinder their adoption, especially among enterprises and governments. To address these concerns, the paper argues for designing a virtual private storage service using recent cryptographic techniques. Such a service should provide the security of a private cloud and the functionality and cost savings of a public cloud.
The service should ensure confidentiality, integrity, availability, reliability, efficient retrieval, and data sharing. Cryptographic techniques like searchable encryption, proofs of storage, and attribute-based encryption are discussed. The paper also mentions potential applications of cryptographic storage services, such as secure backups, archival, health record systems, secure data exchange, and e-discovery. The article is organized into sections discussing architecture, benefits, cryptographic techniques, and applications.Cryptographic cloud storage aims to build a secure cloud storage service on top of a public cloud infrastructure where the service provider is not fully trusted. The paper describes several architectures that combine recent and non-standard cryptographic primitives to achieve this goal. It surveys the benefits of such an architecture for both customers and service providers, and provides an overview of recent advances in cryptography motivated by cloud storage.
Cloud computing allows organizations to outsource storage and computing needs, offering services like infrastructure as a service (IaaS), platform as a service (PaaS), and software as a service (SaaS). Cloud infrastructures are either private or public. Private clouds are managed by the customer, while public clouds are managed by service providers. Public clouds offer scalability and cost savings but introduce security and privacy risks.
While public clouds are convenient, concerns over data confidentiality and integrity hinder their adoption, especially among enterprises and governments. To address these concerns, the paper argues for designing a virtual private storage service using recent cryptographic techniques. Such a service should provide the security of a private cloud and the functionality and cost savings of a public cloud.
The service should ensure confidentiality, integrity, availability, reliability, efficient retrieval, and data sharing. Cryptographic techniques like searchable encryption, proofs of storage, and attribute-based encryption are discussed. The paper also mentions potential applications of cryptographic storage services, such as secure backups, archival, health record systems, secure data exchange, and e-discovery. The article is organized into sections discussing architecture, benefits, cryptographic techniques, and applications.