Abstract
The twenty-first century belongs to the world of computing, specially as a result of the so-called cloud computing. This technology enables ubiquitous information management and thus people can access all their data from any place and at any time. In this landscape, the emergence of cloud storage has had an important role in the last 5 years. Nowadays, several free-access public cloud storage services make it possible for users to have a free backup of their assets and to manage and share them, representing a low-cost opportunity for Small and Medium Enterprises (SMEs). However, the adoption of cloud storage involves data outsourcing, so a user does not have the guarantee about the way her data will be processed and protected. Therefore, it seems necessary to endow public cloud storage with a set of means to protect users’ confidentiality and privacy, to assess data integrity and to guarantee a proper backup of information assets. Along this paper, we discuss the main challenges to achieve such a goal, underlining the set of functionalities already implemented in the most popular public cloud storage services.
1 Introduction
Data outsourcing is one of the most conspicuous characteristics of the ongoing paradigm shift in the current technological context. Certainly, we are witnessing a transition from configurations where the data owners determined and deployed the means to store their information assets, to scenarios where those owners trust in third parties to handle such tasks. This being said, from a general point of view it encompasses a series of considerations regarding the manner trust is articulated.
This chapter is focused on pinpointing the underlying security assumptions in the adoption of free-access public cloud storage, but also on highlighting the means to enhance the protection of outsourced data. To achieve such goals, in Sect. 15.2 we discuss ten security challenges in cloud storage. The main concern of each of these challenges is summarised, and we provide a set of recommendations to tackle them. These recommendations are intended to identify cryptographic procedures and software solutions that can help both SMEs and end users to implement usable and low-cost security solutions upon free-access cloud storage. Certainly, the proper combination of standard cryptographic measures and the functionality provided by free cloud storages can lead to appealing serverless solutions. This being the case, our effort is on configuring a guideline to develop client-side software for the secure and privacy-respectful adoption of cloud storage services. This study is very helpful to discuss and define the main requirements of client-side software products to access cloud services. Furthermore, it configures a checklist to take into account in the risk analysis of the related cloud services, which would also be useful for Service Providers (SPs) in the design of their platforms. Finally, we conclude this chapter in Sect. 15.3.
2 Main Threats and Challenges in Cloud Storage
Next, we describe the main challenges in cloud storage derived from the paradigm shift outlined in the Introduction, also sketching possible solutions.
2.1 Challenge 1: Authentication
The protection of information assets demands the convenient concretion of access control methodologies, i.e. of authentication and authorisation procedures. In short, the vulnerabilities in the binomial authentication-authorisation can be a consequence of inner attacks, bad access control policies or use of software with some vulnerability.
In the case of cloud services, authentication is usually performed by checking users’ credentials in a safe way. However, Cloud Providers (CPs) often use basic authentication mechanisms, in which the user has to provide her credentials to her provider. Therefore, this user has to trust the fact that providers do not have access to her credentials and they also manage these credentials in a secure way. Nevertheless, there are some relevant examples of a neglecting management of user’s credentials by CPs.Footnote 1
In addition, it is not difficult to find cases where authentication or authorisation can be circumvented due to the failures in the implementation of some security protocol. On this point, it is relevant to consider the problems regarding the implementation of the OAuth 2.0 protocol [36], which has been exploited to mount a Man-In-The-Cloud (MITC) attack [30].
2.1.1 Solutions
In order to face the problem of credentials leakage, we should use CPs that employ advanced password-based authentication techniques, like the Password-based Authenticated Key Exchange (PAKE) [1] or Secure Remote Password (SRP) [62] protocols, which effectively conveys a zero-knowledge password proof from the user to the server and thus hampers eavesdropper or man in the middle attacks.
Furthermore, this verification process of user’s identity could be better by adding Two-Step Verification (2SV) mechanisms, which is present in several free cloud storage services.Footnote 2 In Google Drive, the user could use Google Authenticator as a two-factor verification mechanism.Footnote 3 Dropbox has also an optional 2SV (via text message or Time-Based One-Time Password apps). Box also provides the use of 2SV. In this case, the process requires a user to present two authenticating pieces of evidence when they log in: something they know (their Box password) and something they have (a code that is sent to their mobile device).Footnote 4 Moreover, all OneDrive users can protect the login via One-Time Code app or a text message.Footnote 5
On the other hand, in some cloud storage services, sign-up is based on users’ Personally Identifiable Information (PII). Consequently, the provider can monitor the storage record of its users having access to a complete behavioural profile of its users. Therefore, anonymous authentication mechanisms are mandatory if the user really needs to get an adequate privacy in the cloud [40]. A way to achieve this type of authentication is through non-conventional digital signatures, like group signatures, which allow members of a group of signers to issue signatures on behalf of the group that can be verified without telling which specific member issued it [6].
Finally, we would want to point out some possible solutions to the MITC attack. One possible strategy could be, firstly, to identify the compromise of a file synchronisation account, using a Cloud Access Security Broker solution that monitors access and usage of cloud services by the users, and secondly, to identify the abuse of the internal data resource, deploying controls such as Dynamic Authorisation ManagementFootnote 6 around the data resources identifying abnormal and abusive access to the data [30]. However, we consider that the best way to solve this security issue is being very carefully in the OAuth implementation, using along with it a second authentication factor in order to have a high security level. To achieve this goal, CPs should be aware of the current potential weaknesses of this protocol and follow the well-known recommendations made by the cryptographic community about how to implement OAuth 2.0 in a secure way [23].
2.1.2 Limitations
In this and other scenarios, the deployment of security protocols implies a risk that has to be taken into account. As much effort is used in the authentication process, we can always find a poor implementation of the cryptographic functionality used (e.g. the Imperva attack on OAuth 2.0 [30], Heartbleed in the case of TLS,Footnote 7 Ghost for Linux servers,Footnote 8 etc.).
Regarding 2SV mechanisms, it has been shown they are not completely secure [18]. Besides, if we are using a service from our mobile phone which includes 2SV sending a text message to this phone, the authentication process would be almost the same than if we only have to provide our username and password straightaway to this service [18]. Furthermore, it is necessary to consider the recent security concerns about the Signalling System No 7 (SS7) and the NIST advice against adopting Short Message Service (SMS) as out-of-band verifier [27].
Another key element in authentication is usability. The adequate combination of usability goals and security concerns is not easy to achieve, and the design of any procedure to improve usability should be thoroughly analysed before deploying the corresponding authentication process. This study, for example, should have been applied to confirm that security is not degraded by the usability goals of the so-called Single Sign-On (SSO) mechanism. SSO is a process that allows a user to enter a username and password to access multiple applications. It enables authentication through a token, and thus, it increases the usability of the whole system. Nevertheless, if these tokens are not adequately managed, SSO could be vulnerable against replay attacks [37].
2.2 Challenge 2: Information Encryption
The trust model and the risk model are very different when the CP is in charge of data encryption. If so, users are implicitly trusting CP, and this assumption can entail a threat to security and/or privacy [57]. With the current free cloud storage solutions, users have to completely trust their CPs [53]. Indeed, an important question concerns who controls the keys used for encryption of data at rest. If they are under the control of the CPs, the user is implicitly trusting that CPs manage them securely and use it only for legitimate purposes. Furthermore, providers could be also compromised because of hardware failures [48], software flaws [39], or misbehaviour of system administrators [33]. Once one of these happens, a tremendous amount of data might get corrupted or lost [64].
2.2.1 Solutions
Solutions for protecting privacy require encrypting data before releasing them to the CPs, and this measure has gained a great relevance since Snowden’s leaks [51]. Client-side encryption could be properly articulated to obtain privacy and data integrity protection.
Nonetheless, encryption can bring several difficulties in scenarios where querying data is necessary. Then, we could use fragmentation instead of encryption and maintain confidential the associations among data values. This technique protects sensitive associations by splitting the concerned pieces of information and storing them in separate un-linkable fragments [53]; also, in this set-up CPs could detect redundant file blocks and perform deduplication.
2.2.2 Limitations
Client-side encryption implies that the user is in charge of keys generation and management,Footnote 9 which could suppose a high workload for her, along with a security risk (e.g. the user could loss a cryptographic key and thus she could not access to her data). Although it is possible to reduce such a burden by adopting password-based tools for the automatic generation and management of cryptographic keys, these solutions represent a security risk as they place all the protection around a single component. This Single Point of Failure (SPOF) can be avoided through distributed authentication via two or more servers. Hence, the user only has to know her password, and the compromise of one server exposes neither any private data nor any password [24].
Apart from the key management problem, data encryption thwarts traditional deduplication mechanisms and querying by keywords in the cloud [53]. However, the new paradigm called Secure Computation (SC) solves this problem, since it is essentially based on processing encrypted data [3]. Indeed, Multi-Party Computation and homomorphic encryption have been discarded in the past, since they are computationally expensive. Nonetheless, currently there exist efficient implementations (e.g. DyadicFootnote 10 and SharemindFootnote 11).
Finally, sharing encrypted documents over the cloud requires a mechanism to share the encryption key of each encrypted file among the members of the group. A first approach to solve this problem could be to make up a data packet based on the concept of the digital envelope container.Footnote 12 However, this incurs in high management costs for the owner of the data and the group, requiring granting/revoking access as users join/leave the group, as well as delays for acquiring the keys. Here, it is possible to generate and store the secret keys in a centralised cloud service. This implies that the user trusts completely the CP, which becomes a SPOF [59].
A third approach includes key management through a trusted client-side authority (the manager) different from the CP [59]: users are segmented into populations called groups, each of which has read and write access to a different data partition. Access to each data partition is managed (through keys generation and users’ authentication) by the manager.
A fourth approach is based on the combination of proxy signatures, a Tree-Based Group Diffie–Hellman (TGDH) key exchange protocol and proxy re-encryption [63]. This solution is privacy-respectful and supports better the updating of encryption keys, because it transfers most of the computational complexity and communication overhead to cloud servers.
2.3 Challenge 3: Inappropriate Modifications of Assets
Both location and data’s owner are blurry and not clearly identified, which makes the old perimeters obsolete as a means to secure IT assets. In fact, when the user uploads her assets to the cloud, she cannot assure that they are not going to be modified by unauthorised third parties (not even when client-side encryption is carried out).
Additionally, for security considerations, previous public auditing schemes for shared cloud data hid the identities of the group members. However, the unconstrained identity anonymity enables a group member to maliciously modify shared data without being identified. This is a threat for coherent data availability, and, consequently, identity traceability should also be retained in data sharing [64].
2.3.1 Solutions
The first solution is to perform a hash function in each file to upload to her CP. These hashes can be verified after files are downloaded, but the problem is that the user needs to store all of them. Alternatively, we can consider retrievability proofs by encrypting the information and inserting data blocks (the sentinels) in random points [32]. The provider only sees a file with random bits, and she is not able to distinguish between data and sentinels. Integrity verification is performed by asking for a random selection of the sentinels; as the provider does not know where the sentinels are, any change in data can be detected. However, this solution supposes an overload for the user.
At this point, we should distinguish between content integrity (achieved with hashes, CRC, sentinels, etc.) and both content and source integrity, which can be carried out with digital signatures. However, in modern IT networks conventional digital signatures do not offer the whole of set of features that may be required. Depending on the specific needs, different schemes may be required, such as group signatures, multi- and aggregate signatures or blind signatures [6]. This being the case, group signatures could be used as anonymous authentication methods in the cloud. On the other hand, multi- and aggregate signatures could be used when a file is digitally signed and shared between several users in a cloud storage service. Finally, identity-based signatures could eliminate the need of distributing public keys in the cloud, allowing the verification of digital signatures just from the identity that the signer claims to own.
Moreover, the audit of shared cloud data demands the traceability of users’ operations without eroding privacy. Therefore, it is required an efficient privacy-respectful public auditing solution that guarantees the identity traceability for group members. In [64], identity traceability is achieved by two lists that record members’ activity on each data block. Besides, the scheme also provides data privacy during the authenticator generation by utilising a blind signature technique.
2.3.2 Limitations
Digital signatures are often performed using the asymmetric cryptographic algorithm RSA. The main disadvantage of this algorithm is the time required for its key generation, although it usually has to be done just once. Nevertheless, we could improve this time using elliptic curves [28], which provide the same security as RSA but with smaller key size. In fact, RSA key generation is significantly slower than ECC key generation for RSA key of sizes 1024 bits and greater [50]. In addition, the cost of key generation can be considered as a crucial factor in the choice of public key systems to use digital signatures, especially for smaller devices with less computational resources [31]. Nonetheless, in some cases it is not necessary to generate RSA keys for each use. For this situation, we would remark that the problem mentioned before is not so dramatic, since RSA is comparable to ECC for digital signature creation in terms of time, and it is faster than ECC for digital signature verification.Footnote 13
Furthermore, we could incorporate Merkle trees [8], such that we will reduce the number of digital signatures to handle. Regarding non-conventional digital signatures, the problem comes for the scarcity of standard and thoroughly verified software libraries [6].
2.4 Challenge 4: Availability
Users typically place large amounts of data in cloud servers, and CPs need to ensure availability even when data are not accessed during long periods of time. Despite redundancy techniques (software and hardware) or error correction codes, from a general point of view, users cannot be sure whether their files are vulnerable or not against hard drive crashes [12].
2.4.1 Solutions
Recent studies propose the utilisation of RAID-like techniques over multiple cloud storage services [65]. Some cloud storage managers have been proposed to handle cloud storage in multiple CPs.Footnote 14 Moreover, in [65] it is proposed a solution for mobile devices that unifies storage from multiple CPs into a centralised storage pool.
2.4.2 Limitations
The above solutions are private, so the user would have to pay fees to use this services and to trust third-party companies to manage the data securely and privately.
2.5 Challenge 5: Data Location
When the CP guarantees that the data are stored within specific geographic area, users might not have the assurance about this fact. On this point, it had a great relevance to the decision of the European Court of Justice made on October 2015: the annulment of the EU-US data sharing agreement named Safe Harbour.Footnote 15 This revocation prevented the automatic transfer of data of European citizens to the United States of America (USA). However, since February 2016 there is a new framework that protects the fundamental rights of anyone in the EU whose personal data is transferred to the United States [21]. These agreements prove the huge legal complexity of the ubiquity in cloud storage systems.
2.5.1 Solutions
Cloud service latency is a hint to infer the geographic location of data as stored by CP. Nevertheless, these measures have to be carried out with high degree of precision since the information moves really quickly in electronic communications. An example of location proof is the use of distance bounding protocols [13]. These protocols always imply a timing phase in which the verificator sends a “challenge” and the provider responds. The provider is first authenticated and then required to respond within a time limit which depends on the distance between provider and user.
2.5.2 Limitations
Network, processing and disk access delays undermine the precision of the above methods. In fact, those methods are really dependent on the CP. For instance, Dropbox has to decrypt the information before sending it (as the encryption/decryption is made in the server), whereas this is not necessary in Mega (which performs this operation in the client side).
2.6 Challenge 6: Data Deduplication
The simple idea behind deduplication is to store each piece of data only once. Therefore, if a user wants to upload already existing data, the CP will add the user in the list of owners of that data. Deduplication is able to save space and costs, so that many CPs are adopting it. However, the adoption of deduplication is not a straightforward decision for a CP. The CP must decide between file or block level deduplication, server-side vs. client side deduplication, and single user vs. cross-user deduplication [56]. Some of these possibilities determine side channels that pose privacy matters [43]. Again we can opt for protecting privacy through encryption, but data encryption prevents straightforward deduplication techniques. Moreover, privacy against curious CPs cannot be ensured for unencrypted data [41].
2.6.1 Solutions
Several solutions have been proposed to mitigate privacy concerns with deduplication [43]. One of these solutions is Convergent Encryption (CE), which consists of using the hash of the data as encryption key. Consequently, two equal files will generate the same encrypted file, which allows both deduplication and encryption [35].
An alternative solution is ClouDedup [41], a tool that proposes the inclusion of an intermediate server between users and CPs. Users send to the intermediate server their blocks encrypted with CE, along with their keys. Afterwards, the intermediate server deduplicates blocks from all users and executes a second non-convergent encryption. As a result, the intermediate server sends to the CP only blocks that are not duplicated.
Other privacy-respectful deduplication techniques are more focused on providing benefits to the clients. This is the case of ClearBox [4], which endows cloud users with a means to verify the real storage space that their (encrypted) data is occupying in the cloud; this allows them to check whether they qualify for benefits such as price reductions.
2.6.2 Limitations
CE allows dictionary attacks. For instance, client-side CE allows malicious users to know if some particular information already exists in the cloud. As a possible solution, one can classify data segments into popular and unpopular chunks of data [42]. Popular pieces of information (those which demand deduplication) would be encrypted using CE; unpopular ones are encrypted using symmetric encryption. This achieves a high level of confidentiality and privacy protection, since the unpopular data (more likely associated to PII) is protected with semantically secure encryption. Nevertheless, the user has to decide on the popularity of data fragments. The usability of the previous scheme can be further improved by handling blocks popularity according to a previously established set of metadata and the use of an additional server [41].
Another option is proposed in [25], where the authors claim to impede content guessing attacks by implementing CE at block level under a security parameter.
2.7 Challenge 7: Version Control of Encrypted Data
Version Control Systems (VCSs) are a must as part of the recuperative controls of any architecture for securing information assets. But its deployment is not straightforward for encrypted data. Indeed, the recommended operating modes for symmetric block ciphers prevent VCSs to know which data segment was modified, as modifications in earlier blocks affect the subsequent ones. Consequently, one copy is needed per each version of a file, introducing too much overhead.
2.7.1 Solutions
VCSs can be built by splitting the files in data objects [46]. If some modifications are produced in a big file, the user would only upload the objects that have been modified. This enables a more efficient backup mechanism, as an object appearing in multiple backups is stored in the cloud only once and it is indexed by a proper hashing-based pointer.
Two tools for version control with encrypted data are SparkleShareFootnote 16 and Git-crypt.Footnote 17 Both solutions enable using a non-fully trusted Git server [54].
2.7.2 Limitations
The main shortcomings of the previous version control systems are given by usability concerns. In the first scheme, the user must decide how to split files and classify the resulting pieces. In addition, the cryptographic keys of each data object must be properly stored and managed [46]. This burden is also undermining the usability of SparkleShare and Git-crypt [29]. Furthermore, SparkleShare does not provide any key change mechanism; the encryption password is saved on each SparkleShare client as plain text and can be read by everyone; and the filename is not encrypted at all, so an attacker can monitor which files are stored. On the other hand, in Git-crypt the filename is not encrypted, and the password can be found in plain text on the client’s computer. As a matter of fact, the management of metadata in this VCS can imply some security risks [58]. In addition, key exchange is not an easy process, and it is still an issue to be solved in coherence with usability criteria [54].
2.8 Challenge 8: Assured Deletion of Data
It is not desirable to keep data backups permanently, since sensitive information can be exposed in the future due to a security breach or a poor management made by CPs [46]. Moreover, CPs can use multiple copies of data over cloud infrastructure to have a great tolerance against failures. As providers do not publish their replication policies, users do not know how many copies of their data are in the cloud, or where those copies are stored. Hence, it is not clear how providers can delete all the copies when users ask for removing their data.
2.8.1 Solutions
Client-side cryptographic protection is the easiest procedure to get assured deletion of data: if a user destroy the secret keys needed to decrypt data, then these data is not accessible anymore [46].
2.8.2 Limitations
As stated above, client-side encryption resorts to a key management system that is totally independent of the cloud system. Therefore, the same limitations explained in Sect. 15.2.2.2 can also apply for this section. On the other hand, note that client-side encryption only protects users’ data against CPs, but not against changes in the users groups in which is performed a key distribution protocol. In this specific case, if a user is revoked from a group, she could still access all previous versions of shared files that belongs to this group if she has previously stored them locally.
2.9 Challenge 9: API’s Validation
The current technological scenario is highly determined by the adoption of third-party software products, and it has been coined as the era of containers (container age). Most of these third-party solutions are given by APIs that have not always been properly validated in terms of securityFootnote 18 , Footnote 19, enclosing additional security risks.
2.9.1 Solutions
The new trust model should be handled by means of a Secure Development Lifecycle (SDL) [47]. SDLs are the key step in the evolution of software security, and they should be guided by automatic tools to analyse security properties through formal methods [7]. These tools are intended to help not only the design stage but also to face security and privacy threats arising in the production phase. The dynamic and adaptive nature of the SDL has been underlined in different methodologies to deploy systems according to the security-by-design principle [17]. In order to sustain such a methodology, there exist tools as Maude-NPAFootnote 20 and the framework STRIDE [55], and companies as Cryptosense,Footnote 21 which is a recent start-up which is looking to commercialise techniques for analysing the security of APIs [38].
2.9.2 Limitations
The human factor also takes part in the analysis of protocols procedure, so a bad formalisation can make that some errors are not detected. Then, as in any engineering process, the solution presented does not provide the 100% of success, but it helps avoid a great quantity of failures.
Finally, assuming that the CPs are validated by the cryptographic community, the solutions proposed for this challenge will be used to validate the new developments made by cloud developers. Nevertheless, the cloud users should verify that their cloud providers follow these good practices.
2.10 Challenge 10: Usable Security Solutions
Any change required to improve security should not erode users’ acceptance of the so-modified cloud services [49, 60]. In other words, secure cloud services solutions should be also easy to use. Otherwise, these services will not be adopted.
2.10.1 Solutions
The so-called security-by-design and privacy-by-design paradigms [15] are hot topics in cryptographic engineering, and their fulfilment calls for software developing methodologies that integrate standards,Footnote 22 security reference architectures [22], and well-known technologies.
Furthermore, technologies usability has to be tested. In [34], Human–Computer Interaction (HCI) methods and practices are provided for each phase of the Software Development Life Cycle (SDLC), in order to create usable secure and privacy-respectful systems. Moreover, there are recent efforts on formalising and automatically assessing the role of human factors in security protocols [44, 45].
2.10.2 Limitations
Firstly, a key limitation to consider is that security and privacy are rarely users’ main goal, and they would like privacy and security systems and controls to be as transparent as possible [34]. On the other hand, users want to be in control of the situation and understand what is happening. As a consequence, these two factors make harder to develop usable security applications.
Finally, in order to be successful in the development of usable security solutions, it is needed to have a multidisciplinary team including experts from the fields of IT, information science, usability engineering, cognitive sciences and human factors. This could suppose a main limitation, since no all companies have enough resources in order to form this kind of heterogeneous work group.
3 Conclusions
Nowadays, cloud storage is a relevant topic due to the increase in the number of users who place their assets onto the cloud. However, these users often do not trust about where their data are going to be stored and who is going to have access to these data. It is for this reason that many users feel the obligation of applying security measures in order to have a total control over their data. More concretely, the user could find authentication, integrity, availability, confidentiality and privacy problems. In the specific case of enterprises, these imply key considerations that should be included in any cloud service agreement.
To address these concerns, this chapter comprises the most relevant security problems that users of free cloud storage services can find. For each identified security challenge, we have outlined some solutions and limitations (see Table 15.1). In addition, we have discussed standards of information security that can be combined with the functionality of free cloud storage services according to a serverless architecture.
Finally, we have to take into account that the world of security information evolves really quickly every day. Therefore, we have to be aware with the new potential security problems which could affect the security and privacy of the user in cloud storage environments. In this evolving scenario, our work is intended to help cloud users to evaluate the cloud service agreements according to recommendations as the new ISO/IEC 19086-1 standard.
Notes
- 1.
http://tinyurl.com/hkypel5, http://tinyurl.com/hdqoum3, http://tinyurl.com/kryf254 Accessed 2016-12-27.
- 2.
http://tinyurl.com/jdonyg7. Accessed 2016-12-27.
- 3.
https://support.google.com/accounts/answer/1066447. Accessed 2016-12-27.
- 4.
http://tinyurl.com/jpqtndx. Accessed 2016-12-27.
- 5.
http://tinyurl.com/p2s8dlw. Accessed 2016-12-27.
- 6.
https://tinyurl.com/gr86xxu. Accessed 2016-12-27.
- 7.
http://tinyurl.com/lhjr7zf. Accessed 2016-12-27.
- 8.
http://tinyurl.com/h3fbqdx. Accessed 2016-12-27.
- 9.
http://tinyurl.com/hy6pyqr. Accessed 2016-12-27.
- 10.
www.dyadicsec.com. Accessed 2016-06-04.
- 11.
- 12.
http://tinyurl.com/z78dssy. Accessed 2016-12-27.
- 13.
http://tinyurl.com/3uc96d. Accessed 2016-12-27.
- 14.
http://tinyurl.com/jtvq2o4. Accessed 2016-12-27.
- 15.
https://tinyurl.com/pnax3go. Accessed 2016-01-08.
- 16.
www.sparkleshare.org. Accessed 2016-08-15.
- 17.
https://github.com/AGWA/git-crypt. Accessed 2016-08-15.
- 18.
http://tinyurl.com/pljob9s. Accessed 2016-12-27.
- 19.
http://tinyurl.com/jxp7jp8 Accessed 2016-12-27.
- 20.
http://maude.cs.uiuc.edu/tools/Maude-NPA. Accessed 2016-10-09.
- 21.
https://cryptosense.com/. Accessed 2016-06-04.
- 22.
http://tinyurl.com/2642d8. Accessed 2016-12-27.
References
Abdalla, M., Fouque, P. A., & Pointcheval, D. (2005). Password-based authenticated key exchange in the three-party setting. In Public key cryptography-PKC 2005 (pp. 65–84). Berlin: Springer.
Alphr. How secure are Dropbox, Microsoft OneDrive, Google Drive and Apple iCloud? [Online]. Available from: http://www.alphr.com/dropbox/1000326/how-secure-are-dropbox-microsoft-onedrive-google-drive-and-apple-icloud. Accessed December 29, 2015.
Archer, D. W., Bogdanov, D., Pinkas, B., & Pullonen, P. (2015). Maturity and performance of programmable secure computation. Technical Report, IACR Cryptology ePrint Archive.
Armknecht, F., Bohli, J. M., Karame, G. O., & Youssef, F. (2015). Transparent data deduplication in the cloud. In Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security (pp. 886–900). New York: ACM.
Arroyo, D., Diaz, J., & Gayoso, V. (2015). On the difficult tradeoff between security and privacy: Challenges for the management of digital identities (pp. 455–462). Cham: Springer International Publishing.
Arroyo, D., Diaz, J., & Rodriguez, F. B. (2015). Non-conventional digital signatures and their implementations - a review. In CISIS’15 (pp. 425–435). Berlin: Springer
Bansal, C., Bhargavan, K., Delignat-Lavaud, A., & Maffeis, S. (2014). Discovering concrete attacks on website authorization by formal analysis. Journal of Computer Security, 22(4), 601–657.
Becker, G. (2008). Merkle signature schemes, Merkle trees and their cryptanalysis. Ruhr-Universität Bochum.
Bellare, M., Keelveedhi, S., & Ristenpart, T. (2013). Message-locked encryption and secure deduplication. In Annual International Conference on the Theory and Applications of Cryptographic Techniques (pp. 296–312). New York: Springer.
Best Backups. 7 cloud storage managers for multiple cloud storage services - Best backups.com [Online]. Available from: http://www.bestbackups.com/blog/4429/7-cloud-storage-managers-for-multiple-cloud-storage-services Accessed March 26, 2016.
Bogdanov, D., Laur, S., & Willemson, J. (2008). Sharemind: A framework for fast privacy-preserving computations. In Computer Security-ESORICS 2008 (pp. 192–206). New York: Springer.
Bowers, K. D., van Dijk, M., Juels, A., Oprea, A., & Rivest, R. L. (2011). How to tell if your cloud files are vulnerable to drive crashes. In Proceedings of the 18th ACM Conference on Computer and Communications Security (pp. 501–514). New York: ACM.
Boyd, C. (2013). Cryptography in the cloud: Advances and challenges. Journal of Information and Communication Convergence Engineering 11(1), 17–23.
Butler, B. Researchers steal secret RSA encryption keys in Amazon’s cloud [Online]. Available from: http://www.networkworld.com/article/2989757/cloud-security/researchers-steal-secret-rsa-encryption-keys-in-amazon-s-cloud.html. Accessed November 22, 2015.
Cavoukian, A., & Dixon, M. (2013). Privacy and security by design: An enterprise architecture approach. Ontario: Information and Privacy Commissioner.
Cryptosense. Cryptosense automated analysis for cryptographic systems [Online]. Available from: https://cryptosense.com. Accessed November 22, 2015.
Diaz, J., Arroyo, D., & Rodriguez, F. B. (2014). A formal methodology for integral security design and verification of network protocols. Journal of Systems and Software, 89, 87–98.
Dmitrienko, A., Liebchen, C., Rossow, C., & Sadeghi, A. R. (2014). Security analysis of mobile two-factor authentication schemes. Intel®; Technology Journal, 18(4), 138–161.
Escobar, S., Meadows, C., & Meseguer, J. (2009). Maude-NPA: Cryptographic protocol analysis modulo equational properties. In Foundations of security analysis and design V (pp. 1–50). Berlin: Springer.
Escobar, S., Meadows, C., & Meseguer, J. (2012). The Maude-NRL protocol analyzer (Maude-NPA) [Online]. Available from: http://maude.cs.uiuc.edu/tools/Maude-NPA. Accessed October 9, 2016.
European Commission. European Commission launches EU-U.S. Privacy shield: stronger protection for transatlantic data flows [Online]. Available from: http://tinyurl.com/jeg3doq. Accessed September 12, 2016.
Fernandez, E. B., Monge, R., & Hashizume, K. (2015). Building a security reference architecture for cloud systems. Requirements Engineering, 21, 1–25.
Fett, D., Küsters, R., & Schmitz, G. (2016). A comprehensive formal security analysis of OAuth 2.0 (pp. 1–75). http://arxiv.org/abs/1601.01229.
Ford, W., & Kaliski, B. S., Jr. (2000). Server-assisted generation of a strong secret from a password. In IEEE 9th International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises, 2000. (WET ICE 2000). Proceedings (pp. 176–180).
González-Manzano, L., & Orfila, A. (2015). An efficient confidentiality-preserving proof of ownership for deduplication. Journal of Network and Computer Applications, 50, 49–59.
Gordon, W. Two-factor authentication: The big list of everywhere you should enable it right now [Online]. Available from: http://www.lifehacker.com.au/2012/09/two-factor-authentication-the-big-list-of-everywhere-you-should-enable-it-right-now. Accessed December 31, 2015.
Grassi, P. A., Fenton, J. L., Newton, E. M., Perlner, R. A., Regenscheid, A. R., Burr, W. E., Richer, J. P., Lefkovitz, N. B., Choong, J. M. D. Y. Y., Mary, K. K. G., & Theofanos, F. (2016). Digital authentication guideline; authentication and lifecycle management. Technical Report Draft NIST SP 800-63B, National Institute of Standards and Technology.
Hankerson, D., Menezes, A. J., & Vanstone, S. (2004). Guide to elliptic curve cryptography. New York, NY: Springer.
Happe, A. Git with transparent encryption [Online]. Available from: https://snikt.net/blog/2013/07/04/git-with-transparent-encryption Accessed August 16, 2016.
Imperva. Man in the cloud attacks [Online] http://tinyurl.com/qf7n6s8. Accessed December 27, 2016.
Jansma, N., & Arrendondo, B. (2004). Performance comparison of elliptic curve and RSA digital signatures. Technical Report, University of Michigan College of Engineering (pp. 1–20).
Juels, A., & Kaliski, B. S., Jr. (2007). PORs: Proofs of retrievability for large files. In Proceedings of the 14th ACM Conference on Computer and Communications Security (pp. 584–597).
Kandias, M., Virvilis, N., & Gritzalis, D. (2011). The insider threat in cloud computing. In International Workshop on Critical Information Infrastructures Security (pp. 93–103). New York: Springer.
Karat, C. M., Brodie, C., & Karat, J. (2005). Usability design and evaluation for privacy and security solutions. In L. F. Cranor & S. Garfinkel (Eds.), Security and usability (pp. 47–74). O’Reilly Media, Inc.
Li, J., Chen, X., Xhafa, F., & Barolli, L. (2014). Secure deduplication storage systems with keyword search. In Proceedings of 2014 IEEE 28th International Conference on Advanced Information Networking and Applications (AINA’14) (pp. 971–977).
Li, W., & Mitchell, C. J. (2014). Security issues in OAuth 2.0 SSO implementations. In Information Security - 17th International Conference, ISC 2014, Proceedings, Hong Kong, China, October 12–14, 2014 (pp. 529–541).
Mainka, C., Mladenov, V., Feldmann, F., Krautwald, J., & Schwenk, J. (2014). Your software at my service: Security analysis of SaaS single sign-on solutions in the cloud. In Proceedings of the 6th Edition of the ACM Workshop on Cloud Computing Security (pp. 93–104). New York: ACM.
Meadows, C. (2015). Emerging issues and trends in formal methods in cryptographic protocol analysis: Twelve years later. In Logic, rewriting, and concurrency (pp. 475–492). New York: Springer.
Pasquier, T., Singh, J., Bacon, J., & Eyers, D. (2016). Information flow audit for PaaS clouds. In International Conference on Cloud Engineering (IC2E). New York: IEEE.
Pulls, T., & Slamanig, D. (2015). On the feasibility of (practical) commercial anonymous cloud storage. Transactions on Data Privacy, 8(2), 89–111.
Puzio, P., Molva, R., Onen, M., & Loureiro, S. (2013). ClouDedup: secure deduplication with encrypted data for cloud storage. In Proceedings of 2013 IEEE 5th International Conference on Cloud Computing Technology and Science (CloudCom’13) (pp. 363–370).
Puzio, P., Molva, R. Önen, M., & Loureiro, S. (2016). PerfectDedup: Secure data deduplication. In J. Garcia-Alfaro, G. Navarro-Arribas, A. Aldini, F. Martinelli, N. Suri (Eds.), Data Privacy Management, and Security Assurance: 10th International Workshop, DPM 2015, and 4th International Workshop QASA 2015, Vienna, Austria, September 21–22, 2015 (pp. 150–166). Cham: Springer International Publishing. doi:10.1007/978-3-319-29883-2_10, ISBN:978-3-319-29883-2, http://dx.doi.org/10.1007/978-3-319-29883-2_10.
Rabotka, V., & Mannan, M. (2016). An evaluation of recent secure deduplication proposals. Journal of Information Security and Applications, 27, 3–18.
Radke, K., Boyd, C., Nieto, J. G., & Bartlett, H. (2014). CHURNs: Freshness assurance for humans. The Computer Journal, 58, 2404–2425. p. bxu073.
Radke, K., Boyd, C., Nieto, J. G., & Brereton, M. (2011). Ceremony analysis: Strengths and weaknesses. In Future challenges in security and privacy for academia and industry (pp. 104–115). Berlin: Springer.
Rahumed, A., Chen, H. C. H., Tang, Y., Lee, P. P. C., & Lui, J. C. S. (2011). A secure cloud backup system with assured deletion and version control. In Proceedings of the International Conference on Parallel Processing Workshops (pp. 160–167).
Ransome, J., & Misra, A. (2013). Core software security: Security at the source. Boca Raton: CRC Press.
Razavi, K., Gras, B., Bosman, E., Preneel, B., Giuffrida, C., & Bos, H. (2016). Flip Feng Shui: hammering a needle in the software stack. In Proceedings of the 25th USENIX Security Symposium.
Renaud, K., Volkamer, M., & Renkema-Padmos, A. (2014). Why doesn’t Jane protect her privacy? In Privacy enhancing technologies (pp. 244–262). New York: Springer.
Rifà-Pous, H., & Herrera-Joancomartí, J. (2011). Computational and energy costs of cryptographic algorithms on handheld devices. Future Internet, 3(1), 31–48.
Rusbridger, A. (2013). The Snowden leaks and the public.
Ruvalcaba, C., & Langin, C. (2009). Four attacks on OAuth - How to secure your OAuth implementation. System, 1, 19. https://www.sans.org/reading-room/whitepapers/application/attacks-oauth-secure-oauth-implementation-33644.
Samarati, P., & di Vimercati, S. (2016). Cloud security: Issues and concerns. In Encyclopedia on cloud computing. New York: Wiley.
Shirey, R. G., Hopkinson, K. M., Stewart, K. E., Hodson, D. D., & Borghetti, B. J. (2015). Analysis of implementations to secure Git for use as an encrypted distributed version control system. In 2015 48th Hawaii International Conference on System Sciences (HICSS) (pp. 5310–5319). New York: IEEE.
Shostack, A. (2014). Threat modeling: Designing for security. New York: Wiley.
Srinivasan, S. (2014). Security, trust, and regulatory aspects of cloud computing in business environments. In IGI Global.
Strandburg, K. (2014). Monitoring, datafication and consent: Legal approaches to privacy in a big data context. In J. Lane, V. Stodden, S. Bender, & H. Nissenbaum (Eds.), Privacy, big data, and the public good: Frameworks for engagement. Cambridge: Cambridge University Press.
Torres-Arias, S., Ammula, A. K., Curtmola, R., & Cappos, J. (2016) On omitting commits and committing omissions: Preventing Git metadata tampering that (re)introduces software vulnerabilities. In 25th USENIX Security Symposium, USENIX Security 16, Austin, TX, USA, August 10–12, 2016 (pp. 379–395).
Tysowski, P. K. (2013). Highly scalable and secure mobile applications in cloud computing systems. Ph.D. thesis, University of Waterloo.
Whitten, A., & Tygar, J. D. (1999). Why Johnny can’t encrypt: A usability evaluation of PGP 5.0. In Usenix Security (Vol. 1999).
Wilcox-O’Hearn, Z. (2008). Drew Perttula and attacks on convergent encryption [Online]. Available from: https://tahoe-lafs.org/hacktahoelafs/drew_perttula.html. Accessed December 9, 2016.
Wu, T. D., et al. (1998). The secure remote password protocol. In NDSS (Vol. 98, pp. 97–111).
Xue, K., & Hong, P. (2014). A dynamic secure group sharing framework in public cloud computing. IEEE Transactions on Cloud Computing, 2(4), 459–470.
Yang, G., Yu, J., Shen, W., Su, Q., Fu, Z., & Hao, R. (2016). Enabling public auditing for shared data in cloud storage supporting identity privacy and traceability. Journal of Systems and Software, 113, 130–139.
Yeo, H. S., Phang, X. S., Lee, H. J., & Lim, H. (2014). Leveraging client-side storage techniques for enhanced use of multiple consumer cloud storage services on resource-constrained mobile devices. Journal of Network and Computer Applications, 43, 142–156.
Acknowledgements
This work was supported by Comunidad de Madrid (Spain) under the project S2013/ICE-3095-CM (CIBERDINE).
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2018 Springer International Publishing AG
About this chapter
Cite this chapter
Sanchez-Gomez, A., Diaz, J., Hernandez-Encinas, L., Arroyo, D. (2018). Review of the Main Security Threats and Challenges in Free-Access Public Cloud Storage Servers. In: Daimi, K. (eds) Computer and Network Security Essentials. Springer, Cham. https://doi.org/10.1007/978-3-319-58424-9_15
Download citation
DOI: https://doi.org/10.1007/978-3-319-58424-9_15
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-58423-2
Online ISBN: 978-3-319-58424-9
eBook Packages: EngineeringEngineering (R0)