In this paper, we define and explore proofs of retrievability (PORs). A POR scheme enables an archive or back-up service (prover) to produce a concise proof that a user (verifier) can retrieve a target file F, that is, that the archive retains and reliably transmits file data sufficient for the user to recover F in its entirety.A POR may be viewed as a kind of cryptographic proof of knowledge (POK), but one specially designed to handle a large file (or bitstring) F. We explore POR protocols here in which the communication costs, number of memory accesses for the prover, and storage requirements of the user (verifier) are small parameters essentially independent of the length of F. In addition to proposing new, practical POR constructions, we explore implementation considerations and optimizations that bear on previously explored, related schemes.In a POR, unlike a POK, neither the prover nor the verifier need actually have knowledge of F. PORs give rise to a new and unusual security definition whose formulation is another contribution of our work.We view PORs as an important tool for semi-trusted online archives. Existing cryptographic techniques help users ensure the privacy and integrity of files they retrieve. It is also natural, however, for users to want to verify that archives do not delete or modify files prior to retrieval. The goal of a POR is to accomplish these checks without users having to download the files themselves. A POR can also provide quality-of-service guarantees, i.e., show that a file is retrievable within a certain time bound.

PORs: Proofs of Retrievability for Large Files

In this paper, the blockchain technology is utilized to build the first incentive mechanism of nodes as per data storage for wireless sensor networks (WSNs) In our system, the nodes storing the data are rewarded with digital money The more the data stored by the node, the more the reward it achieves Moreover, two blockchains are constructed One is utilized to store data of each node and another is to control the access of data In addition, our proposal adopts the provable data possession to replace the proof of work (PoW) in original bitcoins to carry out the mining and storage of new data blocks, which greatly reduces the computing power comparing to the PoW mechanism Furthermore, the preserving hash functions are used to compare the stored data and the new data block The new data can be stored in the node which is closest to the existing data, and only the different subblocks are stored Thus, it can greatly save the storage space of network nodes

/pdf/incentive-mechanism-of-data-storage-based-on-blockchain-for-qm0u4d007k.pdf

Incentive Mechanism of Data Storage Based on Blockchain for Wireless Sensor Networks

Identity and access management in cloud environment: Mechanisms and challenges

The cloud is the best method used for the utilization and organization of data. The cloud provides many resources for us via the internet. There are many technologies used in cloud computing systems; each one uses a different kind of protocols and methods. Many tasks can execute on different servers per second, which cannot execute on their computer. The most popular technologies used in the cloud system are Hadoop, Dryad, and another map reducing framework. Also, there are many tools used to optimize the performance of the cloud system, such as Cap3, HEP, and Cloudburst. This paper reviews in detail the cloud computing system, its used technologies, and the best technologies used with it according to multiple factors and criteria such as the procedure cost, speed cons and pros. Moreover, A comprehensive comparison of the tools used for the utilization of cloud computing systems is presented.

/pdf/comparison-among-cloud-technologies-and-cloud-performance-266sqorz0h.pdf

Comparison Among Cloud Technologies and Cloud Performance

Blockchain technologies can enable decentralized and trustful features for the Internet of Things (IoT). Although, existing blockchain based solutions to provide data integrity verification for semi-trusted data storages (e.g. cloud providers) cannot respect the time determinism required by Cyber-Physical Systems (CPS). Additionally, they cannot be applied to resource-constrained IoT devices. We propose an architecture that can take advantage of blockchain features to allow further integrity verification of data produced by IoT devices even in the realm of CPS. Our architecture is divided into three levels, each of them responsible for tasks compatible with their resources capabilities. The first level, composed of sensors, actuators, and gateways, introduces the concept of Proof-of-Trust (PoT), an energy-efficient, time-deterministic and secure communication based on the Trustful Space-Time Protocol (TSTP). Upper levels are responsible for data persistence and integrity verification in the Cloud. The work also comprises a performance evaluation of the critical path of data to demonstrate that the architecture respect time-bounded operations demanded by the sense-decide-actuate cycle of CPSs. The additional delay of 5.894us added by our architecture is negligible for a typical TSTP with IEEE 802.15.4 radios which has communication latencies in the order of hundreds of milisseconds in each hop.

IoT Data Integrity Verification for Cyber-Physical Systems Using Blockchain

An efficient data integrity auditing protocol for cloud computing

Rits-mht

Comparative analysis of cloud data integrity auditing protocols

Today cloud computing has emerged as an esteemed Information Technology (IT) platform which offers variety of quality services to its users. Offering storage space is a pivotal cloud computing service where users can outsource their local data and get relieve from its maintenance burden. However, the loss of proprietorship on data creates the need of a mechanism for auditing integrity of outsourced data. Due to expertise and resource limitations, a Third Party Auditor (TPA) is required to perform an integrity audit on user’s sensitive data. Data Integrity Auditing (DIA) protocols proposed so far relies completely on Public Key Infrastructures (PKI). Management of certificates of public keys in PKI is a complex process. In the proposed work, the features of Identity Based Signatures (IBS) are combined with public verification of data to construct an efficient protocol for DIA in cloud storage. Security model for proposed ID-PAPC has been established in a ROM and relies on stability of Computational Diffie Hellman Problem (CDHP).

ID-PAPC: Identity based Public Auditing Protocol for Cloud Computing

. The article looks into the problematic issue of forming/developing teaching staff’s cyber security skills (a case study of the teachers from the National University of Defence of Ukraine named after Ivan Cherniakhovskyi). The importance of this issue is fueled by the analysis of cyber security of user information on personal computers through the prism of vulnerabilities in the security mechanisms implementation for Microsoft Windows operating system (versions 7, 10), including access procedures. The key steps and specificities of the procedure for granting access (identification, authentication and authorization) in Microsoft Windows operating system are described. A survey among the teachers-respondents was conducted to figure out whether they understand the essence of the procedure for granting access and have some idea about methods of hacking, bypassing and protecting this access. The survey revealed that the teaching staff totally misunderstand the concepts and procedures. The issue of forming/developing teaching staff’s cyber security skills becomes even more relevant amid the implementation of basic cyber security principles in Ukraine, adopted by the Verkhovna Rada in 2017. Accordingly, the authors describe typical modern tools of hacking, bypassing and protecting the procedure for granting access in Microsoft Windows operating systems (versions 7, 10), which will enable everyone to master some practical steps in order to realize the importance and necessity of key tools and techniques of ensuring personal cyber security. In doing so, the authors intended to visualize possible ways of cyber security violation and increase awareness about them with the aim of preventing cyber risks. In addition, the authors seek to inform different categories of people that contemporary information and communications technologies not only expand the capabilities of our global digital society, but also increase exponentially the number of objects vulnerable to cyber threats. In addition, our task was to promote the issues of forming/developing teachers’ skills in supporting their cyber security by training them to implement some cyber security tools and techniques aimed at reducing cyber risks. Our attention is also paid to some ethical aspects in reviewing the outlined outcomes, presented for educational purposes in an effort to raise public awareness of the described vulnerabilities, which pose cyber risks to those involved in information sphere.

Formation of cyber security skills through methods of hacking, bypassing and protecting the procedure for granting access in microsoft windows operating system

Neenu Garg

Papers

An efficient data integrity auditing protocol for cloud computing

Rits-mht

Comparative analysis of cloud data integrity auditing protocols

ID-PAPC: Identity based Public Auditing Protocol for Cloud Computing

Formation of cyber security skills through methods of hacking, bypassing and protecting the procedure for granting access in microsoft windows operating system