Information privacy refers to the desire of individuals to control or have some influence over data about themselves. Advances in information technology have raised concerns about information privacy and its impacts, and have motivated Information Systems researchers to explore information privacy issues, including technical solutions to address these concerns. In this paper, we inform researchers about the current state of information privacy research in IS through a critical analysis of the IS literature that considers information privacy as a key construct. The review of the literature reveals that information privacy is a multilevel concept, but rarely studied as such. We also find that information privacy research has been heavily reliant on studentbased and USA-centric samples, which results in findings of limited generalizability. Information privacy research focuses on explaining and predicting theoretical contributions, with few studies in journal articles focusing on design and action contributions. We recommend that future research should consider different levels of analysis as well as multilevel effects of information privacy. We illustrate this with a multilevel framework for information privacy concerns. We call for research on information privacy to use a broader diversity of sampling populations, and for more design and action information privacy research to be published in journal articles that can result in IT artifacts for protection or control of information privacy.

http://ftp.misq.org/skin/frontend/default/misq/pdf/appendices/2011/BelangerCrosslerAppendices.pdf

Privacy in the digital age: a review of information privacy research in information systems

Recent advances have given rise to the popularity and success of cloud computing. However, when outsourcing the data and business application to a third party causes the security and privacy issues to become a critical concern. Throughout the study at hand, the authors obtain a common goal to provide a comprehensive review of the existing security and privacy issues in cloud environments. We have identified five most representative security and privacy attributes (i.e., confidentiality, integrity, availability, accountability, and privacy-preservability). Beginning with these attributes, we present the relationships among them, the vulnerabilities that may be exploited by attackers, the threat models, as well as existing defense strategies in a cloud scenario. Future research directions are previously determined for each attribute.

/pdf/security-and-privacy-in-cloud-computing-bwdkcm2e30.pdf

Security and Privacy in Cloud Computing

Distributed denial of service (DDoS) resilience in cloud

Distributed denial-of-service is one kind of the most highlighted and most important attacks of today’s cyberworld. With simple but extremely powerful attack mechanisms, it introduces an immense th...

A survey of distributed denial-of-service attack, prevention, and mitigation techniques:

On cloud security attacks

IP traceback is a mechanism for tracing IP packets back to their sources. Tracing mechanisms include packet marking and logging. Log based traceback has the ability to backtrack a single packet by logging each packet at intermediate nodes in the networks. Marking based traceback helps to embed the path information of the intermediate nodes in the packets and the embedded information is used by a victim to reconstruct the attack path. Recent researches show that the performance of hybrid methods comprising logging and marking are appreciable as they help to traceback a single attack packet with less storage overhead on routers. In this study, we use a hybrid approach based on marking and logging to traceback single attack packet with less storage and traceback overhead on routers. We show this through a mathematical analysis. We also evaluate the traceback accuracy of our system and other hybrid approaches. Additionally, the simulation results are also presented to verify the effectiveness of the proposed system.

A hybrid scheme using packet marking and logging for IP traceback

Detecting and defeating Denial of Service (DoS) attacks is one of the hardest security problems on IP networks Furthermore, spoofing of IP packets makes it difficult to combat against and fix such attacks Packet marking is one of the methods to mitigate the DoS attack that helps traceback to the true origin of the packets A hybrid packet marking algorithm, along with traceback mechanism to find the true origin of the attack traffic is presented in this study The router marks the packets with inbound interface identifier of the router, but the novelty lies on the way it marks the packets The stamping based on modulo technique and reverse modulo for the purpose reconstruction of attack path to traceback to the real source of the packets are proposed The experimental measurements on the presented algorithm ensure that it requires less amount of time to mark and reconstruct the attack graph It is also able to trace back to single packet, nevertheless it requires logging at very few routers and thus incurring insignificant storage overhead on the routers The simulation study and the qualitative comparison with different traceback schemes are also presented to show the performance of the proposed system

/pdf/a-proposal-for-new-marking-scheme-with-its-performance-27j8ij184s.pdf

A proposal for new marking scheme with its performance evaluation for IP traceback

The steganography is a graceful tactic to convey the confidential information to an authorized recipient with the most reliable safety measure which leads to avoiding the breaches of data security. Nowadays the significance of taking strong protection measures in data communication medium has a challenging task because of the security related issues which are developed by unauthorized intervention. This presentation intends to provide a new approach based on a combination of Steganography and Cryptography procedure for inserting the hidden data into a cover object and obtain high data embedding capacity with an improved security level. In this approach, the Elliptic Curve Cryptography algorithm is used to encrypt the hidden information and the encrypted data inserted into a cover object by the process of the LSB Inversion algorithm. This blend of technology has successfully reached the benchmark level of some essential properties known as data confidentiality, integrity verification, capacity and robustness which are the evidence to prove the excellent performance and effective implementation of this steganography process. This new approach intensely tested through several steganalysis attacks such as analysis of visual, histogram, and chi-square. The outcome of the experimental result shown that the stego image has delivered the strong opposition force against all attacks. The data embedding capacity has attained at an improved level compared with typical methods.

Dual layer security of data using LSB inversion image steganography with elliptic curve cryptography encryption algorithm

The architecture development of cloud computing technology is growing tremendously in recent times, which leads to improvement of scalability, accessibility and cost reduction measures in the IT sectors of all enterprises. In this service, the data storage without reviewing security policies and procedures is a challenging task and probabilities of extracting secret information by an unauthorized intervention are more. However, to prevent the breaches of security in the cloud service, the steganography art plays an essential role in the data communication medium to improve the security measures, and it is an indispensable technique for hiding the secret information into a cover object. This paper describes the implementation of new steganography method with International Data Encryption Standard Algorithm (IDEA) and Least Significant Bit Grouping (LSBG) algorithm for embedding the secret information into an original image and extracting the same. The result shows the improvement of data embedding capacity and reduces the issues related to data security by effective utilization of this new approach, which reveals the remarkable achievement of the combinational execution of steganography and cryptography technique. The IDEA and LSBG have some vital qualities such as data confidentiality, integrity verification, capacity and robustness, which are crucial factors to achieve successful implementation of steganography process in data security system. The effectiveness and properties of the stego image can be evaluated by some specific measures like mean squared error, root mean squared error, peak signal to noise ratio and structural similarity index matrix to analyse the image quality. The results show that the proposed technique outperforms the existing methodologies and resolves the data security problem in data transmission and storage system of cloud computing services.

/pdf/dual-layer-security-of-image-steganography-based-on-idea-and-18sg1eynrv.pdf

Dual-layer security of image steganography based on IDEA and LSBG algorithm in the cloud environment

Cloud computing uses internet and remote servers for maintaining data and applications. It offers through internet the dynamic virtualized resources, bandwidth and on-demand software's to consumers and promises the distribution of many economical benefits among its adapters. It helps the consumers to reduce the usage of hardware, software license and system maintenance. Simple Object Access Protocol (SOAP) is the system that allows the communications interaction between different web services. SOAP messages are constructed using either HyperText Transport Protocol (HTTP) and/or Extensible Mark-up Language (XML). The new form of Distributed Denial of Service (DDoS) attacks that could potentially bring down a cloud web services through the use of HTTP and XML. Cloud computing suffers from major security threat problem by HTTP and XML Denial of Service (DoS) attacks. HX-DoS attack is a combination of HTTP and XML messages that are intentionally sent to flood and destroy the communication channel of the cloud service provider. To address the problem of HX-DoS attacks against cloud web services there is a need to distinguish between the legitimate and illegitimate messages. This can be done by using the rule set based detection, called CLASSIE and modulo marking method is used to avoid the spoofing attack. Reconstruct and Drop method is used to make decision and drop the packets on the victim side. It enables us to improve the reduction of false positive rate and increase the detection and filtering of DDoS attacks.

http://ieeexplore.ieee.org/iel7/6504612/6508161/06508330.pdf

S. Malliga

Papers

A hybrid scheme using packet marking and logging for IP traceback

A proposal for new marking scheme with its performance evaluation for IP traceback

Dual layer security of data using LSB inversion image steganography with elliptic curve cryptography encryption algorithm

Dual-layer security of image steganography based on IDEA and LSBG algorithm in the cloud environment

A packet marking approach to protect cloud environment against DDoS attacks