Home   >   CSC-OpenAccess Library   >    Manuscript Information
Full Text Available

(230.05KB)
This is an Open Access publication published under CSC-OpenAccess Policy.
Multi-part Dynamic Key Generation For Secure Data Encryption
Srivatsan R Iyer, Tejas Arackal
Pages - 37 - 46     |    Revised - 10-09-2014     |    Published - 10-10-2014
Volume - 8   Issue - 4    |    Publication Date - October 2014  Table of Contents
MORE INFORMATION
KEYWORDS
Encryption, Dynamic Key Generation, Data At Rest Security, CRUD.
ABSTRACT
Storage of user or application-generated user-specific private, confidential data on a third party storage provider comes with its own set of challenges. Although such data is usually encrypted while in transit, securely storing such data at rest presents unique security challenges. The first challenge is the generation of encryption keys to implement the desired threat containment. The second challenge is secure storage and management of these keys. This can be accomplished in several ways. A naive approach can be to trust the boundaries of a secure network and store the keys within these bounds in plain text. A more sophisticated method can be devised to calculate or infer the encryption key without explicitly storing it. This paper focuses on the latter approach. Additionally, the paper also describes the implementation of a system that in addition to exposing a set of REST APIs for secure CRUD operations also provides a means for sharing the data among specific users.
CITED BY (0)  
1 Directory of Open Access Journals (DOAJ)
2 Google Scholar
3 CiteSeerX
4 refSeek
5 Scribd
6 slideshare
7 PdfSR
1 E. McCallister, T. Grance, K. Scarfone. “Guide to Protecting the Confidentiality of Personally Identifiable Information (PII).” Internet: http://csrc.nist.gov/publications/nistpubs/800-122/sp800-122.pdf, Apr. 2010 [Sep 30, 2014].
2 Taylor, N.E., Ives, Z.G. “Reliable storage and querying for collaborative data sharing systems.” in Proc. International Conference on Data Engineering (ICDE), 2010, pp. 40-51.
3 Trusted Computing Group. “TCG Specification Architecture Overview.” Internet: http://www.trustedcomputinggroup.org/files/resource_files/AC652DE1-1D09-3519- ADA026A0C05CFAC2/TCG_1_4_Architecture_Overview.pdf, Aug. 2, 2007 [Aug. 10, 2014].
4 A. Patel and M. Kumar. (2013, Apr.). “A Proposed Model for Data Security of Cloud Storage Using Trusted Platform Module.” International Journal of Advanced Research in Computer Science and Software Engineering. [On-line]. 3(4), pp. 862-866. Available: http://www.ijarcsse.com/docs/papers/Volume_3/4_April2013/V3I4-0430.pdf [Aug. 10, 2014].
5 OpenStack. “Object Encryption: Extending Swift.” Internet: https://wiki.openstack.org/wiki/ObjectEncryption, Jul. 8, 2013 [Aug. 10, 2014].
6 OpenStack. “KeyManager” Internet: https://wiki.openstack.org/wiki/KeyManager, Apr. 23, 2013 [Sep. 28, 2014].
7 OwnCloud. “ownCloud Administrators Manual” Internet: http://doc.owncloud.org/server/6.0/admin_manual/configuration/configuration_encryption.html Sep 9, 2014 [Sep . 28, 2014].
8 T. Howes. (1995, Jul.). “The Lightweight Directory Access Protocol: X.500 Lite.” CITI Technical Report. [On-line]. 95(8), pp. 1-9. Available: http://www.openldap.org/pub/umich/ldap.pdf [Aug. 10, 2014].
Mr. Srivatsan R Iyer
Webshar LLC - India
srivatsan.iyer.1990@gmail.com
Mr. Tejas Arackal
TCS TataCapital - India