Data backup security in cloud storage system
DOI:
https://doi.org/10.18372/2225-5036.22.10703Keywords:
backup, cloud system, backup security, key sharing, Shamir scheme, secure update, validity checkAbstract
Cloud backup system is proposed, which provides means for effective creation, secure storage and restore of backups inCloud. For data archiving new efficient SGBP file format is being used in the system, which is based on DEFLATE compression
algorithm. Proposed format provides means for fast archive creation, which can contain significant amounts of data. Modern
approaches of backup archive protection are described in the paper. Also the SGBP format is compared to heavily used ZIP format
(both ZIP32 and ZIP64). SGBP backup archives are protected using symmetric encryption AES algorithm. Because in case of loss,
distortion or leak of the encryption key backup archive will become inaccessible, there is no doubt that the SGBP encryption keys need
special protection and management. The cryptographic keys of SGBP backups are protected using distributed cloud storage system,
which is based on Shamir’s threshold secret sharing scheme. After secret sharing all individual secret shares are distributed and
saved to different cloud storage services (e.g. Dropbox, GoogleDrive, SkyDrive etc.). Modules for key share validity check and share
update without key reconstruction are included in the system.
References
Big Data in Official Statistics Vulnerabilities - [Electronic resource] / Mountain View, 2016 - Access mode: World Wide Web. – URL: http://www1.unece.org/stat/platform/display/bigdata/Big+Data+in+Official+Statistics.
ZIP File Format Specification, ver. 6.3.4. - Access mode: World Wide Web. – URL: https://pkware.cachefly.net/webdocs/casestudies/APPNOTE.TXT.
Schneier B. Applied Cryptography – 1994. – Р. 34.
Shamir A. How to Share a Secret, Communications of the ACM. – Vol. 22, Issue 11, 1979. – P. 612-613.
Downloads
Published
How to Cite
Issue
Section
License
The scientific journal "Ukrainian Scientific Journal of Information Security" adheres to the principles of open science and provides free, free and permanent access to all published materials. The goal of the policy is to increase the visibility, citation and impact of the results of scientific research in the field of information security. The journal works according to the principles of Open Access and does not charge a fee for access to published articles.
All articles are published in Open Access under the Creative Commons Attribution 4.0 International (CC BY 4.0) license.
Copyright
Authors who publish their works in the journal “Ukrainian Scientific Journal of Information Security”:
-
retain the copyright to their publications;
-
grant the journal the right of first publication of the article;
-
agree to the distribution of their materials under the CC BY 4.0 license;
-
have the right to reuse, archive, and distribute their works (including in institutional and subject repositories), provided that proper reference is made to the original publication in the journal.
