Cloud Application Security using Hybrid Encryption
Alabi Orobosade, Thompson Aderonke, Alese Boniface, J. Arome
Abstract
The massive growth of sensitive information on cloud has made it more vulnerable. Thus, undeniably, the vulnerability shoots from the increasing number of users whose intentions are malicious. Since, the cloud is managed by a third party, ensuring cloud security services are of utmost importance, and coupled with the fact that cloud data and services resident in data centers are ubiquitous. The enlarged user surfing on the cloud for numerous purposes, therefore, necessitate a vastly safe and secured data. Consequent upon the highlighted points and providing a secure environment, this paper proposes a hybrid encryption algorithm comprising symmetric and asymmetric cryptography schemes suitable as state-of-the-art safeguarding users' privacy and security in the cloud. We propose a privacy model using Advanced Encryption Standard (AES) as a first level data encryption scheme prior cloud application data storage, while Elliptic Curve Cryptography (ECC) is the subsequent encryption scheme with AES key to achieve our aim of data confidentiality as well as is security in the cloud.