eCite Digital Repository

A new biometric-based security framework for cloud storage


Nakouri, I and Hamdi, M and Kim, T-H, A new biometric-based security framework for cloud storage, Proceedings from the 13th International Wireless Communications and Mobile Computing Conference (IWCMC), 26-30 June 2017, Valencia, Spain, pp. 390-395. ISBN 9781509043736 (2017) [Refereed Conference Paper]

Copyright Statement

Copyright 2017 IEEE

DOI: doi:10.1109/IWCMC.2017.7986318


Cloud computing is a paradigm that is redrawing the information technology landscape by outsourcing the computation and data storage services to public cloud service providers. Over the last years, cloud storage services revealed an unprecedented opportunity for Internet users to profit from online storage services. Thanks to their enriched toolbox for file sharing and syncing, cloud storage platforms provide organizations and individuals with a reliable and cost-effective collaborative workspace. However, in addition to the traditional security issues, cloud storage services introduce new security concerns that are mainly related to the insecure state in which the files are while being synchronized. Recent publications highlighted the significant impact of the security flaws that exist in the syncing protocols used by the most popular cloud storage application. In this paper, we consider the Man in the Cloud (MitC) attack demonstrated in 2015 which allows accessing the files stored in a private repository without the possession of the authentication and authorization credentials. To address this issue, we propose a biometric-based framework for cloud storage services aiming to impede intruders from launching MitC attacks. Our framework is based on our previously published technique to combine chaotic maps and fuzzy extractors. The experiments performed on real biometric features confirm the potential brought by our framework to implement strong authentication in cloud storage applications.

Item Details

Item Type:Refereed Conference Paper
Keywords:cloud storage, biometrics, file syncing, fuzzy extractors, chaotic maps, MitC attack
Research Division:Information and Computing Sciences
Research Group:Other information and computing sciences
Research Field:Other information and computing sciences not elsewhere classified
Objective Division:Expanding Knowledge
Objective Group:Expanding knowledge
Objective Field:Expanding knowledge in the information and computing sciences
UTAS Author:Kim, T-H (Dr Tai Kim)
ID Code:125227
Year Published:2017
Deposited By:Information and Communication Technology
Deposited On:2018-04-09
Last Modified:2018-06-15

Repository Staff Only: item control page