减轻云中的内部数据盗窃攻击

2016 Second International Conference on Science Technology Engineering and Management (ICONSTEM) Pub Date : 2016-03-30 DOI:10.1109/ICONSTEM.2016.7560956

R. Kowsik, L. Vignesh

{"title":"减轻云中的内部数据盗窃攻击","authors":"R. Kowsik, L. Vignesh","doi":"10.1109/ICONSTEM.2016.7560956","DOIUrl":null,"url":null,"abstract":"Cloud computing promises to significantly change the way we use computers and access and store our personal and busi-ness information. With these new computing and communications paradigms arise new data security challenges. Existing data protection mechanisms such as encryption have failed in preventing data theft attacks, especially those perpetrated by an insider to the cloud provider. We propose a different approach for securing data in the cloud using offensive decoy technology. We monitor data access in the cloud and detect abnormal data access patterns. When unauthorized access is suspected and then verified using challenge questions, we launch a disinformation attack by returning large amounts of decoy information to the attacker. This protects against the misuse of the user's real data. Experiments conducted in a local file setting provide evidence that this approach may provide unprecedented levels of user data security in a Cloud environment.","PeriodicalId":256750,"journal":{"name":"2016 Second International Conference on Science Technology Engineering and Management (ICONSTEM)","volume":"97 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2016-03-30","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"6","resultStr":"{\"title\":\"Mitigating insider data theft attacks in the cloud\",\"authors\":\"R. Kowsik, L. Vignesh\",\"doi\":\"10.1109/ICONSTEM.2016.7560956\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Cloud computing promises to significantly change the way we use computers and access and store our personal and busi-ness information. With these new computing and communications paradigms arise new data security challenges. Existing data protection mechanisms such as encryption have failed in preventing data theft attacks, especially those perpetrated by an insider to the cloud provider. We propose a different approach for securing data in the cloud using offensive decoy technology. We monitor data access in the cloud and detect abnormal data access patterns. When unauthorized access is suspected and then verified using challenge questions, we launch a disinformation attack by returning large amounts of decoy information to the attacker. This protects against the misuse of the user's real data. Experiments conducted in a local file setting provide evidence that this approach may provide unprecedented levels of user data security in a Cloud environment.\",\"PeriodicalId\":256750,\"journal\":{\"name\":\"2016 Second International Conference on Science Technology Engineering and Management (ICONSTEM)\",\"volume\":\"97 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2016-03-30\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"6\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2016 Second International Conference on Science Technology Engineering and Management (ICONSTEM)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICONSTEM.2016.7560956\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2016 Second International Conference on Science Technology Engineering and Management (ICONSTEM)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICONSTEM.2016.7560956","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 6

摘要

云计算承诺将显著改变我们使用计算机以及访问和存储个人和商业信息的方式。随着这些新的计算和通信范式的出现，出现了新的数据安全挑战。加密等现有数据保护机制无法防止数据盗窃攻击，尤其是由云提供商内部人员实施的攻击。我们提出了一种使用进攻性诱饵技术来保护云中的数据的不同方法。我们监控云中的数据访问并检测异常的数据访问模式。当怀疑未经授权的访问并使用挑战问题进行验证时，我们通过向攻击者返回大量诱饵信息来发起虚假信息攻击。这可以防止滥用用户的真实数据。在本地文件设置中进行的实验证明，这种方法可以在云环境中提供前所未有的用户数据安全级别。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Mitigating insider data theft attacks in the cloud

Cloud computing promises to significantly change the way we use computers and access and store our personal and busi-ness information. With these new computing and communications paradigms arise new data security challenges. Existing data protection mechanisms such as encryption have failed in preventing data theft attacks, especially those perpetrated by an insider to the cloud provider. We propose a different approach for securing data in the cloud using offensive decoy technology. We monitor data access in the cloud and detect abnormal data access patterns. When unauthorized access is suspected and then verified using challenge questions, we launch a disinformation attack by returning large amounts of decoy information to the attacker. This protects against the misuse of the user's real data. Experiments conducted in a local file setting provide evidence that this approach may provide unprecedented levels of user data security in a Cloud environment.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2016 Second International Conference on Science Technology Engineering and Management (ICONSTEM)

自引率

0.00%

发文量