Research On Some Issues Of Data Security In Cloud Computing Services

Nowadays Cloud Computing is the most expected technological revolution worldwide. It brings in promotion to the technological revolution by its dynamic re-source allocation, the design of conception about on-demand services and a lower cost to solve the problem of large-scale data processing. So the proposition of Cloud Computing technology is surely with its objective necessity.The growth of data storage capacity brings in pressure to those storage indus-tries, but conversely contributes to their rapid development simultaneously. So Cloud Storage has become the ideal candidate for the next generation of storage services. As the conception of Cloud Storage spreading, many front-line IT enterprises are involved by services provision. Each of them gives its own Cloud Storage architec-ture based on their traditional technology and marketing strategies and offers cloud services externally. But while provision of services, it must take into account the problems emerging from the storage operations in the cloud. The transparency of cloud services makes data user know nothing about the internal architecture of Cloud Storage system and also its service provision mode. The only thing that data user should do is to keep their legal identities and authorized accessibility in order to communicate with Cloud Storage system and enjoy the services they want. Due to the existence of transparency, the new problems, such as the establishment of trust relationship between Cloud Storage service provider and data user, the proof of data integrity from Cloud Storage service provider to data user and the confidentiality of data information during mutual interaction, are all needed to be further solved at present.Based on the deep analysis of problems regarded to data security in Cloud Sto-rage, this dissertation mainly focuses on three main issues:the integrity of data information stored in the cloud, the confidentiality of data information during mutual sharing and the security of infrastructure used for data storage in the cloud. The main research works of this dissertation are as the followings:First of all, it gives a deep investigation to Cloud Computing technology. Due to the fact that certain faults may be involved during Cloud Computing service provi-sion, it clarifies the existence of information security issues, and then shows the con-tent of this research works by analyzing the problems exposed in those typical Cloud Computing application services. It also provides the foundation for subsequent re-searches.Secondly, aiming at the security issues of data information themselves stored in the cloud, it analyzes the existing research works regarded to data integrity protec-tion and points out the insufficient of the widely used data structure Merkle Hash Tree. And then it proposes a MB-tree based data structure in order to organize the data and guarantee their integrity. At the same time, it tries to support the dynamic operations to data information by leveraging the changes of the data structure.Thirdly, from the applicable point of view to the data stored in the cloud, it tries to cope with the problems of confidentiality protection during data interaction in Cloud Storage. Inspired by the identity-based encryption mechanism, it makes use of fuzzy identity-based encryption mechanism where the identities are extended to deal with the data information, and then extract the selection of identities to the problem of attribute relevance analysis in data mining for keeping the confidentiality of those identities.Finally, focusing on the infrastructures used for data storage in the cloud, it considers the security of host system. Based on the requirement of establishing trust relationship between data user and cloud service provider, which is proposed due to the transparency of service provision, it conducts a comprehensive investigation about the works on combination of Trusted Computing and Cloud Computing. The conception of virtual machine migration with its corresponding virtual trusted plat-form module between trusted environments is proposed in order to protect the secu-rity of those infrastructures used for storage.This dissertation mainly focuses on the security of data information stored in the cloud and gives deep research works on those three aspects, namely the integrity of data information stored in the cloud, the confidentiality of data information during mutual sharing and the security of infrastructures used for data storage in the cloud. The methods proposed can not only effectively provide data management and secu-rity guarantees, but also can be used for reference to the subsequent researches in the future.