IMPLEMENTING SECURED INFORMATION SYSTEM FOR EDUCATIONAL INSTITUTIONS USING SERVER-SIDE ENCRYPTION OF FILES AND DATA ON THE CLOUD

Main Article Content

David Livingston J, Kirubakaran E, Richard S

Abstract

Though cloud computing promotes less expensive and collaborative work environment among a group of employees, it involves risks in keeping the resources such as computing and data secured.  Every organization classifies its data based on the sensitivity of data defined in its policy.  Some classification schemes label data as Confidential, Internal Use Only, or Public Domain, where as others use labels such as Level 1, Level 2, and Level 3.  Using cloud computing, especially in the public cloud model, the critical information of an organization is stored and maintained at various geographical locations in the cloud platform.  The organization does not have any control over the data in the cloud.  Though Cloud Service Providers (CSP) such as Amazon and Google provide their own mechanism for securing files and databases stored and maintained on the cloud, it is the sole responsibility of the users (Cloud Users) to secure their sensitive data uploaded and stored on the cloud storage.  This privacy preserving of sensitive data can be achieved using cryptography that conceals information from others.  Encryption allows data to be stored safely anywhere on the cloud.  Depending on the sensitivity of the data, the owner of the data needs to encrypt the data in transmission and/or at rest as in a database.  In this research, the authors have proposed a model of Server-side Encryption of files/data after migrating them on to the server.

Article Details

Section
Articles