• 한국정보처리학회:학술대회논문집
• /
• 한국정보처리학회 2011년도 춘계학술발표대회
• /
• pp.871-874
• /
• 2011

The fast emerging of network technology and the high demand of computing resources have prompted many organizations to outsource their storage and computing needs. Cloud based storage services such as Microsoft's Azure and Amazon's S3 allow customers to store and retrieve any amount of data, at anytime from anywhere via internet. The scalable and dynamic of the cloud storage services help their customer to reduce IT administration and maintenance costs. No doubt, cloud based storage services brought a lot of benefits to its customer by significantly reducing cost through optimization increased operating and economic efficiencies. However without appropriate security and privacy solution in place, it could become major issues to the organization. As data get produced, transferred and stored at off premise and multi tenant cloud based storage, it becomes vulnerable to unauthorized disclosure and unauthorized modification. An attacker able to change or modify data while data inflight or when data is stored on disk, so it is very important to secure data during its entire life-cycle. The traditional cryptography primitives for the purpose of data security protection cannot be directly adopted due to user's lose control of data under off premises cloud server. Secondly cloud based storage is not just a third party data warehouse, the data stored in cloud are frequently update by the users and lastly cloud computing is running in a simultaneous, cooperated and distributed manner. In our proposed mechanism we protect the integrity, authentication and confidentiality of cloud based data with the encrypt- then-upload concept. We modified and applied proxy re-encryption protocol in our proposed scheme. The whole process does not reveal the clear data to any third party including the cloud provider at any stage, this helps to make sure only the authorized user who own corresponding token able to access the data as well as preventing data from being shared without any permission from data owner. Besides, preventing the cloud storage providers from unauthorized access and making illegal authorization to access the data, our scheme also protect the data integrity by using hash function.

• 인터넷정보학회논문지
• /
• 제13권2호
• /
• pp.21-32
• /
• 2012

본 논문은 씬클라이언트 환경에서 클라우드 컴퓨팅을 이용하여 N-Screen-as-a-Service(NaaS) 기반하여 통합 된 어플리케이션을 스트리밍하기 위한 Virtual Aggregation Gateway(VAG)를 제안한다. 또한, 본 논문에서는 인터넷을 통하여 대용량 멀티 클라이언트에서의 융합된 어플리케이션 스트림의 화면 공유 시 서버 측 문제에 대해 기술한다. 특히, 콘텐츠를 전달하기 위해 가능한 모든 미디어 시그널링을 효율적으로 관리를 하는 N-Screen 세션 관리자 프레임워크를 제안한다. 더 나아가, 사용자들에게 재생 멀티미디어 콘텐츠 (TV 드라마, 광고, 대본 등)를 제공한다. 제안한 N-Screen 세션 관리자의 목표는 다음과 같다. (1) 모든 통신 세션의 세션 상태를 관리 (2) 수신된 요구사항이나 답변들의 제어를 관리 (3) 사용자들에게 언제 어디서든 이기종 단말에 화면을 공유하면서 멀티미디어 콘텐츠를 재생 그리고 (4) 사용자들이 진행 중인 통신 세션을 이기종 단말로 전환을 가능하게 해준다. 마지막으로, Session Initiation Protocol (SIP)에서의 보안 문제점 및 재생 혹은 전송 세션에서의 지연을 최소화 하는 것에 대해 기술한다.