Cloud security is an evolving sub-domain of computer and network security. Cloud platform utilizes third-party data centers model. An example of cloud platform as a service (PaaS) is Heroku. It supports several programming languages that are used for web application deployment model. Heroku is based on a managed container system, with integrated data services and a powerful ecosystem, for deploying and running modern apps. One essential issue in cloud computing is data security, which is handled using cryptography methods. A possible method to encrypt data is Advanced Encryption Standard (AES). In this paper, we implement Heroku as a cloud platform, then we implement AES for data security in Heroku. The performance evaluation shows that AES cryptography can be used for data security. Moreover, delay calculation of data encryption shows that larger size of data increases the data delay time for encrypting data.
The CLIENT (e.g., David) first decides the users (e.g., Alice and Bob) who can share the data. Then, David encrypts the data under the identities Alice and Bob, and uploads the ciphertext of the shared data to the cloud server.
By delegating the generation of re-encryption key to the key authority, the ciphertext size of their scheme also achieves constant. However, to this end, the key authority has to maintain a data table for each user to store the user’s secret key for all time period, which brings storage cost for key authority.
In this module, either Alice or Bob wants to get the shared data, she or he can download and decrypt the corresponding ciphertext. However, for an unauthorized user and the cloud server, the plaintext of the shared data is not available.
In some cases, e.g., Alice’s authorization gets expired, David can download the ciphertext of the shared data, and then decrypt-then-re-encrypt the shared data such that Alice is prevented from accessing the plaintext of the shared data, and then upload the re-encrypted data to the cloud server again.
A cloud service provider has huge storage space, computation resource and shared service to provide the clients. It is responsible for controlling the data storage in outside users’ access, and provides the corresponding contents.
Public Cloud Server (PCS) is an entity, which is managed by cloud service provider, has significant storage space and computation resource to maintain the client’s data. If some challenged blocks have been modified or deleted, the malicious PCS cannot generate a valid remote data integrity proof.
There are several security concerns associated with cloud computing. The issues are divided into two categories. Firstly, a security issued by cloud providers. Secondly, security issues faced by their customers. They put data in the cloud and entrust the provider.
That is why data security on cloud computing is needed. Data security becomes a major challenge in cloud computing to reduce the risk. These risks are generally associated with open, shared upload, and distributed environments
Data store can be encrypted by the customer’s applications to fulfill the security requirements. Accordingly, Heroku needs some applications to secure the data before storing it to the database. One of the most popular and the most secure encryption algorithm is Advanced Encryption Standard (AES).
AES is a symmetric block chipper with block size variation of 64 to 256 bits. In this paper, we discuss data security in cloud computing using AES under Heroku cloud. We implement Heroku cloud as cloud computing platform, then we implement AES in the website to secure data.
In this paper, we proposed data security in cloud computing using AES under Heroku cloud. The implementation for deploying Heroku as a cloud platform consists of several steps. Then, we implement a website as an application to data security.
In the website, we implement AES as data security algorithm. The performance evaluation shows that AES cryptography can be used for data security. Moreover, delay calculation of data encryption shows that larger size of data increases the data delay time for encrypting data.