A Scattering Technique for Protecting Cryptographic Keys in the Cloud

Fatma Mohamed; Bushra Albelooshi; Khaled Salah; Chan Yeob Yeun; Ernesto Damiani

doi:10.1109/FAS-W.2017.163

A Scattering Technique for Protecting Cryptographic Keys in the Cloud

Fatma Mohamed
, Bushra Albelooshi
, Khaled Salah
, Chan Yeob Yeun
, Ernesto Damiani

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

1 Scopus citations

Abstract

Cloud computing has become a widely used computing paradigm providing on-demand computing and storage capabilities based on pay-As-you-go model. Recently, many organizations, especially in the field of big data, have been adopting the cloud model to perform data analytics through leasing powerful Virtual Machines (VMs). VMs can be attractive targets to attackers as well as untrusted cloud providers who aim to get unauthorized access to the business critical-data. The obvious security solution is to perform data analytics on encrypted data through the use of cryptographic keys as that of the Advanced Encryption Standard (AES). However, it is very easy to obtain AES cryptographic keys from the VM's Random Access Memory (RAM). In this paper, we present a novel key-scattering (KS) approach to protect the cryptographic keys while encrypting/decrypting data. Our solution is highly portable and interoperable. Thus, it could be integrated within today's existing cloud architecture without the need for further modifications. The feasibility of the approach has been proven by implementing a functioning prototype. The evaluation results show that our approach is substantially more resilient to brute force attacks and key extraction tools than the standard AES algorithm, with acceptable execution time.

Original language	British English
Title of host publication	Proceedings - 2017 IEEE 2nd International Workshops on Foundations and Applications of Self* Systems, FAS*W 2017
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	301-306
Number of pages	6
ISBN (Electronic)	9781509065585
DOIs	https://doi.org/10.1109/FAS-W.2017.163
State	Published - 9 Oct 2017
Event	2nd IEEE International Workshops on Foundations and Applications of Self* Systems, FAS*W 2017 - Tucson, United States Duration: 18 Sep 2017 → 22 Sep 2017

Publication series

Name	Proceedings - 2017 IEEE 2nd International Workshops on Foundations and Applications of Self* Systems, FAS*W 2017

Conference

Conference	2nd IEEE International Workshops on Foundations and Applications of Self* Systems, FAS*W 2017
Country/Territory	United States
City	Tucson
Period	18/09/17 → 22/09/17

Keywords

Cloud Computing
Cloud Security
Memory Protection
Secure Cryptographic Keys
Virtual Machines

Access to Document

10.1109/FAS-W.2017.163

Cite this

Mohamed, F., Albelooshi, B., Salah, K., Yeun, C. Y., & Damiani, E. (2017). A Scattering Technique for Protecting Cryptographic Keys in the Cloud. In Proceedings - 2017 IEEE 2nd International Workshops on Foundations and Applications of Self* Systems, FAS*W 2017 (pp. 301-306). Article 8064139 (Proceedings - 2017 IEEE 2nd International Workshops on Foundations and Applications of Self* Systems, FAS*W 2017). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/FAS-W.2017.163

Mohamed, Fatma ; Albelooshi, Bushra ; Salah, Khaled et al. / A Scattering Technique for Protecting Cryptographic Keys in the Cloud. Proceedings - 2017 IEEE 2nd International Workshops on Foundations and Applications of Self* Systems, FAS*W 2017. Institute of Electrical and Electronics Engineers Inc., 2017. pp. 301-306 (Proceedings - 2017 IEEE 2nd International Workshops on Foundations and Applications of Self* Systems, FAS*W 2017).

@inproceedings{033434416d3d45ce9aa83e73843ea80f,

title = "A Scattering Technique for Protecting Cryptographic Keys in the Cloud",

abstract = "Cloud computing has become a widely used computing paradigm providing on-demand computing and storage capabilities based on pay-As-you-go model. Recently, many organizations, especially in the field of big data, have been adopting the cloud model to perform data analytics through leasing powerful Virtual Machines (VMs). VMs can be attractive targets to attackers as well as untrusted cloud providers who aim to get unauthorized access to the business critical-data. The obvious security solution is to perform data analytics on encrypted data through the use of cryptographic keys as that of the Advanced Encryption Standard (AES). However, it is very easy to obtain AES cryptographic keys from the VM's Random Access Memory (RAM). In this paper, we present a novel key-scattering (KS) approach to protect the cryptographic keys while encrypting/decrypting data. Our solution is highly portable and interoperable. Thus, it could be integrated within today's existing cloud architecture without the need for further modifications. The feasibility of the approach has been proven by implementing a functioning prototype. The evaluation results show that our approach is substantially more resilient to brute force attacks and key extraction tools than the standard AES algorithm, with acceptable execution time.",

keywords = "Cloud Computing, Cloud Security, Memory Protection, Secure Cryptographic Keys, Virtual Machines",

author = "Fatma Mohamed and Bushra Albelooshi and Khaled Salah and Yeun, \{Chan Yeob\} and Ernesto Damiani",

note = "Publisher Copyright: {\textcopyright} 2017 IEEE.; 2nd IEEE International Workshops on Foundations and Applications of Self* Systems, FAS*W 2017 ; Conference date: 18-09-2017 Through 22-09-2017",

year = "2017",

month = oct,

day = "9",

doi = "10.1109/FAS-W.2017.163",

language = "British English",

series = "Proceedings - 2017 IEEE 2nd International Workshops on Foundations and Applications of Self* Systems, FAS*W 2017",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "301--306",

booktitle = "Proceedings - 2017 IEEE 2nd International Workshops on Foundations and Applications of Self* Systems, FAS*W 2017",

address = "United States",

}

Mohamed, F, Albelooshi, B, Salah, K , Yeun, CY & Damiani, E 2017, A Scattering Technique for Protecting Cryptographic Keys in the Cloud. in Proceedings - 2017 IEEE 2nd International Workshops on Foundations and Applications of Self* Systems, FAS*W 2017., 8064139, Proceedings - 2017 IEEE 2nd International Workshops on Foundations and Applications of Self* Systems, FAS*W 2017, Institute of Electrical and Electronics Engineers Inc., pp. 301-306, 2nd IEEE International Workshops on Foundations and Applications of Self* Systems, FAS*W 2017, Tucson, United States, 18/09/17. https://doi.org/10.1109/FAS-W.2017.163

A Scattering Technique for Protecting Cryptographic Keys in the Cloud. / Mohamed, Fatma; Albelooshi, Bushra; Salah, Khaled et al.
Proceedings - 2017 IEEE 2nd International Workshops on Foundations and Applications of Self* Systems, FAS*W 2017. Institute of Electrical and Electronics Engineers Inc., 2017. p. 301-306 8064139 (Proceedings - 2017 IEEE 2nd International Workshops on Foundations and Applications of Self* Systems, FAS*W 2017).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - A Scattering Technique for Protecting Cryptographic Keys in the Cloud

AU - Mohamed, Fatma

AU - Albelooshi, Bushra

AU - Salah, Khaled

AU - Yeun, Chan Yeob

AU - Damiani, Ernesto

PY - 2017/10/9

Y1 - 2017/10/9

N2 - Cloud computing has become a widely used computing paradigm providing on-demand computing and storage capabilities based on pay-As-you-go model. Recently, many organizations, especially in the field of big data, have been adopting the cloud model to perform data analytics through leasing powerful Virtual Machines (VMs). VMs can be attractive targets to attackers as well as untrusted cloud providers who aim to get unauthorized access to the business critical-data. The obvious security solution is to perform data analytics on encrypted data through the use of cryptographic keys as that of the Advanced Encryption Standard (AES). However, it is very easy to obtain AES cryptographic keys from the VM's Random Access Memory (RAM). In this paper, we present a novel key-scattering (KS) approach to protect the cryptographic keys while encrypting/decrypting data. Our solution is highly portable and interoperable. Thus, it could be integrated within today's existing cloud architecture without the need for further modifications. The feasibility of the approach has been proven by implementing a functioning prototype. The evaluation results show that our approach is substantially more resilient to brute force attacks and key extraction tools than the standard AES algorithm, with acceptable execution time.

AB - Cloud computing has become a widely used computing paradigm providing on-demand computing and storage capabilities based on pay-As-you-go model. Recently, many organizations, especially in the field of big data, have been adopting the cloud model to perform data analytics through leasing powerful Virtual Machines (VMs). VMs can be attractive targets to attackers as well as untrusted cloud providers who aim to get unauthorized access to the business critical-data. The obvious security solution is to perform data analytics on encrypted data through the use of cryptographic keys as that of the Advanced Encryption Standard (AES). However, it is very easy to obtain AES cryptographic keys from the VM's Random Access Memory (RAM). In this paper, we present a novel key-scattering (KS) approach to protect the cryptographic keys while encrypting/decrypting data. Our solution is highly portable and interoperable. Thus, it could be integrated within today's existing cloud architecture without the need for further modifications. The feasibility of the approach has been proven by implementing a functioning prototype. The evaluation results show that our approach is substantially more resilient to brute force attacks and key extraction tools than the standard AES algorithm, with acceptable execution time.

KW - Cloud Computing

KW - Cloud Security

KW - Memory Protection

KW - Secure Cryptographic Keys

KW - Virtual Machines

UR - https://www.scopus.com/pages/publications/85035220596

U2 - 10.1109/FAS-W.2017.163

DO - 10.1109/FAS-W.2017.163

M3 - Conference contribution

AN - SCOPUS:85035220596

T3 - Proceedings - 2017 IEEE 2nd International Workshops on Foundations and Applications of Self* Systems, FAS*W 2017

SP - 301

EP - 306

BT - Proceedings - 2017 IEEE 2nd International Workshops on Foundations and Applications of Self* Systems, FAS*W 2017

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 2nd IEEE International Workshops on Foundations and Applications of Self* Systems, FAS*W 2017

Y2 - 18 September 2017 through 22 September 2017

ER -

Mohamed F, Albelooshi B, Salah K , Yeun CY , Damiani E. A Scattering Technique for Protecting Cryptographic Keys in the Cloud. In Proceedings - 2017 IEEE 2nd International Workshops on Foundations and Applications of Self* Systems, FAS*W 2017. Institute of Electrical and Electronics Engineers Inc. 2017. p. 301-306. 8064139. (Proceedings - 2017 IEEE 2nd International Workshops on Foundations and Applications of Self* Systems, FAS*W 2017). doi: 10.1109/FAS-W.2017.163

A Scattering Technique for Protecting Cryptographic Keys in the Cloud

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this