A new biometric-based security framework for cloud storage

摘要

Cloud computing is a paradigm that is redrawing the information technology landscape by outsourcing the computation and data storage services to public cloud service providers. Over the last years, cloud storage services revealed an unprecedented opportunity for Internet users to profit from online storage services. Thanks to their enriched toolbox for file sharing and syncing, cloud storage platforms provide organizations and individuals with a reliable and cost-effective collaborative workspace. However, in addition to the traditional security issues, cloud storage services introduce new security concerns that are mainly related to the insecure state in which the files are while being synchronized. Recent publications highlighted the significant impact of the security flaws that exist in the syncing protocols used by the most popular cloud storage application. In this paper, we consider the Man in the Cloud (MitC) attack demonstrated in 2015 which allows accessing the files stored in a private repository without the possession of the authentication and authorization credentials. To address this issue, we propose a biometric-based framework for cloud storage services aiming to impede intruders from launching MitC attacks. Our framework is based on our previously published technique to combine chaotic maps and fuzzy extractors. The experiments performed on real biometric features confirm the potential brought by our framework to implement strong authentication in cloud storage applications.