Aadhaar Enabled Secure Private Cloud with Digital Signature as a Service

摘要

The information processed by many establishments often comes with confidentiality and integrity requirements that is difficult for the public cloud provider to adhere. It is necessary for both the cloud service provider and the user to have common trust such that the user could be assured of data authenticity, consistency and the version the user is running has not been modified/malicious. Hence there was a necessity for developing trusted Cloud computing model. CloudSign’ is a complete digital signature Private Cloud service for organizations to digitally sign, verify & share documents. It saves the trouble of moving physical documents to different locations and waiting for a long period to get the documents signed. Aadhaar Authentication along with its One Time Password (OTP) eliminates the need to remember passwords when you want access to the CloudSign services. CloudSign overcomes some cloud security issues like authentication, confidentiality, non-repudiation, access control and checking the integrity of data. Authentication is performed by validating the user identity from Unique Identification Authority of India (UIDAI) server using Aadhaar OTP. Data integrity, non-repudiation, confidentiality is ensured by SHA-512 and a digital signature algorithm along with the hybrid cryptographic scheme using RSA & AES algorithms. CloudSign is built on the Java platform with HADOOP framework for data storage.