TU Darmstadt / ULB / TUbiblio

OmniShare: Encrypted Cloud Storage for the Multi-Device Era

Asokan, N. and Gröndahl, Tommi and Nguyen, Hoang Long and Nguyen, Thien Duc and Paverd, Andrew and Pendyala, Praveen and Sadeghi, Ahmad-Reza and Stobert, Elizabeth and Tamrakar, Sandeep :
OmniShare: Encrypted Cloud Storage for the Multi-Device Era.
[Online-Edition: https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=832...]
In: IEEE Internet Computing p. 1. ISSN 1089-7801
[Article] , (2018)

Official URL: https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=832...

Abstract

Two attractive features of cloud storage services are the automatic synchronization of files between multiple client devices and the possibility to share files with other users. However, many users are concerned about the security and privacy of data stored in the cloud. Client-side encryption is an effective safeguard, but requires all client devices to have the decryption key. Current solutions derive these keys from user-chosen passwords, which are easily guessed. We present OmniShare, the first scheme to combine strong client-side encryption with intuitive key distribution mechanisms to enable access from multiple client devices and sharing between users. OmniShare uses a novel combination of out-of-band channels, including QR codes and ultrasonic communication, as well as the cloud storage service itself, to authenticate new devices. We describe the design and implementation of OmniShare, and explain how we evaluated its security (using formal methods), its performance (benchmarks), and its usability (cognitive walkthrough).

Item Type: Article
Erschienen: 2018
Creators: Asokan, N. and Gröndahl, Tommi and Nguyen, Hoang Long and Nguyen, Thien Duc and Paverd, Andrew and Pendyala, Praveen and Sadeghi, Ahmad-Reza and Stobert, Elizabeth and Tamrakar, Sandeep
Title: OmniShare: Encrypted Cloud Storage for the Multi-Device Era
Language: English
Abstract:

Two attractive features of cloud storage services are the automatic synchronization of files between multiple client devices and the possibility to share files with other users. However, many users are concerned about the security and privacy of data stored in the cloud. Client-side encryption is an effective safeguard, but requires all client devices to have the decryption key. Current solutions derive these keys from user-chosen passwords, which are easily guessed. We present OmniShare, the first scheme to combine strong client-side encryption with intuitive key distribution mechanisms to enable access from multiple client devices and sharing between users. OmniShare uses a novel combination of out-of-band channels, including QR codes and ultrasonic communication, as well as the cloud storage service itself, to authenticate new devices. We describe the design and implementation of OmniShare, and explain how we evaluated its security (using formal methods), its performance (benchmarks), and its usability (cognitive walkthrough).

Journal or Publication Title: IEEE Internet Computing
Uncontrolled Keywords: Cloud computing;Encryption;Object recognition;Password;access controls;communication;comp;computing milieux;general;management of computing and information systems;miscellaneous;network-level security and protection;networking and information technology;operating systems;security;security and privacy protection;software;software engineering
Divisions: Department of Computer Science
Department of Computer Science > System Security Lab
Profile Areas
Profile Areas > Cybersecurity (CYSEC)
Date Deposited: 02 Jul 2018 07:14
DOI: 10.1109/MIC.2018.182130646
Official URL: https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=832...
Export:

Optionen (nur für Redakteure)

View Item View Item