Cloud computing is a technology of delivering facilities such as hardware and software over a network. With the use of this technology, privacy, security, and accountability of files are challenges because usersÂ’ data are usually processed remotely in unknown machines that they do not own, leading to the fear of losing control over their data usage to unauthorized persons. Cloud Information Accountability (CIA) framework provides control to the accountability of files types. Preventive control to solve accountability issues has been focused or researched to support accountabilities of file types based on access control without providing data owner with full control on read-time released and location over their files usage, therefore, there is a need for data owners to have full control usage over their files in order to preserve the confidentiality and integrity of their data based on read time released and location. This paper integrates the File Control Mechanism (FCM) into the CIA framework model using user-based access control (UBAC) for authorization with Change Mode (chmod) 777 file permission rules for file-time and file location access. A distributed auditing mechanism has also used to store every access in a metadata using database log retrieval algorithm with Advanced Encryption Standard (AES) to secure the data which is sent to data owner for an audit. The results show the traceability of any access performed on owner data, which is no longer limited to the read and write permission of any files but also read time and location of access where the read operation took place.
Key words: Cloud Information Accountability; Privacy; Security; Accountability
|
