Enhanced data security model for cloud using ECC algorithm and third party auditor

With the invention of cloud, the days of keeping all the documents on the computer’s hardware are gradually coming to an end. Today, people outsource their data at Cloud Service Provider (CSP)[1] who offers huge storage space at low cost. But as the data goes on cloud the user loses his control over the data and seeks for data security. Hence an efficient and effective method is needed to ensure integrity and confidentiality of outsourced data on un-trusted cloud servers. To address this issue the paper proposes Elliptic Curve Cryptography that owes a strong mathematical structure that raises the confidentiality level to an exceptionally high standard using minimum resources as compared to other existing algorithms like RSA, DES, AES etc., making it a first choice for devices with limited computing ability. Also paper proposes a method that allows Third Party Auditor to periodically verify the integrity of data stored at CSP without retrieving original data using md5 algorithm. The paper discusses key generation process, encryption and decryption of textual files using ECC algorithm along with a verification model which will address two crucial aspects of cloud security i.e. confidentiality and integrity. KeywordsElliptic curve cryptography algorithm (ECC), Cloud Service Provider (CSP),Data confidentiality and integrity, RSA algorithm, MD5 Hashing algorithm, Third Party Auditor (TPA).