UCloud: A user-centric key management scheme for cloud data protection

Yung Wei Kao, Kuan Ying Huang, Hui Zhen Gu, Shyan-Ming Yuan

Research output: Contribution to journalArticlepeer-review

18 Scopus citations


One of the most challenging problems of cloud service solicitation is to persuade users to trust the security of cloud service and upload their sensitive data. Although cloud service providers can claim that their services are well-protected by elaborate encryption mechanisms, traditional cloud systems still cannot persuade the users that even if the cloud servers are compromised, the data are still securely protected. This study proposes uCloud, a user-centric key management scheme for cloud data protection, to solve this problem. uCloud utilises RSA and indirectly encrypts users' data by users' public keys, but stores the users' private keys on neither servers nor users' PCs; instead, the private keys are stored on users' mobile devices and presented via two-dimensional (2D) barcode images when they are utilised to decrypt users' sensitive data. In this manner, users' data are safely protected even if the cloud servers are compromised. Also, uCloud provides users with the experience of managing visible private keys by storing the keys into mobile phones and displaying them via 2D barcodes. Moreover, three scenarios: personal storage, home surveillance and enterprise storage scenarios are proposed to present the practicability of uCloud. In addition, a hierarchical structure is designed for basic key backup and data sharing in the proposed scheme.

Original languageEnglish
Pages (from-to)144-154
Number of pages11
JournalIET Information Security
Issue number2
StatePublished - Jun 2013

Fingerprint Dive into the research topics of 'UCloud: A user-centric key management scheme for cloud data protection'. Together they form a unique fingerprint.

Cite this