Analyse the security of your master key in the case of 2 of the 3 clouds collude to derive your master key and propose a way to enhance the security of your master key recovery solution.

Database System Concepts
7th Edition
ISBN:9780078022159
Author:Abraham Silberschatz Professor, Henry F. Korth, S. Sudarshan
Publisher:Abraham Silberschatz Professor, Henry F. Korth, S. Sudarshan
Chapter1: Introduction
Section: Chapter Questions
Problem 1PE
icon
Related questions
Question

In AWS, client-side encryption is the act of encrypting data before sending it to Amazon S3. To enable client-side encryption, you have the following options: (1) Use a customer master key (CMK) stored in AWS Key Management Service (AWS KMS); (2) Use a master key that you store within your application. To protect your  data privacy against the cloud, it is better to use your master key that you store within your application. However, if you lost your master key, you would be able to decrypt the encrypted data stored in Amazon S3.

 

Suppose that you decide to use Shamir’s secret sharing scheme for your master key recovery. Shamir's Secret Sharing is an algorithm in cryptography introduced by Adi Shamir. It is a form of secret sharing, where a secret is divided into parts, giving each participant its own unique part. To reconstruct the original secret, a minimum number of parts is required.

Following Shamir’s secret sharing scheme, suppose that you divide your 128-bit master key into 4 parts, storing 3 parts in three different clouds and keeping one part with your computer as shown in Figure 1.  If you lost your master key, you should be able to recover it with any 3 parts.

Q) Analyse the security of your master key in the case of 2 of the 3 clouds collude to derive your master key and propose a way to enhance the security of your master key recovery solution.

Clouds
Share 1
Share 2
Share 3
Share 4
Transcribed Image Text:Clouds Share 1 Share 2 Share 3 Share 4
Expert Solution
trending now

Trending now

This is a popular solution!

steps

Step by step

Solved in 4 steps

Blurred answer
Knowledge Booster
Linux
Learn more about
Need a deep-dive on the concept behind this application? Look no further. Learn more about this topic, computer-science and related others by exploring similar questions and additional content below.
Recommended textbooks for you
Database System Concepts
Database System Concepts
Computer Science
ISBN:
9780078022159
Author:
Abraham Silberschatz Professor, Henry F. Korth, S. Sudarshan
Publisher:
McGraw-Hill Education
Starting Out with Python (4th Edition)
Starting Out with Python (4th Edition)
Computer Science
ISBN:
9780134444321
Author:
Tony Gaddis
Publisher:
PEARSON
Digital Fundamentals (11th Edition)
Digital Fundamentals (11th Edition)
Computer Science
ISBN:
9780132737968
Author:
Thomas L. Floyd
Publisher:
PEARSON
C How to Program (8th Edition)
C How to Program (8th Edition)
Computer Science
ISBN:
9780133976892
Author:
Paul J. Deitel, Harvey Deitel
Publisher:
PEARSON
Database Systems: Design, Implementation, & Manag…
Database Systems: Design, Implementation, & Manag…
Computer Science
ISBN:
9781337627900
Author:
Carlos Coronel, Steven Morris
Publisher:
Cengage Learning
Programmable Logic Controllers
Programmable Logic Controllers
Computer Science
ISBN:
9780073373843
Author:
Frank D. Petruzella
Publisher:
McGraw-Hill Education