Vallabhaneni. Hema Latha, Kolluru. Suresh Babu
Abstract: In Data Storage as a Service (STaaS) cloud computing environment, the equipment used for business operations can be leased from a single service provider along with the application, and the related business data can be stored on equipment provided by the same service provider. This type of arrangement can help a company save on hardware and software infrastructure costs, but storing the companys data on the service providers equipment raises the possibility that important business information may be improperly disclosed to others . Some researchers have suggested that user data stored on a service-providers equipment must be encrypted . Encrypting data prior to storage is a common method of data protection, and service providers may be able to build firewalls to ensure that the decryption keys associated with encrypted user data are not disclosed to outsiders. However, if the decryption key and the encrypted data are held by the same service provider, it raises the possibility that high-level administrators within the service provider would have access to both the decryption key and the encrypted data, thus presenting a risk for the unauthorized disclosure of the user data. we in this paper provides an unique business model of cryptography where crypto keys are distributed across the user and the trusted third party (TTP) with adoption of such a model mainly the CSP insider attack an form of misuse of valuable user data can be treated secured.
Keywords: cloud computing, service level agreements, encryption and decryption cloud service, data privacy protection