User Layer Security
In order to avoid data loss when a user’s mobile device is stolen or lost, users are encouraged to use mobile cloud storage to transfer and store the data from mobile terminals to the cloud as a means of data backup. Although various encryption mechanisms have been proposed to protect the security in the cloud side by cloud service providers, the traditional cloud systems still cannot persuade the users that the data are securely protected if the security mechanisms are not implemented by the user side. To prevent cloud service providers from leaking personal information, a security scheme implemented in the client-side for mobile cloud is needed.
Examples:
Comparison: DFCloud uses a TPM and key management module in the user layer as the security processing module, and the file encryption key will be stored on the client in DFCloud mechanism. One of the problems is the difficulty in achieving some file sharing with other users if every user has only one key, or the increasing complexity of key management if there are multiple encryption keys for each user. In UMCloud, the encryption keys related to files are stored in the cloud, instead of in the client, which also makes the implementation of sharing cipher files become simple.