{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,1]],"date-time":"2026-02-01T05:51:41Z","timestamp":1769925101373,"version":"3.49.0"},"reference-count":54,"publisher":"MDPI AG","issue":"20","license":[{"start":{"date-parts":[[2019,10,14]],"date-time":"2019-10-14T00:00:00Z","timestamp":1571011200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Sensors"],"abstract":"Cloud computing has made the software development process fast and flexible but on the other hand it has contributed to increasing security attacks. Employees who manage the data in cloud companies may face insider attack, affecting their reputation. They have the advantage of accessing the user data by interacting with the authentication mechanism. The primary aim of this research paper is to provide a novel secure authentication mechanism by using Blockchain technology for cloud databases. Blockchain makes it difficult to change user login credentials details in the user authentication process by an insider. The insider is not able to access the user authentication data due to the distributed ledger-based authentication scheme. Activity of insider can be traced and cannot be changed. Both insider and outsider user\u2019s are authenticated using individual IDs and signatures. Furthermore, the user access control on the cloud database is also authenticated. The algorithm and theorem of the proposed mechanism have been given to demonstrate the applicability and correctness.The proposed mechanism is tested on the Scyther formal system tool against denial of service, impersonation, offline guessing, and no replay attacks. Scyther results show that the proposed methodology is secure cum robust.<\/jats:p>","DOI":"10.3390\/s19204444","type":"journal-article","created":{"date-parts":[[2019,10,14]],"date-time":"2019-10-14T12:14:05Z","timestamp":1571055245000},"page":"4444","update-policy":"https:\/\/doi.org\/10.3390\/mdpi_crossmark_policy","source":"Crossref","is-referenced-by-count":57,"title":["Authentication Protocol for Cloud Databases Using Blockchain Mechanism"],"prefix":"10.3390","volume":"19","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-8885-745X","authenticated-orcid":false,"given":"Gaurav","family":"Deep","sequence":"first","affiliation":[{"name":"Department of CSE & IT, Jaypee University of Information Technology, Solan 173234, India"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Rajni","family":"Mohana","sequence":"additional","affiliation":[{"name":"Department of CSE & IT, Jaypee University of Information Technology, Solan 173234, India"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-9821-6146","authenticated-orcid":false,"given":"Anand","family":"Nayyar","sequence":"additional","affiliation":[{"name":"Graduate School, Duy Tan University, Da Nang 550000, Vietnam"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-3212-2750","authenticated-orcid":false,"given":"P.","family":"Sanjeevikumar","sequence":"additional","affiliation":[{"name":"Department of Energy Technology, Aalborg University, 6700 Esbjerg, Denmark"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-2332-8095","authenticated-orcid":false,"given":"Eklas","family":"Hossain","sequence":"additional","affiliation":[{"name":"Oregon Renewable Energy Center (OREC), Department of Electrical Engineering and Renewable Energy, Oregon Tech, Klamath Falls, OR 97601, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"1968","published-online":{"date-parts":[[2019,10,14]]},"reference":[{"key":"ref_1","doi-asserted-by":"crossref","first-page":"915","DOI":"10.1007\/s11280-017-0491-8","article-title":"An effective approach for the protection of privacy text data in the CloudDB","volume":"21","author":"Wu","year":"2018","journal-title":"World Wide Web"},{"key":"ref_2","unstructured":"(2019, June 05). InfoSecurity Europe and PwC: 2015 Information Security Breaches Survey. Available online: https:\/\/www.pwc.co.uk\/assets\/pdf\/2015-isbs-technical-report-blue-digital.pdf."},{"key":"ref_3","unstructured":"(2019, June 05). Insider Threat 2018 Report. Available online: https:\/\/www.ca.com\/content\/dam\/ca\/us\/files\/ebook\/insider-threat-report.pdf."},{"key":"ref_4","unstructured":"(2015, October 12). Forrester Corporation: The Value of Corporate Secrets. Available online: https:\/\/www.nsi.org\/pdf\/reports\/The%20Value%20of% 20Corporate%20Secrets.pdf."},{"key":"ref_5","doi-asserted-by":"crossref","first-page":"2558","DOI":"10.1007\/s11227-016-1945-y","article-title":"Data security in mobile cloud computing paradigm: A survey, taxonomy and open research issues","volume":"73","author":"Bhatia","year":"2017","journal-title":"J. Supercomput."},{"key":"ref_6","doi-asserted-by":"crossref","first-page":"4986","DOI":"10.1007\/s11227-018-2337-2","article-title":"Security threats to critical infrastructure: The human factor","volume":"74","author":"Ghafir","year":"2018","journal-title":"J. Supercomput."},{"key":"ref_7","unstructured":"(2019, March 08). Current State of Cybercrime. Available online: https:\/\/www.rsa.com\/content\/dam\/premium\/en\/white-paper\/2016-current-state-of-cybercrime.pdf."},{"key":"ref_8","doi-asserted-by":"crossref","unstructured":"Moon, C.S., Chung, S., and Endicott-Popovsky, B. (2013). A Cloud and In-Memory Based Two-Tier Architecture of a Database Protection System from Insider Attacks. International Workshop on Information Security Applications, Springer.","DOI":"10.1007\/978-3-319-05149-9_17"},{"key":"ref_9","doi-asserted-by":"crossref","unstructured":"Yaseen, Q., and Panda, B. (2010). Predicting and preventing insider threat in relational database systems. IFIP International Workshop on Information Security Theory and Practices, Springer.","DOI":"10.1007\/978-3-642-12368-9_30"},{"key":"ref_10","doi-asserted-by":"crossref","first-page":"269","DOI":"10.1007\/s10207-012-0165-6","article-title":"Insider threat mitigation: Preventing unauthorized knowledge acquisition","volume":"11","author":"Yaseen","year":"2012","journal-title":"Int. J. Inf. Secur."},{"key":"ref_11","doi-asserted-by":"crossref","first-page":"2669","DOI":"10.1007\/s10586-017-0810-y","article-title":"An insider threat aware of access control for cloud relational databases","volume":"20","author":"Yaseen","year":"2017","journal-title":"Clust. Comput."},{"key":"ref_12","doi-asserted-by":"crossref","first-page":"1874","DOI":"10.1109\/JSYST.2017.2669908","article-title":"Robust insider attacks countermeasure for Hadoop: Design and implementation","volume":"12","author":"Dou","year":"2018","journal-title":"IEEE Syst. J."},{"key":"ref_13","doi-asserted-by":"crossref","unstructured":"Shaghaghi, A., Kanhere, S.S., Kaafar, M.A., Bertino, E., and Jha, S. (2018). Gargoyle: A Network-based Insider Attack Resilient Framework for Organizations. arXiv.","DOI":"10.1109\/LCN.2018.8638245"},{"key":"ref_14","first-page":"1","article-title":"Scenario-based insider threat detection from cyber activities","volume":"99","author":"Chattopadhyay","year":"2018","journal-title":"IEEE Trans. Comput. Soc. Syst."},{"key":"ref_15","doi-asserted-by":"crossref","first-page":"84","DOI":"10.1109\/TDSC.2017.2654438","article-title":"G-sir: An insider attack resilient geo-social access control framework","volume":"16","author":"Baracaldo","year":"2017","journal-title":"IEEE Trans. Dependable Secur. Comput."},{"key":"ref_16","doi-asserted-by":"crossref","first-page":"805","DOI":"10.1109\/JSYST.2014.2322973","article-title":"A privacy-aware authentication scheme for distributed mobile cloud computing services","volume":"9","author":"Tsai","year":"2015","journal-title":"IEEE Syst. J."},{"key":"ref_17","doi-asserted-by":"crossref","first-page":"11715","DOI":"10.1007\/s11042-016-3506-z","article-title":"A secure smart card authentication and authorization framework using in multimedia cloud","volume":"76","author":"Yang","year":"2017","journal-title":"Multimed. Tools Appl."},{"key":"ref_18","doi-asserted-by":"crossref","first-page":"6428","DOI":"10.1007\/s11227-017-2048-0","article-title":"A secure authentication scheme based on elliptic curve cryptography for IoT and cloud servers","volume":"74","author":"Kumari","year":"2018","journal-title":"J. Supercomput."},{"key":"ref_19","doi-asserted-by":"crossref","first-page":"507","DOI":"10.1007\/s10586-017-0774-y","article-title":"A novel dual authentication protocol (DAP) for multi-owners in cloud computing","volume":"20","author":"Shajina","year":"2017","journal-title":"Clust. Comput."},{"key":"ref_20","doi-asserted-by":"crossref","unstructured":"Anakath, A.S., Rajakumar, S., and Ambika, S. (2017). Privacy-preserving multi-factor authentication using trust management. Clust. Comput., 1\u20137.","DOI":"10.1007\/s10586-017-1181-0"},{"key":"ref_21","doi-asserted-by":"crossref","unstructured":"Chaudhry, S.A., Kim, I.L., Rho, S., Farash, M.S., and Shon, T. (2017). An improved anonymous authentication scheme for distributed mobile cloud computing services. Clust. Comput.","DOI":"10.1007\/s10586-017-1088-9"},{"key":"ref_22","doi-asserted-by":"crossref","first-page":"11017","DOI":"10.1007\/s11042-017-4966-5","article-title":"Privacy-preserving security using biometrics in cloud computing","volume":"77","author":"Kumar","year":"2018","journal-title":"Multimed. Tools Appl."},{"key":"ref_23","doi-asserted-by":"crossref","first-page":"6679","DOI":"10.1007\/s11042-018-6448-9","article-title":"Biometric re-authentication: An approach towards achieving transparency in user authentication","volume":"78","author":"Chatterjee","year":"2019","journal-title":"Multimed. Tools Appl."},{"key":"ref_24","unstructured":"Cresitello-Dittmar, B. (2016). Application of the Blockchain For Authentication and Verification of Identity, Independent Paper."},{"key":"ref_25","doi-asserted-by":"crossref","unstructured":"Zheng, Z., Xie, S., Dai, H., Chen, X., and Wang, H. (2017). An overview of Blockchain technology: Architecture, consensus, and future trends. 2017 IEEE International Congress on Big Data (Big Data Congress), IEEE.","DOI":"10.1109\/BigDataCongress.2017.85"},{"key":"ref_26","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1016\/j.iot.2018.05.002","article-title":"Blockchain mechanisms for IoT security","volume":"1","author":"Minoli","year":"2018","journal-title":"Internet Things"},{"key":"ref_27","unstructured":"(2019, June 05). Blockchain Demo. Available online: https:\/\/blockchaindemo.io\/."},{"key":"ref_28","doi-asserted-by":"crossref","unstructured":"Niranjanamurthy, M., Nithya, B.N., and Jagannatha, S. (2018). Analysis of Blockchain technology: Pros, cons, and SWOT. Clust. Comput., 1\u201315.","DOI":"10.1007\/s10586-018-2387-5"},{"key":"ref_29","doi-asserted-by":"crossref","first-page":"557","DOI":"10.1007\/s11390-018-1840-5","article-title":"Scalable and privacy-preserving data sharing based on Blockchain","volume":"33","author":"Zheng","year":"2018","journal-title":"J. Comput. Sci. Technol."},{"key":"ref_30","doi-asserted-by":"crossref","first-page":"26","DOI":"10.1007\/s10916-018-1144-x","article-title":"Medical Data Management on Blockchain with Privacy","volume":"43","author":"Tian","year":"2019","journal-title":"J. Med. Syst."},{"key":"ref_31","doi-asserted-by":"crossref","unstructured":"Ryu, J.H., Sharma, P.K., Jo, J.H., and Park, J.H. (2019). A Blockchain-based decentralized efficient investigation framework for IoT digital forensics. J. Supercomput., 1\u201316.","DOI":"10.1007\/s11227-019-02779-9"},{"key":"ref_32","doi-asserted-by":"crossref","first-page":"71","DOI":"10.1007\/s00450-017-0348-5","article-title":"Privacy-preserving Blockchain-based electric vehicle charging with dynamic tariff decisions","volume":"33","author":"Knirsch","year":"2018","journal-title":"Comput. Sci. Res. Dev."},{"key":"ref_33","doi-asserted-by":"crossref","first-page":"207","DOI":"10.1007\/s00450-017-0360-9","article-title":"A Blockchain-based smart grid: Towards sustainable local energy markets","volume":"33","author":"Mengelkamp","year":"2018","journal-title":"Comput. Sci. Res. Dev."},{"key":"ref_34","doi-asserted-by":"crossref","first-page":"1111","DOI":"10.3103\/S0146411618080400","article-title":"Assurance of Cyber Resistance of the Distributed Data Storage Systems Using Blockchain Technology","volume":"52","author":"Zegzhda","year":"2018","journal-title":"Autom. Control Comput. Sci."},{"key":"ref_35","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1007\/s42786-018-00002-6","article-title":"A survey of Blockchain from the security perspective","volume":"3","author":"Dasgupta","year":"2019","journal-title":"J. Bank. Financ. Technol."},{"key":"ref_36","doi-asserted-by":"crossref","first-page":"3123","DOI":"10.1007\/s11227-018-2496-1","article-title":"Blockchain-based mobile fingerprint verification and automatic login platform for future computing","volume":"75","author":"Huh","year":"2019","journal-title":"J. Supercomput."},{"key":"ref_37","unstructured":"Nagasubramanian, G., Sakthivel, R.K., Patan, R., Gandomi, A.H., Sankayya, M., and Balusamy, B. (2019). Securing e-health records using keyless signature infrastructure Blockchain technology in the cloud. Neural Comput. Appl., 1\u20139."},{"key":"ref_38","doi-asserted-by":"crossref","first-page":"32104","DOI":"10.1007\/s11432-018-9462-0","article-title":"Identity-based public auditing for cloud storage systems against malicious auditors via Blockchain","volume":"62","author":"Xue","year":"2019","journal-title":"Sci. China Inf. Sci."},{"key":"ref_39","doi-asserted-by":"crossref","first-page":"1152","DOI":"10.1007\/s11227-016-1870-0","article-title":"Blockchain-based secure firmware update for embedded devices in an Internet of Things environment","volume":"73","author":"Lee","year":"2017","journal-title":"J. Supercomput."},{"key":"ref_40","doi-asserted-by":"crossref","first-page":"17","DOI":"10.1186\/s42162-018-0040-4","article-title":"Design and implementation of a Blockchain multi-energy system","volume":"1","author":"Yu","year":"2018","journal-title":"Energy Inform."},{"key":"ref_41","doi-asserted-by":"crossref","first-page":"5099","DOI":"10.1007\/s11227-018-2385-7","article-title":"Next-generation cybersecurity through a Blockchain-enabled federated cloud framework","volume":"74","author":"Malomo","year":"2018","journal-title":"J. Supercomput."},{"key":"ref_42","doi-asserted-by":"crossref","unstructured":"Altulyan, M., Yao, L., Kanhere, S.S., Wang, X., and Huang, C. (2019). A unified framework for data integrity protection in people-centric smart cities. Multimed. Tools Appl., 1\u201314.","DOI":"10.1007\/s11042-019-7182-7"},{"key":"ref_43","doi-asserted-by":"crossref","unstructured":"Feng, L., Zhang, H., Tsai, W.T., and Sun, S. (2019). System architecture for high-performance permissioned Blockchains. Front. Comput. Sci., 1\u201315.","DOI":"10.1007\/s11704-018-6345-4"},{"key":"ref_44","doi-asserted-by":"crossref","first-page":"38","DOI":"10.1016\/j.techsoc.2018.11.001","article-title":"Blockchain and the future of energy","volume":"57","author":"Brilliantova","year":"2019","journal-title":"Technol. Soc."},{"key":"ref_45","doi-asserted-by":"crossref","first-page":"173","DOI":"10.1016\/j.future.2018.05.046","article-title":"On Blockchain and its integration with IoT. Challenges and opportunities","volume":"88","author":"Reyna","year":"2018","journal-title":"Future Gener. Comput. Syst."},{"key":"ref_46","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1186\/s40561-017-0050-x","article-title":"Exploring blockchain technology and its potential applications for education","volume":"5","author":"Chen","year":"2018","journal-title":"Smart Learn. Environ."},{"key":"ref_47","doi-asserted-by":"crossref","unstructured":"Amadio, R.M., and Charatonik, W. (2002). On name generation and set-based analysis in the Dolev-Yao model. International Conference on Concurrency Theory, Springer.","DOI":"10.1007\/3-540-45694-5_33"},{"key":"ref_48","doi-asserted-by":"crossref","unstructured":"Cremers, C.J. (2008). The Scyther Tool: Verification, falsification, and analysis of security protocols. International Conference on Computer\u2013Aided Verification, Springer.","DOI":"10.1007\/978-3-540-70545-1_38"},{"key":"ref_49","unstructured":"Cremers, C. (2006). Scyther. Semantics and Verification of Security Protocols, University Press Eindhoven."},{"key":"ref_50","first-page":"3","article-title":"Verifying Group Authentication Protocols by Scyther","volume":"7","author":"Yang","year":"2016","journal-title":"JoWUA"},{"key":"ref_51","first-page":"1","article-title":"Fog computing: From architecture to edge computing and big data processing","volume":"75","author":"Singh","year":"2018","journal-title":"J. Supercomput."},{"key":"ref_52","doi-asserted-by":"crossref","unstructured":"Pramanik, P.K.D., Pareek, G., and Nayyar, A. (2019). Security and Privacy in Remote Healthcare: Issues, Solutions, and Standards. Telemedicine Technologies, Academic Press.","DOI":"10.1016\/B978-0-12-816948-3.00014-3"},{"key":"ref_53","doi-asserted-by":"crossref","unstructured":"Nayyar, A., Jain, R., Mahapatra, B., and Singh, A.Q. (2019). Cyber Security Challenges for Smart Cities. Driving the Development, Management, and Sustainability of Cognitive Cities, IGI Global.","DOI":"10.4018\/978-1-5225-8085-0.ch002"},{"key":"ref_54","doi-asserted-by":"crossref","unstructured":"Tandon, A., and Nayyar, A. (2019). A Comprehensive Survey on Ransomware Attack: A Growing Havoc Cyber threat. Data Management, Analytics and Innovation, Springer.","DOI":"10.1007\/978-981-13-1274-8_31"}],"container-title":["Sensors"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.mdpi.com\/1424-8220\/19\/20\/4444\/pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,10,11]],"date-time":"2025-10-11T13:26:02Z","timestamp":1760189162000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.mdpi.com\/1424-8220\/19\/20\/4444"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019,10,14]]},"references-count":54,"journal-issue":{"issue":"20","published-online":{"date-parts":[[2019,10]]}},"alternative-id":["s19204444"],"URL":"https:\/\/doi.org\/10.3390\/s19204444","relation":{},"ISSN":["1424-8220"],"issn-type":[{"value":"1424-8220","type":"electronic"}],"subject":[],"published":{"date-parts":[[2019,10,14]]}}}