Sahil Rampal; Manmohan Sharma; Parul Khurana; Mukesh Kumar

Enhancing Cloud Storage Security Using Multi-User Biometric Encryption with Threshold Access Control

PDF (1622KB), PP.142-159

Views: 0 Downloads: 0

Author(s)

Sahil Rampal ¹ Manmohan Sharma ¹ Parul Khurana ² Mukesh Kumar ^3,4,*

1. School of Computer Application, Lovely Professional University, Phagwara-144411, Punjab, India.

2. Department of Computer Science & Applications, Sharda School of Computing Science & Engineering, Sharda University, Greater Noida, Uttar Pradesh – 201310, India.

3. Advanced Centre of Research & Innovation (ACRI), School of Advance Computing, CGC University Mohali-140307, Punjab, India.

4. Faculty of Law, Sohar University, Solar, Sultanate of Oman.

* Corresponding author.

DOI: https://doi.org/10.5815/ijwmt.2026.03.10

Received: 9 Apr. 2025 / Revised: 25 Mar. 2026 / Accepted: 9 May 2026 / Published: 8 Jun. 2026

Index Terms

Biometric Encryption, Cloud Security, Multi-Modality Solutions, Cryptography, Biometric Decryption

Abstract

Cloud computing has become an essential platform for business data storage and application management due to its scalability, accessibility, and cost-effectiveness. However, ensuring the security and privacy of sensitive cloud data remains a major challenge because cloud users do not have direct control over their stored information. Traditional single-biometric encryption approaches often suffer from issues such as biometric variability, spoofing risks, and single-point failure. To address these limitations, this paper proposes a multi-user multi-modal biometric encryption framework integrated with threshold-based access control for securing business data stored in cloud environments. In the proposed approach, fingerprint and audio biometric modalities are pre-processed to extract privacy-preserving feature vectors, which are fused to generate individual user-keys using a Hash-Based Key Derivation Function (HKDF). Subsequently, a master encryption key is generated through Shamir’s Secret Sharing and Lagrange interpolation mechanisms, where only a predefined threshold number of valid user-keys can reconstruct the master key for decryption. AES symmetric encryption is employed to secure the business data before cloud storage. Experimental evaluation was performed using the FVC2002 fingerprint dataset and Mozilla CV-Corpus audio dataset. The generated biometric master-key successfully passed Shannon Entropy, Chi-Square, Monte Carlo Pi, and decryption validation tests, demonstrating improved randomness, reliability, and resistance against unauthorized access. The proposed framework effectively eliminates single-point failure issues and enhances secure cloud data access through threshold-based biometric authentication.

Cite This Paper

Sahil Rampal, Manmohan Sharma, Parul Khurana, Mukesh Kumar, "Enhancing Cloud Storage Security Using Multi-User Biometric Encryption with Threshold Access Control", International Journal of Wireless and Microwave Technologies(IJWMT), Vol.16, No.3, pp. 142-159, 2026. DOI:10.5815/ijwmt.2026.03.10

Reference

[1]P. Mell and T. Grance, “The NIST Definition of Cloud Computing Recommendations of the National Institute of Standards and Technology,” 2011.
[2]Sinha, K., Aldosary, S., Aly, M. H., & El-Shafai, W. (2025). Enhancing Cloud Data Security Through Functional-Based Stream Cipher and Attribute-Based Access Control with Multiparty Authorization. Traitement du Signal, 42(2), 915.
[3]Garigipati, N., Srithar, S., & Krishna Reddy, V. (2026). An efficient poly-quantum integrity key generation based multi-user access control encryption and decryption framework for homogeneous and heterogeneous cloud EHR databases. Information Security Journal: A Global Perspective, 35(1), 168-188.
[4]Y. Chen, V. Paxson, and R. H. Katz, “What’s New About Cloud Computing Security?,” EECS Department, University of California, Berkeley, 2010. [Online]. Available: http://www2.eecs.berkeley.edu/Pubs/TechRpts/2010/EECS-2010-5.html
[5]Murala, D., & Thammireddy, K. (2024). An Efficient Multi-user Integrity and Multi-level Attribute Encryption and decryption framework for audio block-chain communication systems. Frontiers in Health Informatics, 13(3).
[6]Hammed, S. S., Pavalarajan, S., Preethi, C., & Haripriya, K. (2026). Multi-level Cloud Security with Encryption Using Bio-metric Authentication in Decentralized Network. Iranian Journal of Science and Technology, Transactions of Electrical Engineering, 1-23.
[7]Nalluri, S., Veeravalli, S. D., Srinath, S., Mrumudhe, S. T. A., & Harit, V. (2025, June). Blockchain-Based Multi-Factor Access Control for Preserving Privacy in Cloud Storage of Medical Records. In 2025 International Conference on Intelligent Computing and Knowledge Extraction (ICICKE) (pp. 1-6). IEEE.
[8]The Notorious Nine Cloud Computing Top Threats in 2013, Online link: https://Cloudsecurityalliance.Org/Artifacts/The-Notorious-Nine-Cloud-Computing-Top-Threats-In-2013, Access date: 24/10/2024
[9]Security guidance for critical areas of focus in cloud computing v3.0, Online link: http://www.cloudsecurityalliance.org/guidance/csaguide.v3.0.pdf, Access date: 24/10/2024
[10]Security Guidance for Critical Areas of Focus in Cloud Computing V2.1, Online link: http://www.cloudsecurityalliance.org/guidance/csaguide.v2.1.pdf, Access date: 24/10/2024
[11]Security Guidance For Critical Areas of Focus in Cloud Computing, Online link: https://cloudsecurityalliance.org, Access date: 24/10/2024
[12]Security Guidance for Critical Areas of Focus in Cloud Computing v4.0, Online link: https://cloudsecurityalliance.org/artifacts/security-guidance-v4, Access date: 24/10/2024
[13]Biometrics-Technologies For Highly Secure Personal Authentication, Online link: https://www.nist.gov/publications/biometrics-technologies-highly-secure-personal-authentication, Access date: 24/10/2024
[14]Ramya, M., Tamilvizhi, T., & Navaneethakrishnan, S. R. (2025, September). Enhancing cloud security with multi-factor authentication and optimized encryption algorithm. In 2025 6th International Conference on Electronics and Sustainable Communication Systems (ICESC) (pp. 1033-1039). IEEE.Ross and A. Jain, “Information fusion in biometrics,” Pattern Recognit Lett, vol. 24, no. 13, pp. 2115–2125, Mar. 2003, doi: 10.1016/S0167-8655(03)00079-5.
[15]Santoso, A., Huda, S., Kodera, Y., & Nogami, Y. (2025). Facial Privacy Protection with Dynamic Multi-User Access Control for Online Photo Platforms. Future Internet, 17(3), 124.
[16]Bharot, N., Mehta, N., Breslin, J. G., & Verma, P. (2025). Cloudlock: secure data sharing using a hybrid cryptosystem in multi-cloud data storage. Cluster Computing, 28(7), 464.
[17]Barman, S., Chattopadhyay, S., & Samanta, D. (2024). Toward design a secure protocol for updating remotely stored credentials of a crypto‐biometric framework for multi‐server environment. Security and Privacy, 7(1), e339.
[18]Adeoye, S., & Adams, R. (2024). IoT-enabled secure and scalable cloud architecture for multi-user systems: A hybrid post-quantum cryptographic and blockchain-based approach towards a trustworthy cloud computing. Cogn. J, 4(10), 183-209.
[19]Cai, J., Zhao, X., Li, D., Li, H., & Fan, K. (2025). Efficient and expressive public key authenticated encryption with keyword search in multi-user scenarios. arXiv preprint arXiv:2503.16828.
[20]Neela, K. L. (2024). DSDOS Cloud: A Decentralized Secure Data Outsourcing System With Hybrid Encryption, Blockchain Smart Contract‐Based Access Control, and Hash Authentication Codes for Cloud Security. Transactions on Emerging Telecommunications Technologies, 35(11), e70016.
[21]D. Jagadiswary and D. Saraswady, “Biometric Authentication Using Fused Multimodal Biometric,” Procedia Comput Sci, vol. 85, pp. 109–116, 2016, doi: 10.1016/j.procs.2016.05.187.
[22]M. Hammad, Y. Liu, and K. Wang, “Multimodal Biometric Authentication Systems Using Convolution Neural Network Based on Different Level Fusion of ECG and Fingerprint,” IEEE Access, vol. 7, pp. 26527–26542, 2019, doi: 10.1109/ACCESS.2018.2886573.

International Journal of Wireless and Microwave Technologies (IJWMT)