A Hybrid IPFS - Ethereum Framework for Decentralized Cloud Storage Security

Abstract

The rapid growth of cloud computing has significantly transformed the way digital data is stored, managed, and accessed, enabling efficient sharing of information across distributed environments; however, this advancement introduces serious concerns related to data security, privacy, and trust, particularly when sensitive information is involved. Many cloud-based systems rely on centralized architectures, which increase the risk of single points of failure, unauthorized access, data tampering, and limited transparency in tracking data activities. These systems often depend on basic encryption techniques without strong auditing or verification mechanisms, making them vulnerable to insider misuse and external cyber threats, while the absence of immutable records reduces accountability and weakens user confidence. Such limitations highlight the need for a secure and transparent data-sharing framework that ensures confidentiality, integrity, and traceability of data transactions. To address these challenges, the proposed system introduces a secure cloud data sharing model developed using the Django framework, integrating Elliptic Curve Cryptography (ECC), blockchain technology, and the InterPlanetary File System (IPFS) to enhance data protection and decentralization. In this approach, ECC is used to generate cryptographic keys and encrypt user files before storage, ensuring that only authorized users can decrypt the data using the corresponding private key. The encrypted files are stored using IPFS for distributed and content-addressable storage, while file metadata such as username, filename, and timestamp is recorded on the blockchain through smart contracts using Web3, providing a decentralized and tamper-resistant record of all transactions. The system also supports user registration, authentication, secure file upload, and controlled file download functionalities, ensuring secure access and traceability. During file access, encrypted data is retrieved from IPFS and decrypted using ECC to maintain end-to-end security. By combining cryptographic encryption, decentralized storage, and blockchain-based verification, the proposed system enhances data confidentiality, prevents unauthorized modifications, and establishes a reliable and transparent framework for secure cloud data sharing.