Cloud computing security: protecting cloud-based smart city applications

2016 ◽  
Vol 2 (1) ◽  
Author(s):  
Alkiviadis Giannakoulias
Keyword(s):  
Cloud Computing ◽  
Public Sector ◽  
Service Provider ◽  
Key Management ◽  
Cloud Service ◽  
Transport Layer ◽  
Cloud Infrastructure ◽  
Security Issues ◽  
Standards Compliance ◽  
Security Standards

Data security is a major concern in cloud computing environments as they provide much scope for intruders to attack. Data centres in cloud environments hold valid information that end-users would conventionally have stored on their computers. Moving information towards centralised services may have an adverse effect on the security of users’ interactions with files kept in cloud cupboard spaces[1], for example accidental or deliberate alterations or deletions of information from the cloud server by the Cloud Service Provider (CSP). This necessitates the deployment of some sort of mechanism to ensure the safety of information integrity[2]. Public sector organisations have much to gain by adopting a cloud computing approach to service delivery in their ICT environments. However, these benefits must be reaped without compromising core requirements and institutional values.This paper focuses on the security issues that may arise when public sector organisations consider transitioning to an Open Source Software (OSS) Infrastructure as a Service (IaaS) Cloud Infrastructure (OpenStack), although the same issues are likely to be found in other OSS cloud computing software like Apache CloudStack[3], Eucalyptus[4], and OpenNebula[5]. We examine legal implications, regulatory and standards compliance, new attack vectors resulting from vulnerabilities coming from virtualisation technologies, data integrity issues such as encryption and access controls, and security checks to be performed on the services prior to their movement to the cloud. In addition, some of the most important security threats in cloud computing are presented, followed by key recommendations on how to address them, namely security standards and certifications, service provider auditing, secure APIs, transport layer protection, authentication and encryption key management, and cloud service agreements.

Securing Cloud Virtual Machine Image using Ethereum Blockchain

2022 ◽  
Vol 16 (1) ◽  
pp. 0-0
Keyword(s):  
Cloud Computing ◽  
Virtual Machine ◽  
Service Provider ◽  
Formal Model ◽  
Cloud Service ◽  
Cloud Infrastructure ◽  
Cloud Service Provider ◽  
Service Consumer ◽  
Machine Image ◽  
Virtual Machine Image

Virtual Machine Image (VMI) is the building block of cloud infrastructure. It encapsulates the various applications and data deployed at the Cloud Service Provider (CSP) end. With the leading advances of cloud computing, comes the added concern of its security. Securing the Cloud infrastructure as a whole is based on the security of the underlying Virtual Machine Images (VMI). In this paper an attempt has been made to highlight the various risks faced by the CSP and Cloud Service Consumer (CSC) in the context of VMI related operations. Later, in this article a formal model of the cloud infrastructure has been proposed. Finally, the Ethereum blockchain has been incorporated to secure, track and manage all the vital operations of the VMIs. The immutable and decentralized nature of blockchain not only makes the proposed scheme more reliable but guarantees auditability of the system by maintaining the entire VMI history in the blockchain.

Cloud Computing

2012 ◽  
pp. 191-207 ◽  
Author(s):  
Shantanu Pal
Keyword(s):  
Cloud Computing ◽  
Service Providers ◽  
Effective Means ◽  
Cloud Service ◽  
Security And Privacy ◽  
Cloud Infrastructure ◽  
Computing Environment ◽  
Cloud Computing Environment ◽  
Security Issues ◽  
Computing Platforms

In a cloud ecosystem, most of the data and software that users use reside on the remote server(s), which brings some new challenges for the system, especially security and privacy. At present, these security threats and attacks are the greatest concern for the service providers towards delivering a more secure cloud infrastructure. One of the major concerns is data security, implemented by the most effective means possible and the protection of stored data from unauthorized users and hackers. When considering these security issues, trust is one of the most important means to improve the system’s security and enable interoperability of current heterogeneous cloud computing platforms. The objective of this chapter is to discuss and understand the basic security and privacy challenges of a cloud computing environment as the security of cloud computing is the greatest challenge for delivering a safer cloud environment for both the service providers and the service customers. With this in mind, this chapter will introduce the risks and possible attacks in a cloud computing environment. The major goal is to specify the security risks and attacks and consider trust of cloud service users for delivering a safer and innovation business model.

Identification of Various Privacy and Trust Issues in Cloud Computing Environment

2019 ◽  
pp. 992-1013
Author(s):  
Shivani Jaswal ◽  
Manisha Malhotra
Keyword(s):  
Cloud Computing ◽  
Service Provider ◽  
Cloud Service ◽  
Security And Privacy ◽  
Computing Environment ◽  
Cloud Service Provider ◽  
Cloud Computing Environment ◽  
Security Issues

Cloud computing is a rising paradigm in today's world. In this, users can send his or her request to any CSP, i.e., cloud service provider, of their choice. In return, the CSP reverts him back with that particular service. Now, while communicating from various two locations, the data transferred is not passed through that much amount of security and privacy as expected. So, there are lots of parameters in the environment that are taken care of while sending, receiving or just passing data over the network. This chapter presents various security issues that are underlying in cloud computing. This chapter has illustrated various issues such as Trust, Encryption, Authenticity, Confidentiality and Multi Tenancy. Also, some of the proposed solutions have also been discussed later in the chapter.

Identification of Various Privacy and Trust Issues in Cloud Computing Environment

2018 ◽  
pp. 95-121
Author(s):  
Shivani Jaswal ◽  
Manisha Malhotra
Keyword(s):  
Cloud Computing ◽  
Service Provider ◽  
Cloud Service ◽  
Security And Privacy ◽  
Computing Environment ◽  
Cloud Service Provider ◽  
Cloud Computing Environment ◽  
Security Issues

Cloud computing is a rising paradigm in today's world. In this, users can send his or her request to any CSP, i.e., cloud service provider, of their choice. In return, the CSP reverts him back with that particular service. Now, while communicating from various two locations, the data transferred is not passed through that much amount of security and privacy as expected. So, there are lots of parameters in the environment that are taken care of while sending, receiving or just passing data over the network. This chapter presents various security issues that are underlying in cloud computing. This chapter has illustrated various issues such as Trust, Encryption, Authenticity, Confidentiality and Multi Tenancy. Also, some of the proposed solutions have also been discussed later in the chapter.

Cloud Computing and Security Issues in the Cloud

2018 ◽  
Vol 9 (1) ◽  
pp. 22-27
Author(s):  
Santosh Kumar Singh ◽  
P.K. Manjhi ◽  
R.K. Tiwari ◽  
V.R. Vadi
Keyword(s):  
Cloud Computing ◽  
Service Providers ◽  
Cloud Service ◽  
Sensitive Information ◽  
Business Trend ◽  
Cloud Infrastructure ◽  
Security Issues ◽  
Geographically Dispersed ◽  
New Business ◽  
Cloud Servers

Cloud computing has formed the conceptual and infrastructural basis for tomorrow’s computing. The global computing infrastructure is rapidly moving towards cloud based architecture. While it is important to take advantages of cloud based computing by means of deploying it in diversified sectors, the security aspects in a cloud based computing environment remains at the core of interest. Cloud based services and service providers are being evolved which has resulted in a new business trend based on cloud technology. With the introduction of numerous cloud based services and geographically dispersed cloud service providers, sensitive information of different entities are normally stored in remote servers and locations with the possibilities of being exposed to unwanted parties in situations where the cloud servers storing those information are compromised. If security is not robust and consistent, the flexibility and advantages that cloud computing has to offer will have little credibility. This paper presents a review on the cloud computing concepts as well as security issues inherent within the context of cloud computing and cloud infrastructure.

scholarly journals Assessment of Security Issues in Cloud Computing

2019 ◽  
Vol 8 (2S8) ◽  
pp. 991-993
Keyword(s):  
Cloud Computing ◽  
Denial Of Service ◽  
Cloud Service ◽  
Cloud Security ◽  
Security Measures ◽  
Counter Measures ◽  
Security Issues ◽  
Computing Model ◽  
Security Standards ◽  
The Cost

A computing model in which the computing resources such as hardware, software and data are provided as a service via web browser or light-weight desktop machine on the internet is termed as Cloud computing. This computing model demolishes the requirement of keeping the resources of computer locally hence reducing the cost of worthy resources (Llorente, Montero & Moreno, 2012). A typical cloud is affected by various security concerns such as Temporary Denial of Service (TDOS) attacks, hijacking session issues, flashing attacks and theft of user identity. The motto of this study is to overcome the research gap between the cloud security constraints and the existing security danger. An investigation into the present cloud service models, presently applied security measures, security standards and their level of flawless shielding has been done. This thematic study helped in disclosing various security issues and their counter measures whereas the empirical study facilitated in acknowledgement of the botherings of users and security analysts in regards to those solution strategy. The empirical methods used in this research were interviews and questionnaires to justify the theoretical findings and to gain the originality of practitioners dealing with cloud security

A Comprehensive Survey on Trust Issue and Its Deployed Models in Computing Environment

2019 ◽  
pp. 127-139
Author(s):  
Shivani Jaswal ◽  
Gurpreet Singh
Keyword(s):  
Cloud Computing ◽  
Service Provider ◽  
Data Transfer ◽  
Cloud Service ◽  
Third Party ◽  
Cloud Environment ◽  
Cloud Service Provider ◽  
Security Issues ◽  
Comprehensive Survey ◽  
Trust Models

Cloud computing is growing with a giant pace in today's world. The speed with which it is growing, the same speed is taken over by the insecure data transfer over the cloud. There are many security issues that are underlying in cloud computing. This chapter presents how a trust is built between any user and a cloud service provider. Various techniques have been adopted to calculate the value of trust and further how it can be strength. This chapter has also explained various trust models based on the necessities of a user. This chapter has also thrown some light over the concept of TTP, i.e., Trusted Third Party which further helps in maintaining trust over the cloud environment.

A Comprehensive Survey on Trust Issue and Its Deployed Models in Computing Environment

2018 ◽  
pp. 150-166
Author(s):  
Shivani Jaswal ◽  
Gurpreet Singh
Keyword(s):  
Cloud Computing ◽  
Service Provider ◽  
Data Transfer ◽  
Cloud Service ◽  
Third Party ◽  
Cloud Environment ◽  
Cloud Service Provider ◽  
Security Issues ◽  
Comprehensive Survey ◽  
Trust Models

Cloud computing is growing with a giant pace in today's world. The speed with which it is growing, the same speed is taken over by the insecure data transfer over the cloud. There are many security issues that are underlying in cloud computing. This chapter presents how a trust is built between any user and a cloud service provider. Various techniques have been adopted to calculate the value of trust and further how it can be strength. This chapter has also explained various trust models based on the necessities of a user. This chapter has also thrown some light over the concept of TTP, i.e., Trusted Third Party which further helps in maintaining trust over the cloud environment.

scholarly journals Security Challenges over Cloud Environment from Service Provider Prospective

2020 ◽  
pp. 12-20
Author(s):  
Ahthasham Qureshi ◽  
Wahab Dashti ◽  
Asma Jahangeer ◽  
Afia Zafar
Keyword(s):  
Cloud Computing ◽  
Service Provider ◽  
Service Providers ◽  
Cloud Service ◽  
Data Availability ◽  
Virtual Storage ◽  
Survey Paper ◽  
Security Issues ◽  
High Security ◽  
Speed Up

Cloud computing becomes very popular and growing rapidly since the last few years, various information technology giants such as Amazon, Google, Microsoft and others speed up their growth in development of cloud computing systems and enhance services for consumers all over the world. Cloud computing provides virtual storage for the clients to avail storage, application, platform and services from their deployed servers over the internet. Various security issues such as; data insecure, data leakage, data availability, attacks; etc. could arise due to poor security policies. This paper discussed in detail security issues in terms of the CIA (Confidentiality, Integrity, and Availability) triangle from a service provider perspective over the services they provide to the end users. By these measurements high security can be achieve in cloud computing. Additionally, to protect confidential data from users on cloud the privacy actions are not updated accordingly. Severally, data backups on cloud cause high security risks. This survey paper analyzes the main security issues which are currently present in the cloud computing and offers best practices to service providers and enterprises hoping to control cloud service.  

scholarly journals Assessment of Security Issues in Cloud Computing

2019 ◽  
Vol 8 (6S) ◽  
pp. 437-439
Keyword(s):  
Cloud Computing ◽  
Denial Of Service ◽  
Cloud Service ◽  
Cloud Security ◽  
Security Measures ◽  
Counter Measures ◽  
Security Issues ◽  
Computing Model ◽  
Security Standards ◽  
The Cost

A computing model in which the computing resources such as hardware, software and data are provided as a service via web browser or light-weight desktop machine on the internet is termed as Cloud computing. This computing model demolishes the requirement of keeping the resources of computer locally hence reducing the cost of worthy resources (Llorente, Montero & Moreno, 2012). A typical cloud is affected by various security concerns such as Temporary Denial of Service (TDOS) attacks, hijacking session issues, flashing attacks and theft of user identity. The motto of this study is to overcome the research gap between the cloud security constraints and the existing security danger. An investigation into the present cloud service models, presently applied security measures, security standards and their level of flawless shielding has been done. This thematic study helped in disclosing various security issues and their counter measures whereas the empirical study facilitated in acknowledgement of the botherings of users and security analysts in regards to those solution strategy. The empirical methods used in this research were interviews and questionnaires to justify the theoretical findings and to gain the originality of practitioners dealing with cloud security

Sign in / Sign up

Export Citation Format

Share Document