scholarly journals MISP: Model for IaaS Security and Privacy

2021 ◽  
Author(s):  
Indra Kumar Sahu ◽  
Manisha J Nene
Keyword(s):  
Cloud Service ◽  
Security And Privacy ◽  
Security Assessment ◽  
Counter Measures ◽  
Internet Infrastructure ◽  
Storage Servers ◽  
Cost Scaling ◽  
Privacy Issues ◽  
Cloud Users ◽  
Delivery Models

Paradigm shift towards cloud computing offers plethora of advantages both for cloud users and Cloud Service Provider (CSP). For cloud users, it offers saving of cost, scaling of resources, pay per use, elastic and on-demand services. On the other hand, it offers centralized resource management and provisioning of operations, safety and security for CSP. By holding multiple virtual IT resources (CPUs, storage servers, network components and software) over the internet, Infrastructure-as-a-Service (IaaS) serves as fundamental layer for all other delivery models. Along with benefits of IaaS, there exists several security and privacy issues and threats to confidentiality, integrity, authentication, access control and availability. In this paper, detailed study of IaaS components, associated security and privacy issues are explored and counter measures for the same are determined. Furthermore, as a result of the study, Model for IaaS Security and Privacy (MISP) is proposed. The model presents a cubical structure and adds more features than the existing models to enhance the security and privacy of data and operations and guide security assessment for safer adoption by enterprises.

scholarly journals MISP: Model for IaaS Security and Privacy

2021 ◽  
Author(s):  
IndraKumar Sahua ◽  
Manisha J Nenea
Keyword(s):  
Cloud Service ◽  
Security And Privacy ◽  
Security Assessment ◽  
Counter Measures ◽  
Internet Infrastructure ◽  
Storage Servers ◽  
Cost Scaling ◽  
Privacy Issues ◽  
Cloud Users ◽  
Delivery Models

Paradigm shift towards cloud computing offers plethora of advantages both for cloud users and Cloud Service Provider (CSP). For cloud users, it offers saving of cost, scaling of resources, pay per use, elastic and on-demand services. On the other hand, it offers centralized resource management and provisioning of operations, safety and security for CSP. By holding multiple virtual IT resources (CPUs, storage servers, network components and software) over the internet, Infrastructure-as-a-Service (IaaS) serves as fundamental layer for all other delivery models. Along with benefits of IaaS, there exists several security and privacy issues and threats to confidentiality, integrity, authentication, access control and availability. In this paper, detailed study of IaaS components, associated security and privacy issues are explored and counter measures for the same are determined. Furthermore, as a result of the study, Model for IaaS Security and Privacy (MISP) is proposed. The model presents a cubical structure and adds more features than the existing models to enhance the security and privacy of data and operations and guide security assessment for safer adoption by enterprises

scholarly journals Cloud Security - A Semantic Approach in End to End Security Compliance

2017 ◽  
Vol 5 (2) ◽  
pp. 97-106
Author(s):  
VNS Surendra Chimakurthi
Keyword(s):  
Security Policy ◽  
Service Providers ◽  
Cloud Service ◽  
Cloud Security ◽  
Cloud Services ◽  
Security Requirements ◽  
Security And Privacy ◽  
Cloud Service Providers ◽  
Compliance Requirements ◽  
Cloud Users

Many firms are seeing the benefits of moving to the cloud. For the sake of their customers' data, cloud service providers are required by law to maintain the highest levels of data security and privacy. Most cloud service providers employ a patchwork of security and privacy safeguards while industry standards are being created. The upshot is that customers of cloud services are unsure whether or not the security protections supplied by these services are enough to meet their specific security and compliance requirements. In this article, we have discussed the many threats cloud users face and emphasized the compliance frameworks and security processes that should be in place to minimize the risk. To categorize cloud security measures, risks, and compliance requirements, we developed an ontology. We needed to design software to identify the high-level policy rules that must be applied in response to each danger as part of this initiative. Additionally, the program provides a list of cloud service providers that now satisfy specific security requirements. Even if they aren't familiar with the underlying technology, cloud users may utilize our system to build up their security policy and identify compatible providers.

Cloud Security

2014 ◽  
pp. 97-117
Keyword(s):  
Cloud Computing ◽  
Service Delivery ◽  
Cloud Service ◽  
Shared Responsibility ◽  
Security And Privacy ◽  
Security Model ◽  
Service Delivery Models ◽  
Responsibility Model ◽  
Orthogonal Dimension ◽  
Delivery Models

Although cloud computing has been widely accepted in the enterprise, and its usage is growing exponentially, security and privacy are big challenges for adoption and survival of cloud computing. Security has two facets in the cloud computing landscape, that is there are pros and there are cons. Security is obligatory for all service delivery models of cloud computing. Additionally, cloud deployment options are another orthogonal dimension to the cloud service delivery models. With the adoption of cloud computing, a large part of network, system, applications, and data will move under provider control. The cloud service delivery model will create several virtual perimeters as well as a security model with responsibilities shared between the customer and the provider. This shared responsibility model will bring new security management challenges to the organization. This chapter discusses these issues and enumerates some initiatives to address them.

scholarly journals CLOUD COMPUTING APPLICATIONS AND SECURITY ISSUES: AN ANALYTICAL SURVEY

2014 ◽  
pp. 288-293
Author(s):  
ARATI KOTHARI
Keyword(s):  
Cloud Computing ◽  
New Technology ◽  
Security And Privacy ◽  
Shared Resources ◽  
Computing Systems ◽  
Electricity Grid ◽  
Security Issues ◽  
Storage Servers ◽  
Privacy Issues ◽  
Strong Barrier

Cloud computing, a rapidly developing information technology has becoming a well-known the whole world. Cloud computing is Internet-based computing, whereby shared resources, software and information, are provided to computers and devices on-demand, like the electricity grid. Cloud computing is the product of the fusion of traditional computing technology and network technology like grid computing, distributed computing parallel computing and so on. Companies, such as Amazon, Google, Microsoft and so on, accelerate their paces in developing Cloud Computing systems and enhancing their services to provide for a larger amount of users. However, security and privacy issues present a strong barrier for users to adapt into Cloud Computing systems. It is a new technology that satisfies a user’s requirement for computing resources like networks, storage, servers, services and applications, without physically acquiring them. It reduces the overhead of the organization of marinating the large system but it has associated risks and threats also which include – security, data leakage, insecure interface and sharing of resources and inside attacks.

A Practical Conflicting Role-based Cloud Security Risk Evaluation Method

2019 ◽  
Vol 13 ◽  
Author(s):  
Jin Han ◽  
Jing Zhan ◽  
Xiaoqing Xia ◽  
Xue Fan
Keyword(s):  
Risk Evaluation ◽  
Evaluation Method ◽  
Service Providers ◽  
Risk Preferences ◽  
Cloud Service ◽  
Cloud Security ◽  
Third Party ◽  
Security Evaluation ◽  
Security Risk ◽  
Cloud Users

Background: Currently, Cloud Service Provider (CSP) or third party usually proposes principles and methods for cloud security risk evaluation, while cloud users have no choice but accept them. However, since cloud users and cloud service providers have conflicts of interests, cloud users may not trust the results of security evaluation performed by the CSP. Also, different cloud users may have different security risk preferences, which makes it difficult for third party to consider all users' needs during evaluation. In addition, current security evaluation indexes for cloud are too impractical to test (e.g., indexes like interoperability, transparency, portability are not easy to be evaluated). Methods: To solve the above problems, this paper proposes a practical cloud security risk evaluation method of decision-making based on conflicting roles by using the Analytic Hierarchy Process (AHP) with Aggregation of Individual priorities (AIP). Results: Not only can our method bring forward a new index system based on risk source for cloud security and corresponding practical testing methods, but also can obtain the evaluation result with the risk preferences of conflicting roles, namely CSP and cloud users, which can lay a foundation for improving mutual trusts between the CSP and cloud users. The experiments show that the method can effectively assess the security risk of cloud platforms and in the case where the number of clouds increased by 100% and 200%, the evaluation time using our methodology increased by only by 12% and 30%. Conclusion: Our method can achieve consistent decision based on conflicting roles, high scalability and practicability for cloud security risk evaluation.

Improved Proofs Of Retrievability And Replication For Data Availability In Cloud Storage

2020 ◽  
Vol 63 (8) ◽  
pp. 1216-1230 ◽  
Author(s):  
Wei Guo ◽  
Sujuan Qin ◽  
Jun Lu ◽  
Fei Gao ◽  
Zhengping Jin ◽  
...  
Keyword(s):  
Service Providers ◽  
Cloud Service ◽  
Data Availability ◽  
Forgery Attack ◽  
Common Strategy ◽  
Comparable Performance ◽  
Replication Scheme ◽  
High Level ◽  
Cloud Users ◽  
Proofs Of Retrievability

Abstract For a high level of data availability and reliability, a common strategy for cloud service providers is to rely on replication, i.e. storing several replicas onto different servers. To provide cloud users with a strong guarantee that all replicas required by them are actually stored, many multi-replica integrity auditing schemes were proposed. However, most existing solutions are not resource economical since users need to create and upload replicas of their files by themselves. A multi-replica solution called Mirror is presented to overcome the problems, but we find that it is vulnerable to storage saving attack, by which a dishonest provider can considerably save storage costs compared to the costs of storing all the replicas honestly—while still can pass any challenge successfully. In addition, we also find that Mirror is easily subject to substitution attack and forgery attack, which pose new security risks for cloud users. To address the problems, we propose some simple yet effective countermeasures and an improved proofs of retrievability and replication scheme, which can resist the aforesaid attacks and maintain the advantages of Mirror, such as economical bandwidth and efficient verification. Experimental results show that our scheme exhibits comparable performance with Mirror while achieving high security.

Sign in / Sign up

Export Citation Format

Share Document