SAAS: Attack Detection and Prevention with Forensic in cloud Environment

Basically cloud computing security is essential nowadays, it has arisen as a technology to allow users as well as clients to access communications, data storage, software as well as exploitation Environment according to pay-as-what-use structure. Conventional digital forensic can’t be investigated due to some technical challenges like environmental as well as technical. The vibrant nature of cloud computing provides massive opportunities to identify malicious request using various security algorithms in cloud environment. Proposed research work identifies the current issues and provides solutions to reduce some challenges in the cloud environment. In this paper system proposed forensic investigation of cloud security for trusted and untrusted environments. System illustrated the various machine learning algorithms for eliminate the malicious request, and investigate the malicious user also. Proposed method generate the user log base snapshot during the active session and manual investigator can verify all logs and identify the malicious user. We offer a skilled technique for forensic examination in the cloud with the help of virtual machine (VM) and generate snapshots. The experimental analysis shows illustration of proposed security of system.

Download Full-text

Cloud Computing Security: An Investigation into the Security Issues and Challenges Associated with Cloud Computing, for both Data Storage and Virtual Applications

International Research Journal of Electronics and Computer Engineering ◽

10.24178/irjece.2015.1.2.15 ◽

2015 ◽

Vol 1 (2) ◽

pp. 15

Author(s):

Hamisu Alhaji Ali

Keyword(s):

Information Technology ◽

Cloud Computing ◽

Data Storage ◽

World Economy ◽

The Internet ◽

Cloud Environment ◽

Cloud Computing Security ◽

Security Issues ◽

On Demand ◽

The World

In recent years, cloud computing has developed from the promising business concept that it used to be, to one of Information Technology (IT) industry's most developing section. Now that the world economy was hit by recession, the victims of this tragedy continually understand that by just outsourcing or tapping the cloud resources, a package of virtualise, elastic, instant on-demand provision, and scalable; infrastructure, platform, and software can be access fast and easy inform of services at a negligible amount via the internet. However, as individuals and organizations embarked on the course of deploying their information and data into the cloud, anxieties are beginning to develop on whether the cloud environment is safe. This research provides an overview of the cloud deployment model, the services they offer and discusses the security issues and challenges of cloud computing in both data storage and virtual applications/servers.

Download Full-text

Performance of Proposed Architecture for Data Transactions in Cloud using D1FTBC

International Journal of Recent Technology and Engineering - 2 ◽

10.35940/ijrte.b3296.078219 ◽

2019 ◽

Vol 8 (2) ◽

pp. 5390-5395

Keyword(s):

Social Networks ◽

Cloud Computing ◽

Data Storage ◽

Research Work ◽

Transaction Processing ◽

Cloud Environment ◽

Computing Power ◽

Cloud Data ◽

User Demand ◽

Performance Analyses

Cloud is a major requirement for data storage and computing power, without user direct performance. Cloud computing is a famous option for IT industries, enterprises, and government sectors because it provides everything as a service based on user demand. Cloud computing is a better environment for handling a large amount of data which is produced by social networks, health industries, transactional, etc., However, cloud has some issues during the data transaction, many researchers have proposed models and solutions for these problems but still maintaining consistency during the transaction is the biggest problem, it is one of the important properties in ACID. Further, secured architecture is another important issue in cloud environment. So this paper proposes a secured architecture and efficient D1FTBC approach for cloud data transaction. The performance analyses are evaluated at various levels. This research work may lead the transaction processing applications like banking, online reservations and shopping cart etc.,

Download Full-text

PpBAC

Journal of Organizational and End User Computing ◽

10.4018/joeuc.2018100102 ◽

2018 ◽

Vol 30 (4) ◽

pp. 14-31 ◽

Cited By ~ 20

Author(s):

Suyel Namasudra ◽

Pinki Roy

Keyword(s):

Cloud Computing ◽

Access Control ◽

Data Storage ◽

Control Method ◽

Cloud Environment ◽

Authorized User ◽

Control Scheme ◽

Control Schemes ◽

Confidential Data ◽

Efficient Data

This article describes how nowadays, cloud computing is one of the advanced areas of Information Technology (IT) sector. Since there are many hackers and malicious users on the internet, it is very important to secure the confidentiality of data in the cloud environment. In recent years, access control has emerged as a challenging issue of cloud computing. Access control method allows data accessing of an authorized user. Existing access control schemes mainly focus on the confidentiality of the data storage. In this article, a novel access control scheme has been proposed for efficient data accessing. The proposed scheme allows reducing the searching cost and accessing time, while providing the data to the user. It also maintains the security of the user's confidential data.

Download Full-text

Calm Before the Storm

International Journal of Digital Crime and Forensics ◽

10.4018/jdcf.2012040103 ◽

2012 ◽

Vol 4 (2) ◽

pp. 28-48 ◽

Cited By ~ 67

Author(s):

George Grispos ◽

Tim Storer ◽

William Bradley Glisson

Keyword(s):

Cloud Computing ◽

Law Enforcement ◽

Data Storage ◽

It Infrastructure ◽

Software Applications ◽

Digital Forensic ◽

Forensic Practice ◽

New Research ◽

Key Aspects ◽

Control And Management

Cloud computing is a rapidly evolving information technology (IT) phenomenon. Rather than procure, deploy, and manage a physical IT infrastructure to host their software applications, organizations are increasingly deploying their infrastructure into remote, virtualized environments, often hosted and managed by third parties. This development has significant implications for digital forensic investigators, equipment vendors, law enforcement, as well as corporate compliance and audit departments, amongst other organizations. Much of digital forensic practice assumes careful control and management of IT assets (particularly data storage) during the conduct of an investigation. This paper summarises the key aspects of cloud computing and analyses how established digital forensic procedures will be invalidated in this new environment, as well as discussing and identifying several new research challenges addressing this changing context.

Download Full-text

A Proactive Approach to Intrusion Detection in Cloud Software as a Service

Achieving Enterprise Agility through Innovative Software Development - Advances in Systems Analysis, Software Engineering, and High Performance Computing ◽

10.4018/978-1-4666-8510-9.ch013 ◽

2015 ◽

pp. 287-305

Author(s):

Baldev Singh ◽

Surya Narayan Panda

Keyword(s):

Cloud Computing ◽

Virtual Machine ◽

Cloud Security ◽

Dynamic Threshold ◽

Cloud Environment ◽

Ddos Attacks ◽

Security Measures ◽

Malicious User ◽

Proactive Approach ◽

User Activities

Cloud computing environment is very much malicious intrusion prone hence cloud security is very vital. Existing network security mechanisms face new challenges in the cloud such as DDOS attacks, virtual machine intrusion attacks and malicious user activities. This chapter includes brief introduction about cloud computing, concept of virtualization, cloud security, various DDOS attacks, tools to run these attacks & various techniques to detect these attacks, review of threshold methods used for detection of DDOS attacks & abnormal network behavior and proposed dynamic threshold based algorithmic approach. Although various cloud security measures are prevailing to avoid virtual machine attacks and malicious user activities but these are not foolproof. Hence, new security methods are required to increase users' level of trust in clouds. By scrubbing traffic at major Internet points and backbone connection, a defense line is created for mitigation of DDOS attacks. Dynamic threshold algorithm based approach is proposed as a proactive approach to detect DDOS attacks for achieving secure cloud environment.

Download Full-text

A Comprehensive Survey on Techniques Based on TPM for Ensuring the Confidentiality in Cloud Data Centers

Cloud Security ◽

10.4018/978-1-5225-8176-5.ch022 ◽

2019 ◽

pp. 446-458

Author(s):

Arun Fera M. ◽

M. Saravanapriya ◽

J. John Shiny

Keyword(s):

Cloud Computing ◽

Data Storage ◽

Research Work ◽

Computing Systems ◽

Trusted Platform Module ◽

Cloud Data ◽

Secure Storage ◽

Comprehensive Survey ◽

Cloud Data Centers ◽

Trusted Platform

Cloud computing is one of the most vital technology which becomes part and parcel of corporate life. It is considered to be one of the most emerging technology which serves for various applications. Generally these Cloud computing systems provide a various data storage services which highly reduces the complexity of users. we mainly focus on addressing in providing confidentiality to users' data. We are proposing one mechanism for addressing this issue. Since software level security has vulnerabilities in addressing the solution to our problem we are dealing with providing hardware level of security. We are focusing on Trusted Platform Module (TPM) which is a chip in computer that is used for secure storage that is mainly used to deal with authentication problem. TPM which when used provides a trustworthy environment to the users. A detailed survey on various existing TPM related security and its implementations is carried out in our research work.

Download Full-text

Attack Detection in Cloud Networks Based on Artificial Intelligence Approaches

Artificial Intelligence and Security Challenges in Emerging Networks - Advances in Computational Intelligence and Robotics ◽

10.4018/978-1-5225-7353-1.ch003 ◽

2019 ◽

pp. 63-84

Author(s):

Zuleyha Yiner ◽

Nurefsan Sertbas ◽

Safak Durukan-Odabasi ◽

Derya Yiltas-Kaplan

Keyword(s):

Cloud Computing ◽

Deep Learning ◽

Learning Algorithms ◽

General Information ◽

Attack Detection ◽

Machine Learning Algorithms ◽

Training Data ◽

Network Access ◽

Cloud Infrastructure ◽

Security Issues

Cloud computing that aims to provide convenient, on-demand, network access to shared software and hardware resources has security as the greatest challenge. Data security is the main security concern followed by intrusion detection and prevention in cloud infrastructure. In this chapter, general information about cloud computing and its security issues are discussed. In order to prevent or avoid many attacks, a number of machine learning algorithms approaches are proposed. However, these approaches do not provide efficient results for identifying unknown types of attacks. Deep learning enables to learning features that are more complex, and thanks to the collection of big data as a training data, deep learning achieves more successful results. Many deep learning algorithms are proposed for attack detection. Deep networks architecture is divided into two categories, and descriptions for each architecture and its related attack detection studies are discussed in the following section of chapter.

Download Full-text

Forensic Acquisition Methods for Cloud Computing Environments

Encyclopedia of Information Science and Technology, Fifth Edition - Advances in Information Quality and Management ◽

10.4018/978-1-7998-3479-3.ch033 ◽

2021 ◽

pp. 462-472

Author(s):

Diane Barrett

Keyword(s):

Cloud Computing ◽

Final Section ◽

Forensic Investigation ◽

Digital Forensic ◽

Chain Of Custody ◽

Computing Environments ◽

Acquisition Processes

Cloud computing environments add an inherent layer of complication to a digital forensic investigation. The content of this article explores current forensic acquisition processes, how current processes need to be modified for cloud investigations, and what new acquisition methods can help when it is necessary to garner evidence from a cloud computing-based environment. A section will be included that provides a recommendation on how to acquire evidence from cloud-based environments while maintaining chain of custody. A final section will include recommendations for additional areas of research in the area of investigating cloud computing environments and acquiring cloud computing-based evidence.

Download Full-text

Security for the Cloud

Cloud Computing Applications and Techniques for E-Commerce - Advances in Systems Analysis, Software Engineering, and High Performance Computing ◽

10.4018/978-1-7998-1294-4.ch004 ◽

2020 ◽

pp. 68-83

Author(s):

Shweta Kaushik ◽

Charu Gandhi

Keyword(s):

Cloud Computing ◽

Data Storage ◽

Smart Phones ◽

Cloud Environment ◽

Storage Devices ◽

Remote Locations ◽

Confidential Data ◽

Security Concerns ◽

Authorized Access ◽

And Storage

Today's people are moving towards the internet services through cloud computing to acquire their required service, but they have less confidence about cloud computing because all the tasks are handled by the service provider. Cloud system provides features to the owner to store their data on some remote locations and allow only authorized users to access their data according to their access capability. Data security becomes particularly serious in the cloud computing environment because data are scattered in different machines and storage devices including servers, PCs, and various mobile devices such as smart phones. To make the cloud computing be adopted by enterprise, the security concerns of users should be rectified first to make cloud environment trustworthy. The trustworthy environment is the basic prerequisite to win the confidence of users to adopt this technology. However, there are various security concerns that need to be taken care of regarding the trust maintenance between various parties, authorized access of confidential data, data storage privacy, and integrity.

Download Full-text

An Enhanced Way of Distributed Denial of Service Attack Detection by Applying Machine Learning Algorithms in Cloud Computing

Journal of Computational and Theoretical Nanoscience ◽

10.1166/jctn.2020.9317 ◽

2020 ◽

Vol 17 (8) ◽

pp. 3765-3769

Author(s):

N. P. Ponnuviji ◽

M. Vigilson Prem

Keyword(s):

Machine Learning ◽

Cloud Computing ◽

Denial Of Service ◽

Learning Algorithms ◽

Attack Detection ◽

Machine Learning Algorithms ◽

Distributed Denial Of Service ◽

Detection Techniques ◽

Network Bandwidth ◽

Ddos Attack

Cloud Computing has revolutionized the Information Technology by allowing the users to use variety number of resources in different applications in a less expensive manner. The resources are allocated to access by providing scalability flexible on-demand access in a virtual manner, reduced maintenance with less infrastructure cost. The majority of resources are handled and managed by the organizations over the internet by using different standards and formats of the networking protocols. Various research and statistics have proved that the available and existing technologies are prone to threats and vulnerabilities in the protocols legacy in the form of bugs that pave way for intrusion in different ways by the attackers. The most common among attacks is the Distributed Denial of Service (DDoS) attack. This attack targets the cloud’s performance and cause serious damage to the entire cloud computing environment. In the DDoS attack scenario, the compromised computers are targeted. The attacks are done by transmitting a large number of packets injected with known and unknown bugs to a server. A huge portion of the network bandwidth of the users’ cloud infrastructure is affected by consuming enormous time of their servers. In this paper, we have proposed a DDoS Attack detection scheme based on Random Forest algorithm to mitigate the DDoS threat. This algorithm is used along with the signature detection techniques and generates a decision tree. This helps in the detection of signature attacks for the DDoS flooding attacks. We have also used other machine learning algorithms and analyzed based on the yielded results.

Download Full-text