Organizational Control Related to Cloud

2014 ◽  
pp. 234-246
Author(s):  
Sathish A. Kumar
Keyword(s):  
Cloud Computing ◽  
Security And Privacy ◽  
Organizational Control ◽  
Cloud Provider ◽  
Paradigm Shifts ◽  
Cloud Environment ◽  
Security Issue ◽  
It Industry ◽  
Control Framework ◽  
Security And Reliability

Cloud computing is touted as the next big thing in the Information Technology (IT) industry, which is going to impact the businesses of any size. Yet, the security issue continues to pose a big threat. Lack of transparency in the infrastructure and platforms causes distrust among users, and the users are reluctant to store information on the cloud. This undermines the potential of cloud computing and has proved to be a big barrier in the realization of the potential of cloud computing and its widespread adoption. The big paradigm shifts in the technology has not been reflected on the methods used to secure the technology. When an organization builds the infrastructure for cloud computing, security and privacy controls should be kept in mind from the holistic security perspective. It is also critical that the organization monitor and adapt controls to determine the success of cloud computing in dealing with the security and reliability issues relating to the cloud. From an organizational control perspective, the authors suggest an independent governing body to mediate between the cloud provider and the user, with the control framework that they have developed to fulfill their responsibilities of protecting the cloud environment.

Organizational Control Related to Cloud

2015 ◽  
pp. 1798-1809
Author(s):  
Sathish A. Kumar
Keyword(s):  
Cloud Computing ◽  
Security And Privacy ◽  
Organizational Control ◽  
Cloud Provider ◽  
Paradigm Shifts ◽  
Cloud Environment ◽  
Security Issue ◽  
It Industry ◽  
Control Framework ◽  
Security And Reliability

Cloud computing is touted as the next big thing in the Information Technology (IT) industry, which is going to impact the businesses of any size. Yet, the security issue continues to pose a big threat. Lack of transparency in the infrastructure and platforms causes distrust among users, and the users are reluctant to store information on the cloud. This undermines the potential of cloud computing and has proved to be a big barrier in the realization of the potential of cloud computing and its widespread adoption. The big paradigm shifts in the technology has not been reflected on the methods used to secure the technology. When an organization builds the infrastructure for cloud computing, security and privacy controls should be kept in mind from the holistic security perspective. It is also critical that the organization monitor and adapt controls to determine the success of cloud computing in dealing with the security and reliability issues relating to the cloud. From an organizational control perspective, the authors suggest an independent governing body to mediate between the cloud provider and the user, with the control framework that they have developed to fulfill their responsibilities of protecting the cloud environment.

Survey on DDoS Attacks and Defense Mechanisms in Cloud and Fog Computing

2018 ◽  
Vol 10 (3) ◽  
pp. 61-83 ◽  
Author(s):  
Deepali Chaudhary ◽  
Kriti Bhushan ◽  
B.B. Gupta
Keyword(s):  
Cloud Computing ◽  
Defense Mechanisms ◽  
Low Cost ◽  
Fog Computing ◽  
Smart Devices ◽  
Cloud Environment ◽  
Security Issue ◽  
Process Data ◽  
Ddos Attack ◽  
Iot Devices

This article describes how cloud computing has emerged as a strong competitor against traditional IT platforms by offering low-cost and “pay-as-you-go” computing potential and on-demand provisioning of services. Governments, as well as organizations, have migrated their entire or most of the IT infrastructure to the cloud. With the emergence of IoT devices and big data, the amount of data forwarded to the cloud has increased to a huge extent. Therefore, the paradigm of cloud computing is no longer sufficient. Furthermore, with the growth of demand for IoT solutions in organizations, it has become essential to process data quickly, substantially and on-site. Hence, Fog computing is introduced to overcome these drawbacks of cloud computing by bringing intelligence to the edge of the network using smart devices. One major security issue related to the cloud is the DDoS attack. This article discusses in detail about the DDoS attack, cloud computing, fog computing, how DDoS affect cloud environment and how fog computing can be used in a cloud environment to solve a variety of problems.

scholarly journals A REVIEW ON A SECURITY MECHANISM IN CLOUD ENVIRONMENT

2017 ◽  
Vol 16 (3) ◽  
pp. 6219-6224
Author(s):  
Jaspreet Kaur ◽  
Navdeep Kaler
Keyword(s):  
Cloud Computing ◽  
Data Security ◽  
Information Exchange ◽  
Cloud Service ◽  
Cloud Environment ◽  
Security Issue ◽  
Cloud Service Provider ◽  
Security Issues ◽  
Definition Of ◽  
New Infrastructure

Cloud computing is a way to increase the capacity or add capabilities dynamically without investing in new infrastructure, training new personnel, or licensing new software. As information exchange plays an important role in today’s life, information security becomes more important. This paper is focused on the security issues of cloud computing and techniques to overcome the data security issue. Before analyzing the security issues, the definition of cloud computing and brief discussion to under cloud computing is presented. The various components that affect the security of the cloud and the problems faced by cloud service provider have been discussed in this paper.

scholarly journals AN OVERVIEW OF CLOUD COMPUTING: PLATFORMS AND SECURITY ISSUES

2018 ◽  
Vol 5 (43) ◽  
Author(s):  
Paramjeet Kaur
Keyword(s):  
Cloud Computing ◽  
Capital Investment ◽  
Scale Up ◽  
Cloud Provider ◽  
It Services ◽  
Cloud Environment ◽  
Large Organization ◽  
Security Issues ◽  
User Data ◽  
Computing Platforms

Cloud computing is a new computing model which is widely emerging technology in the recent years is adopted by most of the IT companies and other organizations. Cloud computing enables individuals and organizations to gain access to huge computing resources without capital investment. Cloud computing is a set of IT services that are provided to a customer over a network on a leased basis and with the ability to scale up or down their service requirements. Cloud computing is the internet depend technology which is providing the services to user, small and large organization on demand. Cloud computing stored the user data and maintain in the data canter of cloud provider like Amazon, Oracle, Google, Microsoft etc. However, the cloud environment is considered untrusted as it is accessed through Internet. Therefore people have security concerns on data stored in cloud environment. The major concern of cloud environment is security during upload the data on cloud server.

scholarly journals A Review on Secure Storage Using Bidirectional Verification Techniques in Cloud Computing

2018 ◽  
Vol 7 (4.36) ◽  
pp. 511
Author(s):  
Mr. Girish kumar d ◽  
Dr. Rajashree v biradar ◽  
Dr. V c patil
Keyword(s):  
Cloud Computing ◽  
Data Privacy ◽  
Virtual Machines ◽  
Cloud Service ◽  
Sensitive Information ◽  
Cloud Environment ◽  
It Industry ◽  
Cloud Data ◽  
Secure Storage ◽  
Verification Techniques

Cloud computing increases the capacity or capabilities vigorously without devoting new infrastructure, training new personnel, or licensing the new software . In the past few years, cloud computing has grown from being a promising business concept to one of the fast-growing sectors of IT industry. As the more sensitive information and data are moved into the cloud data centers, they run on virtual computing resources in the form of virtual machines. Security has become one of the major issue in cloud computing which reduces the growth of cloud environment with complications in data privacy and data protection continue to outbreak the market. A new model created for the advancement should not result as a threat to the existing model. The architecture of cloud poses such a threat to the security of existing models when deployed in a cloud environment. The different cloud service users need to be attentive in considerate,about the risk of data breaks in the new environment. In this paper, advanced survey of the various secured storage in cloud computing using bidirectional protocols is presented.  

scholarly journals Secure Cloud Key Management based on Robust Secret Sharing

2021 ◽  
Author(s):  
Ahmed Bentajer ◽  
Mustapha Hedabou ◽  
Sara Ennaama ◽  
Abderrahim Tahiri
Keyword(s):  
Cloud Computing ◽  
Secret Sharing ◽  
Key Management ◽  
Third Party ◽  
Cloud Provider ◽  
Cloud Environment ◽  
Critical Issues ◽  
Security Module ◽  
Performance Results ◽  
Multi Cloud

The aim of this paper is to propose a model to strengthen the security of key management in cloud computing, where the model is shared or entirely controlled by a non-trusted third party provider. Key management is not a straightforward matter for IT-teams, in addition to critical issues related to properly managing and securing the keys on providers’ infrastructures, they have to deal with concerns specific to multi-cloud key management. Hardware Security Module (HSM) solution that offers a secure on-premise encryption key management turned out be impracticable for widespread cloud deployment. HSM as a Service seems to be the best approach for key management in multi-cloud, but the service is wholly owned and managed by another cloud provider. In This paper, we present an efficient and secure cloud key management that fulfills the requirements of multi-cloud deployment. The proposed design splits the key into a blinded version of n shares that will be stored in encrypted format at the cloud provider side. To demonstrate the efficiency of the proposed design, we implement a fully featured prototype and evaluate its performance. Results analysis shows that the proposed design is highly efficient and can serve as a groundwork for using secret share as a way to protect keys in a multi-cloud environment.

Survey on DDoS Attacks and Defense Mechanisms in Cloud and Fog Computing

2019 ◽  
pp. 1927-1951
Author(s):  
Deepali Chaudhary ◽  
Kriti Bhushan ◽  
B.B. Gupta
Keyword(s):  
Cloud Computing ◽  
Defense Mechanisms ◽  
Low Cost ◽  
Fog Computing ◽  
Smart Devices ◽  
Cloud Environment ◽  
Security Issue ◽  
Process Data ◽  
Ddos Attack ◽  
Iot Devices

This article describes how cloud computing has emerged as a strong competitor against traditional IT platforms by offering low-cost and “pay-as-you-go” computing potential and on-demand provisioning of services. Governments, as well as organizations, have migrated their entire or most of the IT infrastructure to the cloud. With the emergence of IoT devices and big data, the amount of data forwarded to the cloud has increased to a huge extent. Therefore, the paradigm of cloud computing is no longer sufficient. Furthermore, with the growth of demand for IoT solutions in organizations, it has become essential to process data quickly, substantially and on-site. Hence, Fog computing is introduced to overcome these drawbacks of cloud computing by bringing intelligence to the edge of the network using smart devices. One major security issue related to the cloud is the DDoS attack. This article discusses in detail about the DDoS attack, cloud computing, fog computing, how DDoS affect cloud environment and how fog computing can be used in a cloud environment to solve a variety of problems.

Cloud Security Using 2-Factor Image Authentication Technique

2017 ◽  
pp. 135-147
Author(s):  
Ratish Agarwal ◽  
Anjana Pandey ◽  
Mahesh Pawar
Keyword(s):  
Cloud Computing ◽  
User Authentication ◽  
Image Authentication ◽  
Experimental Result ◽  
Cloud Environment ◽  
Sensitive Data ◽  
It Industry ◽  
Authentication Mechanism ◽  
Confidential Data ◽  
Pixel Value

Cloud computing is being anticipated as the infrastructural basis of tomorrow's IT industry and continues to be a topic of interest of many new emerging IT firms. Cloud can deliver resources and services to computers and devices through internet. Since Cloud Computing involves outsourcing of sensitive data and critical information the security aspects of cloud need to be dealt carefully. Strong authentication, focusing mainly on user-authentication, acts as a pre-requisite for access control in the cloud environment. In this paper we discuss an efficient authentication mechanism to deal with the security threats that are faced by cloud. The method proposed in this paper prevents the confidential data and information of end users stored in a private cloud from unauthorized access by using a two-factor authentication involving shared image concept in addition with encrypted key authentication.MD5 hashing technique is used which takes binary pixel value of image as input and convert it into a 128-bit hash value. The overall process of authentication has been shown through experimental result and implementation which shows a series of snapshots taken from the chapter.

Access Control Framework Using Multi-Factor Authentication in Cloud Computing

2021 ◽  
pp. 1130-1146
Author(s):  
Subhash Chandra Patel ◽  
Sumit Jaiswal ◽  
Ravi Shankar Singh ◽  
Jyoti Chauhan
Keyword(s):  
Cloud Computing ◽  
Access Control ◽  
Cloud Provider ◽  
Control Mechanisms ◽  
Sensitive Data ◽  
Security Authentication ◽  
Data Owner ◽  
Control Framework ◽  
One Time Password ◽  
Remote Client

The most challenging issues in cloud computing are access control and data security because users of the cloud outsource sensitive data and information to cloud provider servers, which are not within the same trusted domain as the data owner. Within cloud computing, various services and resources need protection from unauthorized use as a part of the security. Authentication is a key technology for information security. In recent years, a lot of research has been carried out throughout the world and several schemes have been proposed to improve authentication in the cloud. Remote authentication is the commonly used method to determine the identity of the remote client. In this article, the authors have proposed a systematic method for authenticating clients, namely by using a password, biometrics, and out-of-band-based access control mechanisms that are suitable for access control. The proposed system involves user ID/password, biometrics characteristics, and a mobile phone as a software token for one-time password generation.

Study of the Security Risks and Measures in Cloud Computing

2015 ◽  
Vol 9 (1and2) ◽  
Author(s):  
Akshay Mehta ◽  
Dr. Sanjay Kumar Dubey
Keyword(s):  
Cloud Computing ◽  
Service Providers ◽  
Security And Privacy ◽  
It Industry ◽  
Security Risks ◽  
Resource Pooling ◽  
Computing Services ◽  
Huge Data ◽  
Cloud Computing Services ◽  
The Cost

Cloud Computing has emerged very fast in the IT industry. It is based on virtualization technology and provides internet based computing which provides resource pooling, services sharing and on demand access. Its evolution has reduced must of the cost of enterprises as well as of the other industries working with a huge data. With cloud computing emerging at a much faster rate, the situation may soon be changed. But, despite the fact that it provides a number of facilities to the service providers, it has quite a number of issues related to it. The most important issue related to cloud is its security. From the consumer’s perspective, cloud computing security concerns, especially data security and privacy protection issues, remain the primary inhibitor of cloud computing services. Security is the reason that hinders many enterprises to enter into cloud. So this paper gives a detail of the security risks related to cloud and the possible measures which the enterprises need to ensure before entering Cloud Computing.

Sign in / Sign up

Export Citation Format

Share Document