Security Aspects in Cloud Computing

Cloud computing is recently emerging technology, which provides a way to access computing resources over Internet on demand and pay per use basis. Cloud computing is a paradigm that enable access to shared pool of resources efficiently, which are managed by third party cloud service providers. Despite of various advantages of cloud computing security is the biggest threat. This chapter describes various security concerns in cloud computing. The clouds are subject to traditional data confidentiality, integrity, availability and various privacy issues. This chapter comprises various security issues at different levels in environment that includes infrastructure level security, data level and storage security. It also deals with the concept of Identity and Access Control mechanism.

Download Full-text

Security Aspects in Cloud Computing

Cyber Security and Threats ◽

10.4018/978-1-5225-5634-3.ch004 ◽

2018 ◽

pp. 54-76

Author(s):

Tabassum N. Mujawar ◽

Ashok V. Sutagundar ◽

Lata L. Ragha

Keyword(s):

Cloud Computing ◽

Service Providers ◽

Cloud Service ◽

Third Party ◽

Storage Security ◽

Security Issues ◽

Access Control Mechanism ◽

And Storage ◽

Privacy Issues ◽

Different Levels

Download Full-text

Data security and storage in cloud using hybrid algorithms

International Journal of Engineering & Technology ◽

10.14419/ijet.v7i2.20.12797 ◽

2018 ◽

Vol 7 (2.20) ◽

pp. 150

Author(s):

L Archana ◽

K P. K. Devan ◽

P Harikumar

Keyword(s):

Cloud Computing ◽

Data Security ◽

Service Providers ◽

Cloud Service ◽

Hybrid Algorithms ◽

Cloud Services ◽

Third Party ◽

Security Mechanism ◽

Cloud Servers ◽

And Storage

Cloud Computing has already grabbed its roots in many industries. It has become a fascinating choice for small budget organizations, as On-demand resources are available on pay as you use basis. However, security of data being stored at cloud servers is still a big question for organizations in today’s digital era where information is money. Large organizations are reluctant to switch to cloud services since they have threat of their data being manipulated. Cloud service provider’s claim of providing robust security mechanism being maintained by third party, but still there are many reported incidents of security breach in cloud environment in past few years. Thus, there is need for ro-bust security mechanism to be adopted by cloud service providers in order for excelling cloud computing. Since there are n number of data’s in cloud, Storage of those data are to be placed with high rank of Significance. In Existing system, no efficient hybrid algorithms are used there by security and storage is compromised to significant ratio. We propose AES and Fully Homomorphic algorithm to encrypt the data, thereby file size get is compressed thereby increasing Data security and stack pile.

Download Full-text

ECS: An Enhanced Cloud Security Algorithm

International Journal of Recent Technology and Engineering - 2 ◽

10.35940/ijrte.b2314.078219 ◽

2019 ◽

Vol 8 (2) ◽

pp. 6408-6412

Keyword(s):

Cloud Computing ◽

Service Providers ◽

Cloud Service ◽

Cloud Security ◽

Third Party ◽

Cloud Environment ◽

Security Issues ◽

Security Algorithm ◽

Cryptographic Techniques ◽

Cloud Users

Cloud computing is a technology where it provides software, platform, infrastructure, security and everything as a service. But this technology faces many security issues because all the data or information are stored in the hands of the third party. The cloud users unable to know where the data are store in the cloud environment and also it is very difficult to analyze the trustworthiness of the cloud service providers. In this technology providing security is a very big challenging task. This challenge was overcome by developing different cloud security algorithms using cryptographic techniques. Recently many researchers identified that if the cryptographic algorithms are combined in a hybrid manner it will increase the security in the cloud environment. Even though, many research works are still carried out to improve security in the cloud computing environment. In this research article, a new step was taken to develop a new cloud security algorithm

Download Full-text

Security Architecture for Multi Tenant Cloud Migration

10.31224/osf.io/5c6es ◽

2020 ◽

Author(s):

S. Manikanda Saran ◽

S. Raja Suria

Keyword(s):

Cloud Computing ◽

Scale Up ◽

Cost Effective ◽

Cloud Service ◽

Storage Security ◽

Security Issues ◽

Cloud Migration ◽

Staging Area ◽

Scale Down ◽

And Storage

In today’s competitive IT world Cloud Computing is the word rolling around in all activities of IT companies. Thus, everyone is transforming their infrastructure from legacy infrastructure to cloud computing which is very feasible, and Cost effective. Finally, it can scale up and scale down instantly on demand basis. When companies think about the cloud adoption, security is the biggest issue and data is stored in software defined environment. This paper addresses security parameters which need to be mainly considered for cloud migration. Cloud service provider is responsible for building fence around the underlying infrastructure i.e. Compute, network and storage. Security is the main controller for adopting the cloud environment. In Cloud computing, security issues are identified with different layers. In this paper, new architecture is proposed for achieving data confidentiality and data integrity in multitenant workload migration into cloud. This architecture ensures that tenant has secure relationship between source and destination data centers via staging area. This staging area has capability to migrate the workload in different hypervisors. Workload meets security guidelines through this migration process from beginning to end.

Download Full-text

Data Security Issues and Solutions in Cloud Computing

Web-Based Services ◽

10.4018/978-1-4666-9466-8.ch091 ◽

2016 ◽

pp. 2076-2095

Author(s):

Abhishek Majumder ◽

Sudipta Roy ◽

Satarupa Biswas

Keyword(s):

Information Technology ◽

Cloud Computing ◽

Data Security ◽

Cloud Service ◽

Third Party ◽

Service Availability ◽

Cloud Environment ◽

Cloud Service Provider ◽

Storage And Retrieval ◽

Security Issues

Cloud is considered as future of Information Technology. User can utilized the cloud on pay-as-you use basis. But many organizations are stringent about the adoption of cloud computing due to their concern regarding the security of the stored data. Therefore, issues related to security of data in the cloud have become very vital. Data security involves encrypting the data and ensuring that suitable policies are imposed for sharing those data. There are several data security issues which need to be addressed. These issues are: data integrity, data intrusion, service availability, confidentiality and non-repudiation. Many schemes have been proposed for ensuring data security in cloud environment. But the existing schemes lag in fulfilling all these data security issues. In this chapter, a new Third Party Auditor based scheme has been proposed for secured storage and retrieval of client's data to and from the cloud service provider. The scheme has been analysed and compared with some of the existing schemes with respect to the security issues. From the analysis and comparison it can be observed that the proposed scheme performs better than the existing schemes.

Download Full-text

A Cloud-User Protocol Based on Ciphertext Watermarking Technology

Security and Communication Networks ◽

10.1155/2017/4376282 ◽

2017 ◽

Vol 2017 ◽

pp. 1-14 ◽

Cited By ~ 1

Author(s):

Keyang Liu ◽

Weiming Zhang ◽

Xiaojuan Dong

Keyword(s):

Cloud Computing ◽

Service Providers ◽

Hamming Distance ◽

Cloud Service ◽

Third Party ◽

Plain Text ◽

Privacy Leakage ◽

Cloud Computing Service ◽

The Right ◽

Cloud User

With the growth of cloud computing technology, more and more Cloud Service Providers (CSPs) begin to provide cloud computing service to users and ask for users’ permission of using their data to improve the quality of service (QoS). Since these data are stored in the form of plain text, they bring about users’ worry for the risk of privacy leakage. However, the existing watermark embedding and encryption technology is not suitable for protecting the Right to Be Forgotten. Hence, we propose a new Cloud-User protocol as a solution for plain text outsourcing problem. We only allow users and CSPs to embed the ciphertext watermark, which is generated and embedded by Trusted Third Party (TTP), into the ciphertext data for transferring. Then, the receiver decrypts it and obtains the watermarked data in plain text. In the arbitration stage, feature extraction and the identity of user will be used to identify the data. The fixed Hamming distance code can help raise the system’s capability for watermarks as much as possible. Extracted watermark can locate the unauthorized distributor and protect the right of honest CSP. The results of experiments demonstrate the security and validity of our protocol.

Download Full-text

On Data Security and Encryption Algorithms in Cloud Environment

Applied Mechanics and Materials ◽

10.4028/www.scientific.net/amm.701-702.1106 ◽

2014 ◽

Vol 701-702 ◽

pp. 1106-1111 ◽

Cited By ~ 1

Author(s):

Xin Zheng Zhang ◽

Ya Juan Zhang

Keyword(s):

Cloud Computing ◽

Data Storage ◽

Data Security ◽

Service Providers ◽

Cloud Service ◽

Working Environment ◽

Cloud Environment ◽

Cloud Data ◽

Security Issues ◽

Encryption Algorithms

As information and processes are migrating to the cloud, Cloud Computing is drastically changing IT professionals’ working environment. Cloud Computing solves many problems of conventional computing. However, the new technology has also created new challenges such as data security, data ownership and trans-code data storage. We discussed about Cloud computing security issues, mechanism, challenges that Cloud service providers and consumers face during Cloud engineering. Based on concerning of security issues and challenges, we proposed several encryption algorithms to make cloud data secure and invulnerable. We made comparisons among DES, AES, RSA and ECC algorithms to find combinatorial optimization solutions, which fit Cloud environment well for making cloud data secure and not to be hacked by attackers.

Download Full-text

Secure and Selective Cloud Data Auditing using Deep Machine Learning

International Journal of Engineering and Advanced Technology - Regular Issue ◽

10.35940/ijeat.b2361.129219 ◽

2019 ◽

Vol 9 (2) ◽

pp. 5471-5479

Keyword(s):

Machine Learning ◽

Cloud Computing ◽

Service Providers ◽

Cloud Service ◽

Third Party ◽

Cloud Data ◽

Data Centre ◽

Cloud Service Providers ◽

Characteristics Analysis ◽

Data Centres

The tradition of moving applications, data to be consumed by the applications and the data generated by the applications is increasing and the increase is due to the advantages of cloud computing. The advantages of cloud computing are catered to the application owners, application consumers and at the same time to the cloud datacentre owners or the cloud service providers also. Since IT tasks are vital for business progression, it for the most part incorporates repetitive or reinforcement segments and framework for power supply, data correspondences associations, natural controls and different security gadgets. An extensive data centre is a mechanical scale task utilizing as much power as a community. The primary advantage of pushing the applications on the cloud-based data centres are low infrastructure maintenance with significant cost reduction for the application owners and the high profitability for the data centre cloud service providers. During the application migration to the cloud data centres, the data and few components of the application become exposed to certain users. Also, the applications, which are hosted on the cloud data centres must comply with the certain standards for being accepted by various application consumers. In order to achieve the standard certifications, the applications and the data must be audited by various auditing companies. Few of the cases, the auditors are hired by the data centre owners and few of times, the auditors are engaged by application consumers. Nonetheless, in both situations, the auditors are third party and the risk of exposing business logics in the applications and the data always persists. Nevertheless, the auditor being a third-party user, the data exposure is a high risk. Also, in a data centre environment, it is highly difficult to ensure isolation of the data from different auditors, who may not be have the right to audit the data. Significant number of researches have attempted to provide a generic solution to this problem. However, the solutions are highly criticized by the research community for making generic assumptions during the permission verification process. Henceforth, this work produces a novel machine learning based algorithm to assign or grant audit access permissions to specific auditors in a random situation without other approvals based on the characteristics of the virtual machine, in which the application and the data is deployed, and the auditing user entity. The results of the proposed algorithm are highly satisfactory and demonstrates nearly 99% accuracy on data characteristics analysis, nearly 98% accuracy on user characteristics analysis and 100% accuracy on secure auditor selection process

Download Full-text

Data Storage, Security And Techniques In Cloud Computing

10.31219/osf.io/f73r6 ◽

2020 ◽

Author(s):

Dinesh Arpitha R ◽

Sai Shobha R

Keyword(s):

Cloud Computing ◽

Data Storage ◽

Service Providers ◽

Cloud Service ◽

Data Access ◽

Cloud Services ◽

Security Risk ◽

Storage Security ◽

The Cost ◽

User Knowledge

Cloud computing is the computing technology which provides resources like software, hardware, services over the internet. Cloud computing provides computation, software, data access, and storage services that do not require end- user knowledge of the physical location and configuration of the system that delivers the services. Cloud computing enables the user and organizations to store their data remotely and enjoy good quality applications on the demand without having any burden associated with local hardware resources and software managements but it possesses a new security risk towards correctness of data stored at cloud. The data storage in the cloud has been a promising issue in these days. This is due to the fact that the users are storing their valuable data and information in the cloud. The users should trust the cloud service providers to provide security for their data. Cloud storage services avoid the cost storage services avoids the cost expensive on software, personnel maintains and provides better performance less storage cost and scalability, cloud services through internet which increase their exposure to storage security vulnerabilities however security is one of the major drawbacks that preventing large organizations to enter into cloud computing environment. This work surveyed on several storage techniques and this advantage and its drawbacks.

Download Full-text

Dynamic Public Data Auditing Schemes on Cloud: A Survey

International Journal of Advanced Research in Computer Science and Software Engineering ◽

10.23956/ijarcsse.v8i1.518 ◽

2018 ◽

Vol 8 (1) ◽

pp. 76 ◽

Cited By ~ 1

Author(s):

R.Santha Maria Rani ◽

Dr.Lata Ragha

Keyword(s):

Cloud Computing ◽

Data Storage ◽

Service Providers ◽

Hash Table ◽

Cloud Service ◽

Third Party ◽

Cloud Data ◽

Merkle Hash Tree ◽

Public Data ◽

Data Auditing

Cloud computing provides elastic computing and storage resource to users. Because of the characteristic the data is not under user’s control, data security in cloud computing is becoming one of the most concerns in using cloud computing resources. To improve data reliability and availability, Public data auditing schemes is used to verify the outsourced data storage without retrieving the whole data. However, users may not fully trust the cloud service providers (CSPs) because sometimes they might be dishonest. Therefore, to maintain the integrity of cloud data, many auditing schemes have been proposed. In this paper, analysis of various existing auditing schemes with their consequences is discussed. Keywords: — Third Party Auditor (TPA), Cloud Service Provider (CSP), Merkle-Hash Tree (MHT), Provable data Possession (PDP), Dynamic Hash Table (DHT).

Download Full-text