Security Issues of Cloud Computing
Download as PPT, PDF16 likes10,316 views
Outline: Cloud Computing Deployment Security Major Concern Management level Security General Issues
Ad
More Related Content
What's hot (20)
Viewers also liked (20)
Ad
Similar to Security Issues of Cloud Computing (20)
Ad
More from Falgun Rathod (6)
Recently uploaded (20)
Security Issues of Cloud Computing
- 1. Security in Cloud Computing Cyber Octet Pvt. Ltd. Contact: +91 9824435293 [email protected]
- 2. • A Easy word defined in very complex way Lets take Chill Pill and Understand the Issues of Cloud Computing
- 3. Outline • • • • • Cloud Computing Deployment Security Major Concern Management level Security General Issues
- 4. Cloud Computing • Cloud computing providing unlimited infrastructure to store and execute customer data and program. As customers you do not need to own the infrastructure, they are merely accessing or renting, they can forego capital expenditure and consume resources as a service, paying instead for what they use. Benefits of Cloud Computing : • • • • • Minimized Capital expenditure Location and Device independence Utilization and efficiency improvement Very high Scalability High Computing power
- 6. Deployment Models Private cloud: controlled and used by one organization Community cloud: used by several organizations Public cloud: available to the general public Hybrid cloud: mixture of the above, allows cloud bursting
- 7. Security a major Concern • Security concerns arising because both customer data and program are residing in Provider Premises. • Security is always a major concern in Open System Architectures Customer Data Customer Customer Code Provider Premises
- 8. Security Is the Major Challenge
- 9. Dangers and Vulnerabilities Security is to save data and program from danger and vulnerability Dangers • • • • Disrupts Services. Theft of Information. Loss of Privacy. Damage information. Vulnerabilities • Hostile Program. • Hostile people giving instructions to good programs. • Bad guys corrupting or eavesdropping on communications
- 11. Security at Different Levels We need Security at following levels: • • • • Server access security Internet access security Database access security Data privacy security
- 12. Research Questions At a Broad level, Two major Questions are: • How much secure is the Data? • How much secure is the Code?
- 13. How much safe is data from Natural disaster? • Data can be redundantly store in multiple physical location. • Physical location should be distributed across world.
- 14. Data centre Security? • Professional Security staff utilizing video surveillance, state of the art intrusion detection systems, and other electronic means. • When an employee no longer has a business need to access datacenter his privileges to access datacenter should be immediately revoked. • All physical and electronic access to data centers by employees should be logged and audited routinely. • Audit tools so that users can easily determine how their data is stored, protected, used, and verify policy enforcement.
- 15. Backups of Data • Data store in database of provider should be redundantly store in multiple physical location. • Data that is generated during running of program on instances is all customer data and therefore provider should not perform backups. • Control of Administrator on Databases.
- 16. Data Sanitization • Sanitization is the process of removing sensitive information from a storage device. • What happens to data stored in a cloud computing environment once it has passed its user’s “use by date” • What data sanitization practices does the cloud computing service provider propose to implement for redundant and retiring data storage devices as and when these devices are retired or taken out of service.
- 17. • Some virus and worm create-• Job Starvation Issue : where one job takes up a huge amount of resource resulting in a resource starvation for the other jobs. • Solutions: • Advanced reservations of resources • priority reduction
- 18. Information Security Security related to the information exchanged between different hosts or between hosts and users. This issues pertaining to secure communication, authentication, and issues concerning single sign on and delegation. Secure communication issues include those security concerns that arise during the communication between two entities. These include confidentiality and integrity issues. Confidentiality indicates that all data sent by users should be accessible to only “legitimate” receivers, and integrity indicates that all data received should only be sent/modified by “legitimate” senders. Solution: public key encryption, X.509 certificates, and the Secure Sockets Layer (SSL) enables secure authentication and communication over computer networks.
- 20. We need Anti –Virus layer to help control and protect: • - Memory and CPU • - Networking • - Process execution control • - Storage
- 21. • Management Related Issues: Management is important as the cloud is heterogeneous in nature and may consist of multiple entities, components, users, domains, policies, and stake holders. • Credential Management:Credential management systems store and manage the credentials for a variety of systems and users can access them according to their needs. • Secure and safe storage of credentials is equally important.
- 22. How secure is encryption Scheme • Is it possible for all of my data to be fully encrypted? • What algorithms are used? • Who holds, maintains and issues the keys? Problem: • Encryption accidents can make data totally unusable. • Encryption can complicate availability Solution • The cloud provider should provide evidence that encryption schemes were designed and tested by experienced specialists.
- 23. Investigative Support • Investigating inappropriate or illegal activity may be difficult in cloud computing because -- logging and data for multiple customers may be co-located -- may also be geographically spread across an ever-changing set of hosts and data centers. Solution: get a contractual commitment to support specific forms of investigation, along with evidence that the vendor has already successfully supported such activities.
- 24. How to ensure Users that both Data and Code are safe? Very hard for the customer to actually verify the currently implemented security practices and initiatives of a cloud computing service provider because the customer generally has no access to the provider’s facility which can be comprised of multiple facilities spread around the globe. Solution: Provider should get some standard certificate from some governing or standardized institution that ensure users that provider has established adequate internal control and these control are operating efficiently.
- 25. Thank You Feel Free to contact [email protected] https://www.facebook.com/cyberoctet