Data security in cloud computing

Prince Chandu
Prince Chandu
Seminar On Data security in cloud computing Presented by: M. Jagadeesh Chandra
Contents  Abstract  Introduction  Architecture  Services models  Data security  Latest technologies  Latest techniques  References  Thank Q!
Abstract  With the development of cloud computing, Data security becomes more and more important in cloud computing. This paper analyses the basic problem of cloud computing data security. .  Cloud Computing provides the way to share distributed resources and services that belong to different organizations or sites. Since Cloud Computing share distributed resources via network in the open environment thus it makes security problems  In this method some important security services including authentication, encryption and decryption and compression are provided in Cloud Computing system
Existing system:  User an entity, who has data to be stored in the cloud and relies on the cloud for data storage and computation, can be either enterprise or individual customers.  Data redundancy can be employed with a technique of erasure correcting code to further tolerate faults or server crash as user’s data grow in size and importance.  The existing system user to audit the cloud storage for very high communication and cost.
Proposed system:  The proposed design allows users to audit the cloud storage with very lightweight communication and computation cost.  The proposed design further supports secure and efficient dynamic operations on outsourced data, including managed control such as,  Block modification.  Deletion.  Append.  security
What is cloud computing:  “Cloud computing is an emerging computing technology that uses the internet and central remote servers to maintain data and applications.  Cloud computing is internet based technology that enables small business and organizations to use highly sophisticated computer applications. Definition:  Cloud computing refers to applications and services offered over the Internet. These services are offered from data centers all over the world, which collectively are referred to as the "cloud."
DAIGRAM:
Service models:
Platform as a service approach (PaaS): •The offering also includes a software execution environment. As for example, there could be a PaaS application server that enables the lone developers to deploy web-based applications •Example database,webservers, development tools Characteristics of PaaS: No need of downloading and installing operating System It saves Customers money It mainly deals for delivering operating systems over Internet Software can be developed, tested and deployed
Infrastructure as a service (IaaS): •Refers to the sharing of hardware resources for executing services, typically using Virtualization technology. Infrastructure as a Service is an equipment which is used to support hardware, software, storage, servers and mainly used for delivering software application environments example of IaaS are Amazon, Microsoft, VMWare and Red Hat. Characteristics of IaaS: Policy based Services Utility computing Services Dynamic Scaling Internet Connectivity
Software as a Service (SaaS) : Software as a Service is nothing but a software distribution model which are made available to customers over a network such as server or Internet The example of SaaS are Google Apps, Cisco‟s WebEx, Salesforce CRM Characteristics of SaaS: Its easy to work under administration It can be globally access The software can be updated automatically All license holder user will have same version of software
Architecture: Cloud architecture: The systems architecture of the software systems involved in the delivery of cloud computing, typically involves multiple cloud components communicating with each other over a loose coupling mechanism such as a messaging queue. Elastic provision implies intelligence in the use of tight or loose coupling as applied to mechanisms
DATA SECURITY IN CLOUD COMPUTING: Data outsourcing: users are relieved from the burden of data storage and maintenance When users put their data (of large size) on the cloud, the data integrity protection is challenging Enabling public audit for cloud data storage security is important user user data user External Audit party Cloud network
 cloud computing is built on top of virtualization, if there are security issues with virtualization, then there will also security issues with cloud computing.  Data segregation. Data in the cloud is typically in a shared environment alongside data from other customers. Encryption is effective but isn't a cure- all. The cloud provider should provide evidence that encryption schemes were designed and tested by experienced specialists.
 A data center full of servers supporting cloud computing is internally and externally indistinguishable from a data center full of "regular" servers. In each case, it will be important for the data center to be physically secure against unauthorized access  Computer and network security is fundamentally about three goals/objectives: -- confidentiality (C) -- integrity (I), and -- availability (A).
 Confidentiality refers to keeping data private. Privacy is of the amount importance as data leaves the borders of the organization. Not only must internal secrets and sensitive personal data be safeguarded, but metadata and transactional data can also leak important details about firms or individuals. Confidentiality is supported by, among other things, technical tools such as encryption and access control, as well as legal protections  Integrity is a degree confidence that the data in the cloud is what is supposed to be there, and is protected against accidental or intentional alteration without authorization. It also extends to the hurdles of synchronizing multiple databases. Integrity is supported by well audited code, well-designed distributed systems, and robust access control mechanisms.
 Availability means being able to use the system as anticipated. Cloud technologies can increase availability through widespread internet-enabled access, but the client is dependent on the timely and robust provision of resources. Availability is supported by capacity building and good architecture by the provider, as well as well-defined contracts and terms of agreement Reduces the exposure of sensitive data Simplifies security auditing & testing Enables automated security management Improves redundancy & disaster recovery .
Latest technologies used in data security in cloud computing: •Latest Training Program on Cloud Computing and Windows Azure In order to address the aforementioned challenges, Fujitsu Laboratories developed new cloud information gateway technology that can flexibly control data, including data content, transmitted from the inside of a company to a cloud and between multiple clouds. •In addition to the option of blocking confidential data, the data gateway also includes the following three features.
Data Masking Technology Secure Logic Migration and Execution Technology Data Traceability Technology Data Masking Technology : • Using masking technology, when data passes through the information gateway, confidential parts of the data can be deleted or changed before the data are transmitted to an external cloud.
Secure Logic Migration and Execution Technology: • For confidential data that cannot be released outside of the company, even formed by concealing certain aspects of the data, by simply defining the security level of data, the information gateway can transfer the cloud-based application to the in-house sandbox for execution. • The sandbox will block access to data or networks that lack pre-authorized access, so even applications transferred from the cloud can be safely executed.
Data Traceability Technology : • The information gateway tracks all information flowing into and out of the cloud, so these flows and their content can be checked. • Data traceability technology uses the logs obtained on data traffic as well as the characteristics of the related text to make visible the data used in the cloud.
Latest techniques used data security in cloud computing: Authentication and Identity: • Maintaining confidentiality, integrity, and availability for data security is a function of the correct application and configuration of familiar network, system, and application security mechanisms at various levels in the cloud infrastructure. • Authentication of users takes several forms, but all are based on a combination of authentication factors: something an individual knows (such as a password), something they possess (such as a security token), or some measurable quality that is intrinsic to them (such as a fingerprint).
Application of Encryption for Data in Motion: •Encryption is used to assure that if there was a breach of communication integrity between the two parties that the data remains confidential. •Authentication is used to assure that the parties communicating data are who they say they are. • Common means of authentication themselves employ cryptography in various ways.
Data Masking: •Data masking is a technique that is intended to remove all identifiable and distinguishing characteristics from data in order to render it anonymous and yet still be operable. •This technique is aimed at reducing the risk of exposing sensitive information. •Data masking has also been known by such names as data obfuscation, de-identification, or depersonalization.
Advantages: •Reduces the exposure of sensitive data •Simplifies security auditing & testing •Enables automated security management •Improves redundancy & disaster recovery •Access to highly qualified IT security personnel • Prevent or curtail viruses and malware infection • Secure sensitive or confidential information in motion • Achieve compliance with leading self-regulatory frameworks • Conduct training and awareness for all system users • In contrast, cloud providers are least confident about the following security requirements: • Identify and authenticate users before granting access • Secure vendor relationships before sharing information assets • Prevent or curtail external attacks • Encrypt sensitive or confidential information assets whenever feasible • Determine the root cause of cyber attacks
Platforms: Amazon's Elastic Compute Cloud, or EC2, is probably the most generalized and best-known of the cloud computing service offerings. IBM Computing on Demand or Blue Cloud is a highly enterprise-focused cloud computing offering that, because it is related to and built with the same technology sold to enterprises, can cross over between public and private cloud applications. Microsoft's Azure cloud computing, based on Microsoft Vista and .NET technology, includes both cloud computing and cloud-hosted extension
REFERENCES •Rajkumar Buyya Market-Oriented Cloud Computing:Vision,Hype,and Reality for Delivering IT Services as Computing Utilities 2008 •Jean-Daniel Cryans,Criteria to Compare Cloud Computing with Current Database Technology 2008
Data security in cloud computing
Data security in cloud computing
1 de 29

Data security in cloud computing

Baixar para ler offline
Educação
Prince Chandu
Prince Chandu

Recomendados

Cloud computing ppt por
Cloud computing pptCloud computing ppt
Cloud computing pptJagriti Rai
3.9K visualizações23 slides
Cloud security ppt por
Cloud security pptCloud security ppt
Cloud security pptVenkatesh Chary
98.4K visualizações25 slides
security Issues of cloud computing por
security Issues of cloud computingsecurity Issues of cloud computing
security Issues of cloud computingprachupanchal
1.4K visualizações16 slides
Issues in cloud computing por
Issues in cloud computingIssues in cloud computing
Issues in cloud computingronak patel
38.4K visualizações68 slides
Cloud Computing Security Challenges por
Cloud Computing Security ChallengesCloud Computing Security Challenges
Cloud Computing Security ChallengesYateesh Yadav
11.9K visualizações12 slides
Cloud security and security architecture por
Cloud security and security architectureCloud security and security architecture
Cloud security and security architectureVladimir Jirasek
27.8K visualizações12 slides

Mais conteúdo relacionado

Mais procurados

Cloud Computing Architecture por
Cloud Computing ArchitectureCloud Computing Architecture
Cloud Computing ArchitectureAnimesh Chaturvedi
28.4K visualizações69 slides
Security Issues of Cloud Computing por
Security Issues of Cloud ComputingSecurity Issues of Cloud Computing
Security Issues of Cloud ComputingFalgun Rathod
9K visualizações25 slides
Cloud security Presentation por
Cloud security PresentationCloud security Presentation
Cloud security PresentationAjay p
5K visualizações46 slides
Cloud computing por
Cloud computingCloud computing
Cloud computingAditya Dwivedi
9.3K visualizações26 slides
Cloud Security por
Cloud SecurityCloud Security
Cloud SecurityAWS User Group Bengaluru
12.4K visualizações133 slides
Cloud computing and service models por
Cloud computing and service modelsCloud computing and service models
Cloud computing and service modelsPrateek Soni
42.3K visualizações29 slides

Mais procurados(20)

Cloud Computing Architecture por Animesh Chaturvedi
Cloud Computing ArchitectureCloud Computing Architecture
Cloud Computing Architecture
Animesh Chaturvedi28.4K visualizações
Security Issues of Cloud Computing por Falgun Rathod
Security Issues of Cloud ComputingSecurity Issues of Cloud Computing
Security Issues of Cloud Computing
Falgun Rathod9K visualizações
Cloud security Presentation por Ajay p
Cloud security PresentationCloud security Presentation
Cloud security Presentation
Ajay p5K visualizações
Cloud computing por Aditya Dwivedi
Cloud computingCloud computing
Cloud computing
Aditya Dwivedi9.3K visualizações
Cloud Security por AWS User Group Bengaluru
Cloud SecurityCloud Security
Cloud Security
AWS User Group Bengaluru12.4K visualizações
Cloud computing and service models por Prateek Soni
Cloud computing and service modelsCloud computing and service models
Cloud computing and service models
Prateek Soni42.3K visualizações
Virtualization in cloud computing por Mohammad Ilyas Malik
Virtualization in cloud computingVirtualization in cloud computing
Virtualization in cloud computing
Mohammad Ilyas Malik22.3K visualizações
Introduction to Cloud Security por Legal Services National Technology Assistance Project (LSNTAP)
Introduction to Cloud SecurityIntroduction to Cloud Security
Introduction to Cloud Security
Legal Services National Technology Assistance Project (LSNTAP)2.7K visualizações
Deployment Models of Cloud Computing.pptx por Jaya Silwal
Deployment Models of Cloud Computing.pptxDeployment Models of Cloud Computing.pptx
Deployment Models of Cloud Computing.pptx
Jaya Silwal1.2K visualizações
Cloud security por Tushar Kayande
Cloud securityCloud security
Cloud security
Tushar Kayande884 visualizações
Ecg analysis in the cloud por gaurav jain
Ecg analysis in the cloudEcg analysis in the cloud
Ecg analysis in the cloud
gaurav jain18.4K visualizações
Cloud computing and data security por Mohammed Fazuluddin
Cloud computing and data securityCloud computing and data security
Cloud computing and data security
Mohammed Fazuluddin17.7K visualizações
Cloud security por Niharika Varshney
Cloud securityCloud security
Cloud security
Niharika Varshney2.7K visualizações
Cloud Security And Privacy por tmather
Cloud Security And PrivacyCloud Security And Privacy
Cloud Security And Privacy
tmather4.8K visualizações
Cloud Service Models por Abhishek Pachisia
Cloud Service ModelsCloud Service Models
Cloud Service Models
Abhishek Pachisia2.6K visualizações
Cloud Security: A New Perspective por Wen-Pai Lu
Cloud Security: A New PerspectiveCloud Security: A New Perspective
Cloud Security: A New Perspective
Wen-Pai Lu1.5K visualizações
Intrusion detection system ppt por Sheetal Verma
Intrusion detection system pptIntrusion detection system ppt
Intrusion detection system ppt
Sheetal Verma84.8K visualizações
Cloud Resource Management por NASIRSAYYED4
Cloud Resource ManagementCloud Resource Management
Cloud Resource Management
NASIRSAYYED43.6K visualizações
Public cloud por Dr.Neeraj Kumar Pandey
Public cloudPublic cloud
Public cloud
Dr.Neeraj Kumar Pandey2.2K visualizações
Identity and Access Management (IAM) por Identacor
Identity and Access Management (IAM)Identity and Access Management (IAM)
Identity and Access Management (IAM)
Identacor12.5K visualizações

Destaque

Database fragmentation por
Database fragmentationDatabase fragmentation
Database fragmentationPunjab College Of Technical Education
32.9K visualizações25 slides
Ryan_Holt_MS_Thesis_Project_Presentation por
Ryan_Holt_MS_Thesis_Project_PresentationRyan_Holt_MS_Thesis_Project_Presentation
Ryan_Holt_MS_Thesis_Project_PresentationRyan Holt
648 visualizações41 slides
Crypto cs36 39 por
Crypto cs36 39Crypto cs36 39
Crypto cs36 39sravanbabu
675 visualizações30 slides
Information Infrastructure por
Information InfrastructureInformation Infrastructure
Information InfrastructureBhagirathi Sahoo
7.2K visualizações13 slides
James hall ch 1 por
James hall ch 1James hall ch 1
James hall ch 1David Julian
11.7K visualizações41 slides
Fragmentation and types of fragmentation in Distributed Database por
Fragmentation and types of fragmentation in Distributed DatabaseFragmentation and types of fragmentation in Distributed Database
Fragmentation and types of fragmentation in Distributed DatabaseAbhilasha Lahigude
71.2K visualizações10 slides

Destaque(13)

Database fragmentation por Punjab College Of Technical Education
Database fragmentationDatabase fragmentation
Database fragmentation
Punjab College Of Technical Education32.9K visualizações
Ryan_Holt_MS_Thesis_Project_Presentation por Ryan Holt
Ryan_Holt_MS_Thesis_Project_PresentationRyan_Holt_MS_Thesis_Project_Presentation
Ryan_Holt_MS_Thesis_Project_Presentation
Ryan Holt648 visualizações
Crypto cs36 39 por sravanbabu
Crypto cs36 39Crypto cs36 39
Crypto cs36 39
sravanbabu675 visualizações
Information Infrastructure por Bhagirathi Sahoo
Information InfrastructureInformation Infrastructure
Information Infrastructure
Bhagirathi Sahoo7.2K visualizações
James hall ch 1 por David Julian
James hall ch 1James hall ch 1
James hall ch 1
David Julian11.7K visualizações
Fragmentation and types of fragmentation in Distributed Database por Abhilasha Lahigude
Fragmentation and types of fragmentation in Distributed DatabaseFragmentation and types of fragmentation in Distributed Database
Fragmentation and types of fragmentation in Distributed Database
Abhilasha Lahigude71.2K visualizações
Cloud computing Basics por Sagar Sane
Cloud computing BasicsCloud computing Basics
Cloud computing Basics
Sagar Sane90.1K visualizações
Student information system por Saqib Nadeem
Student information systemStudent information system
Student information system
Saqib Nadeem31.4K visualizações
It infrastructure por Rashed Kamrul
It infrastructureIt infrastructure
It infrastructure
Rashed Kamrul26.1K visualizações
Introduction of Cloud computing por Rkrishna Mishra
Introduction of Cloud computingIntroduction of Cloud computing
Introduction of Cloud computing
Rkrishna Mishra387.5K visualizações
Cloud computing simple ppt por Agarwaljay
Cloud computing simple pptCloud computing simple ppt
Cloud computing simple ppt
Agarwaljay698.1K visualizações
cloud computing ppt por himanshuawasthi2109
cloud computing pptcloud computing ppt
cloud computing ppt
himanshuawasthi2109500.9K visualizações
Slideshare ppt por Mandy Suzanne
Slideshare pptSlideshare ppt
Slideshare ppt
Mandy Suzanne2.4M visualizações

Similar a Data security in cloud computing

Security in cloud computing por
Security in cloud computingSecurity in cloud computing
Security in cloud computingEr. Saba karim
132 visualizações17 slides
CLOUD COMPUTING AND STORAGE por
CLOUD COMPUTING AND STORAGECLOUD COMPUTING AND STORAGE
CLOUD COMPUTING AND STORAGEShalini Toluchuri
7.8K visualizações23 slides
Cloud Computing Using Encryption and Intrusion Detection por
Cloud Computing Using Encryption and Intrusion DetectionCloud Computing Using Encryption and Intrusion Detection
Cloud Computing Using Encryption and Intrusion Detectionijsrd.com
241 visualizações2 slides
Cloud Security por
Cloud SecurityCloud Security
Cloud SecurityPyingkodi Maran
29 visualizações29 slides
CLOUD COMPUTING.pdf por
CLOUD COMPUTING.pdfCLOUD COMPUTING.pdf
CLOUD COMPUTING.pdfProtelion
25 visualizações4 slides
CLOUD COMPUTING.pdf por
CLOUD COMPUTING.pdfCLOUD COMPUTING.pdf
CLOUD COMPUTING.pdfProtelion
3 visualizações4 slides

Similar a Data security in cloud computing(20)

Security in cloud computing por Er. Saba karim
Security in cloud computingSecurity in cloud computing
Security in cloud computing
Er. Saba karim132 visualizações
CLOUD COMPUTING AND STORAGE por Shalini Toluchuri
CLOUD COMPUTING AND STORAGECLOUD COMPUTING AND STORAGE
CLOUD COMPUTING AND STORAGE
Shalini Toluchuri7.8K visualizações
Cloud Computing Using Encryption and Intrusion Detection por ijsrd.com
Cloud Computing Using Encryption and Intrusion DetectionCloud Computing Using Encryption and Intrusion Detection
Cloud Computing Using Encryption and Intrusion Detection
ijsrd.com241 visualizações
Cloud Security por Pyingkodi Maran
Cloud SecurityCloud Security
Cloud Security
Pyingkodi Maran29 visualizações
CLOUD COMPUTING.pdf por Protelion
CLOUD COMPUTING.pdfCLOUD COMPUTING.pdf
CLOUD COMPUTING.pdf
Protelion25 visualizações
CLOUD COMPUTING.pdf por Protelion
CLOUD COMPUTING.pdfCLOUD COMPUTING.pdf
CLOUD COMPUTING.pdf
Protelion3 visualizações
Enhanced security framework to ensure data security por eSAT Publishing House
Enhanced security framework to ensure data securityEnhanced security framework to ensure data security
Enhanced security framework to ensure data security
eSAT Publishing House367 visualizações
Enhanced security framework to ensure data security in cloud using security b... por eSAT Journals
Enhanced security framework to ensure data security in cloud using security b...Enhanced security framework to ensure data security in cloud using security b...
Enhanced security framework to ensure data security in cloud using security b...
eSAT Journals137 visualizações
Cloud Computing por vijay_m_chaudhary
Cloud ComputingCloud Computing
Cloud Computing
vijay_m_chaudhary1.2K visualizações
Module 5-cloud computing-SECURITY IN THE CLOUD por Sweta Kumari Barnwal
Module 5-cloud computing-SECURITY IN THE CLOUDModule 5-cloud computing-SECURITY IN THE CLOUD
Module 5-cloud computing-SECURITY IN THE CLOUD
Sweta Kumari Barnwal532 visualizações
Security Issues in Cloud Computing by rahul abhishek por Er. rahul abhishek
Security Issues in Cloud Computing by rahul abhishekSecurity Issues in Cloud Computing by rahul abhishek
Security Issues in Cloud Computing by rahul abhishek
Er. rahul abhishek404 visualizações
Fog computing document por sravya raju
Fog computing documentFog computing document
Fog computing document
sravya raju3.4K visualizações
APPLYING GEO-ENCRYPTION AND ATTRIBUTE BASED ENCRYPTION TO IMPLEMENT SECURE AC... por IJCNCJournal
APPLYING GEO-ENCRYPTION AND ATTRIBUTE BASED ENCRYPTION TO IMPLEMENT SECURE AC...APPLYING GEO-ENCRYPTION AND ATTRIBUTE BASED ENCRYPTION TO IMPLEMENT SECURE AC...
APPLYING GEO-ENCRYPTION AND ATTRIBUTE BASED ENCRYPTION TO IMPLEMENT SECURE AC...
IJCNCJournal60 visualizações
Insuring Security for Outsourced Data Stored in Cloud Environment por Editor IJCATR
Insuring Security for Outsourced Data Stored in Cloud EnvironmentInsuring Security for Outsourced Data Stored in Cloud Environment
Insuring Security for Outsourced Data Stored in Cloud Environment
Editor IJCATR364 visualizações
Fog doc por priyanka reddy
Fog doc Fog doc
Fog doc
priyanka reddy547 visualizações
fog computing provide security to the data in cloud por priyanka reddy
fog computing provide security to the data in cloudfog computing provide security to the data in cloud
fog computing provide security to the data in cloud
priyanka reddy10.7K visualizações
Cloud Security por Pyingkodi Maran
Cloud SecurityCloud Security
Cloud Security
Pyingkodi Maran29 visualizações
Security threats in cloud computing por Puneet Arora
Security threats in cloud computingSecurity threats in cloud computing
Security threats in cloud computing
Puneet Arora185 visualizações
Paper1 por Vikas Khairnar
Paper1Paper1
Paper1
Vikas Khairnar119 visualizações
Cloud computing por Nibi Maouriyan
Cloud computingCloud computing
Cloud computing
Nibi Maouriyan372 visualizações

Último

Berry country.pdf por
Berry country.pdfBerry country.pdf
Berry country.pdfMariaKenney3
75 visualizações12 slides
CUNY IT Picciano.pptx por
CUNY IT Picciano.pptxCUNY IT Picciano.pptx
CUNY IT Picciano.pptxapicciano
64 visualizações17 slides
Java Simplified: Understanding Programming Basics por
Java Simplified: Understanding Programming BasicsJava Simplified: Understanding Programming Basics
Java Simplified: Understanding Programming BasicsAkshaj Vadakkath Joshy
653 visualizações155 slides
Creative Restart 2023: Leonard Savage - The Permanent Brief: Unearthing unobv... por
Creative Restart 2023: Leonard Savage - The Permanent Brief: Unearthing unobv...Creative Restart 2023: Leonard Savage - The Permanent Brief: Unearthing unobv...
Creative Restart 2023: Leonard Savage - The Permanent Brief: Unearthing unobv...Taste
55 visualizações21 slides
Education of marginalized and socially disadvantages segments.pptx por
Education of marginalized and socially disadvantages segments.pptxEducation of marginalized and socially disadvantages segments.pptx
Education of marginalized and socially disadvantages segments.pptxGarimaBhati5
43 visualizações36 slides
INT-244 Topic 6b Confucianism por
INT-244 Topic 6b ConfucianismINT-244 Topic 6b Confucianism
INT-244 Topic 6b ConfucianismS Meyer
45 visualizações77 slides

Último(20)

Berry country.pdf por MariaKenney3
Berry country.pdfBerry country.pdf
Berry country.pdf
MariaKenney375 visualizações
CUNY IT Picciano.pptx por apicciano
CUNY IT Picciano.pptxCUNY IT Picciano.pptx
CUNY IT Picciano.pptx
apicciano64 visualizações
Java Simplified: Understanding Programming Basics por Akshaj Vadakkath Joshy
Java Simplified: Understanding Programming BasicsJava Simplified: Understanding Programming Basics
Java Simplified: Understanding Programming Basics
Akshaj Vadakkath Joshy653 visualizações
Creative Restart 2023: Leonard Savage - The Permanent Brief: Unearthing unobv... por Taste
Creative Restart 2023: Leonard Savage - The Permanent Brief: Unearthing unobv...Creative Restart 2023: Leonard Savage - The Permanent Brief: Unearthing unobv...
Creative Restart 2023: Leonard Savage - The Permanent Brief: Unearthing unobv...
Taste55 visualizações
Education of marginalized and socially disadvantages segments.pptx por GarimaBhati5
Education of marginalized and socially disadvantages segments.pptxEducation of marginalized and socially disadvantages segments.pptx
Education of marginalized and socially disadvantages segments.pptx
GarimaBhati543 visualizações
INT-244 Topic 6b Confucianism por S Meyer
INT-244 Topic 6b ConfucianismINT-244 Topic 6b Confucianism
INT-244 Topic 6b Confucianism
S Meyer45 visualizações
Mineral nutrition and Fertilizer use of Cashew por Aruna Srikantha Jayawardana
Mineral nutrition and Fertilizer use of Cashew Mineral nutrition and Fertilizer use of Cashew
Mineral nutrition and Fertilizer use of Cashew
Aruna Srikantha Jayawardana56 visualizações
MercerJesse2.1Doc.pdf por jessemercerail
MercerJesse2.1Doc.pdfMercerJesse2.1Doc.pdf
MercerJesse2.1Doc.pdf
jessemercerail314 visualizações
JQUERY.pdf por ArthyR3
JQUERY.pdfJQUERY.pdf
JQUERY.pdf
ArthyR3105 visualizações
BUSINESS ETHICS MODULE 1 UNIT I_A.pdf por Dr Vijay Vishwakarma
BUSINESS ETHICS MODULE 1 UNIT I_A.pdfBUSINESS ETHICS MODULE 1 UNIT I_A.pdf
BUSINESS ETHICS MODULE 1 UNIT I_A.pdf
Dr Vijay Vishwakarma40 visualizações
Thanksgiving!.pdf por EnglishCEIPdeSigeiro
Thanksgiving!.pdfThanksgiving!.pdf
Thanksgiving!.pdf
EnglishCEIPdeSigeiro500 visualizações
PRELIMS ANSWER.pptx por souravkrpodder
PRELIMS ANSWER.pptxPRELIMS ANSWER.pptx
PRELIMS ANSWER.pptx
souravkrpodder50 visualizações
Jibachha publishing Textbook.docx por DrJibachhaSahVetphys
Jibachha publishing Textbook.docxJibachha publishing Textbook.docx
Jibachha publishing Textbook.docx
DrJibachhaSahVetphys54 visualizações
Create a Structure in VBNet.pptx por Breach_P
Create a Structure in VBNet.pptxCreate a Structure in VBNet.pptx
Create a Structure in VBNet.pptx
Breach_P86 visualizações
DISTILLATION.pptx por Anupkumar Sharma
DISTILLATION.pptxDISTILLATION.pptx
DISTILLATION.pptx
Anupkumar Sharma65 visualizações
UNIDAD 3 6º C.MEDIO.pptx por MarcosRodriguezUcedo
UNIDAD 3 6º C.MEDIO.pptxUNIDAD 3 6º C.MEDIO.pptx
UNIDAD 3 6º C.MEDIO.pptx
MarcosRodriguezUcedo146 visualizações
Career Building in AI - Technologies, Trends and Opportunities por WebStackAcademy
Career Building in AI - Technologies, Trends and OpportunitiesCareer Building in AI - Technologies, Trends and Opportunities
Career Building in AI - Technologies, Trends and Opportunities
WebStackAcademy45 visualizações
unidad 3.pdf por MarcosRodriguezUcedo
unidad 3.pdfunidad 3.pdf
unidad 3.pdf
MarcosRodriguezUcedo134 visualizações
NodeJS and ExpressJS.pdf por ArthyR3
NodeJS and ExpressJS.pdfNodeJS and ExpressJS.pdf
NodeJS and ExpressJS.pdf
ArthyR348 visualizações
Parts of Speech (1).pptx por mhkpreet001
Parts of Speech (1).pptxParts of Speech (1).pptx
Parts of Speech (1).pptx
mhkpreet00146 visualizações

Data security in cloud computing

  • 1. Seminar On Data security in cloud computing Presented by: M. Jagadeesh Chandra
  • 2. Contents  Abstract  Introduction  Architecture  Services models  Data security  Latest technologies  Latest techniques  References  Thank Q!
  • 3. Abstract  With the development of cloud computing, Data security becomes more and more important in cloud computing. This paper analyses the basic problem of cloud computing data security. .  Cloud Computing provides the way to share distributed resources and services that belong to different organizations or sites. Since Cloud Computing share distributed resources via network in the open environment thus it makes security problems  In this method some important security services including authentication, encryption and decryption and compression are provided in Cloud Computing system
  • 4. Existing system:  User an entity, who has data to be stored in the cloud and relies on the cloud for data storage and computation, can be either enterprise or individual customers.  Data redundancy can be employed with a technique of erasure correcting code to further tolerate faults or server crash as user’s data grow in size and importance.  The existing system user to audit the cloud storage for very high communication and cost.
  • 5. Proposed system:  The proposed design allows users to audit the cloud storage with very lightweight communication and computation cost.  The proposed design further supports secure and efficient dynamic operations on outsourced data, including managed control such as,  Block modification.  Deletion.  Append.  security
  • 6. What is cloud computing:  “Cloud computing is an emerging computing technology that uses the internet and central remote servers to maintain data and applications.  Cloud computing is internet based technology that enables small business and organizations to use highly sophisticated computer applications. Definition:  Cloud computing refers to applications and services offered over the Internet. These services are offered from data centers all over the world, which collectively are referred to as the "cloud."
  • 9. Platform as a service approach (PaaS): •The offering also includes a software execution environment. As for example, there could be a PaaS application server that enables the lone developers to deploy web-based applications •Example database,webservers, development tools Characteristics of PaaS: No need of downloading and installing operating System It saves Customers money It mainly deals for delivering operating systems over Internet Software can be developed, tested and deployed
  • 10. Infrastructure as a service (IaaS): •Refers to the sharing of hardware resources for executing services, typically using Virtualization technology. Infrastructure as a Service is an equipment which is used to support hardware, software, storage, servers and mainly used for delivering software application environments example of IaaS are Amazon, Microsoft, VMWare and Red Hat. Characteristics of IaaS: Policy based Services Utility computing Services Dynamic Scaling Internet Connectivity
  • 11. Software as a Service (SaaS) : Software as a Service is nothing but a software distribution model which are made available to customers over a network such as server or Internet The example of SaaS are Google Apps, Cisco‟s WebEx, Salesforce CRM Characteristics of SaaS: Its easy to work under administration It can be globally access The software can be updated automatically All license holder user will have same version of software
  • 12. Architecture: Cloud architecture: The systems architecture of the software systems involved in the delivery of cloud computing, typically involves multiple cloud components communicating with each other over a loose coupling mechanism such as a messaging queue. Elastic provision implies intelligence in the use of tight or loose coupling as applied to mechanisms
  • 13. DATA SECURITY IN CLOUD COMPUTING: Data outsourcing: users are relieved from the burden of data storage and maintenance When users put their data (of large size) on the cloud, the data integrity protection is challenging Enabling public audit for cloud data storage security is important user user data user External Audit party Cloud network
  • 14.  cloud computing is built on top of virtualization, if there are security issues with virtualization, then there will also security issues with cloud computing.  Data segregation. Data in the cloud is typically in a shared environment alongside data from other customers. Encryption is effective but isn't a cure- all. The cloud provider should provide evidence that encryption schemes were designed and tested by experienced specialists.
  • 15. A data center full of servers supporting cloud computing is internally and externally indistinguishable from a data center full of "regular" servers. In each case, it will be important for the data center to be physically secure against unauthorized access  Computer and network security is fundamentally about three goals/objectives: -- confidentiality (C) -- integrity (I), and -- availability (A).
  • 16. Confidentiality refers to keeping data private. Privacy is of the amount importance as data leaves the borders of the organization. Not only must internal secrets and sensitive personal data be safeguarded, but metadata and transactional data can also leak important details about firms or individuals. Confidentiality is supported by, among other things, technical tools such as encryption and access control, as well as legal protections  Integrity is a degree confidence that the data in the cloud is what is supposed to be there, and is protected against accidental or intentional alteration without authorization. It also extends to the hurdles of synchronizing multiple databases. Integrity is supported by well audited code, well-designed distributed systems, and robust access control mechanisms.
  • 17. Availability means being able to use the system as anticipated. Cloud technologies can increase availability through widespread internet-enabled access, but the client is dependent on the timely and robust provision of resources. Availability is supported by capacity building and good architecture by the provider, as well as well-defined contracts and terms of agreement Reduces the exposure of sensitive data Simplifies security auditing & testing Enables automated security management Improves redundancy & disaster recovery .
  • 18. Latest technologies used in data security in cloud computing: •Latest Training Program on Cloud Computing and Windows Azure In order to address the aforementioned challenges, Fujitsu Laboratories developed new cloud information gateway technology that can flexibly control data, including data content, transmitted from the inside of a company to a cloud and between multiple clouds. •In addition to the option of blocking confidential data, the data gateway also includes the following three features.
  • 19. Data Masking Technology Secure Logic Migration and Execution Technology Data Traceability Technology Data Masking Technology : • Using masking technology, when data passes through the information gateway, confidential parts of the data can be deleted or changed before the data are transmitted to an external cloud.
  • 20. Secure Logic Migration and Execution Technology: • For confidential data that cannot be released outside of the company, even formed by concealing certain aspects of the data, by simply defining the security level of data, the information gateway can transfer the cloud-based application to the in-house sandbox for execution. • The sandbox will block access to data or networks that lack pre-authorized access, so even applications transferred from the cloud can be safely executed.
  • 21. Data Traceability Technology : • The information gateway tracks all information flowing into and out of the cloud, so these flows and their content can be checked. • Data traceability technology uses the logs obtained on data traffic as well as the characteristics of the related text to make visible the data used in the cloud.
  • 22. Latest techniques used data security in cloud computing: Authentication and Identity: • Maintaining confidentiality, integrity, and availability for data security is a function of the correct application and configuration of familiar network, system, and application security mechanisms at various levels in the cloud infrastructure. • Authentication of users takes several forms, but all are based on a combination of authentication factors: something an individual knows (such as a password), something they possess (such as a security token), or some measurable quality that is intrinsic to them (such as a fingerprint).
  • 23. Application of Encryption for Data in Motion: •Encryption is used to assure that if there was a breach of communication integrity between the two parties that the data remains confidential. •Authentication is used to assure that the parties communicating data are who they say they are. • Common means of authentication themselves employ cryptography in various ways.
  • 24. Data Masking: •Data masking is a technique that is intended to remove all identifiable and distinguishing characteristics from data in order to render it anonymous and yet still be operable. •This technique is aimed at reducing the risk of exposing sensitive information. •Data masking has also been known by such names as data obfuscation, de-identification, or depersonalization.
  • 25. Advantages: •Reduces the exposure of sensitive data •Simplifies security auditing & testing •Enables automated security management •Improves redundancy & disaster recovery •Access to highly qualified IT security personnel • Prevent or curtail viruses and malware infection • Secure sensitive or confidential information in motion • Achieve compliance with leading self-regulatory frameworks • Conduct training and awareness for all system users • In contrast, cloud providers are least confident about the following security requirements: • Identify and authenticate users before granting access • Secure vendor relationships before sharing information assets • Prevent or curtail external attacks • Encrypt sensitive or confidential information assets whenever feasible • Determine the root cause of cyber attacks
  • 26. Platforms: Amazon's Elastic Compute Cloud, or EC2, is probably the most generalized and best-known of the cloud computing service offerings. IBM Computing on Demand or Blue Cloud is a highly enterprise-focused cloud computing offering that, because it is related to and built with the same technology sold to enterprises, can cross over between public and private cloud applications. Microsoft's Azure cloud computing, based on Microsoft Vista and .NET technology, includes both cloud computing and cloud-hosted extension
  • 27. REFERENCES •Rajkumar Buyya Market-Oriented Cloud Computing:Vision,Hype,and Reality for Delivering IT Services as Computing Utilities 2008 •Jean-Daniel Cryans,Criteria to Compare Cloud Computing with Current Database Technology 2008