Cloud Complete

Uploaded by

Timothy Kabata

0% found this document useful (0 votes)

12 views14 pages

Copyright

Available Formats

PPT, PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

Copyright:

Available Formats

Download as PPT, PDF, TXT or read online from Scribd

Flag for inappropriate content

0% found this document useful (0 votes)

12 views14 pages

Cloud Complete

Uploaded by

Timothy Kabata

Copyright:

Available Formats

Download as PPT, PDF, TXT or read online from Scribd

Flag for inappropriate content

Jump to Page

You are on page 1of 14

Search inside document

Cloud Security and Privacy

Talk Objectives

• A high-level discussion of the

fundamental challenges and
issues/characteristics of cloud
computing
• Identify a few security and privacy
issues within this framework
• Propose some approaches to addressing
these issues
– Preliminary ideas to think about
Outline
• Part I: Introduction
• Part II: Security and Privacy Issues in Cloud Computing
• Part III: Possible Solutions

3
Part I. Introduction
• Cloud Computing Background
• Cloud Models
• Why do you still hesitate to use cloud computing?
• Causes of Problems Associated with Cloud Computing
• Taxonomy of Fear
• Threat Model

4
Cloud Computing Background
• Features
– Use of internet-based services to support business process
– Rent IT-services on a utility-like basis
• Attributes
– Rapid deployment
– Low startup costs/ capital investments
– Costs based on usage or subscription
– Multi-tenant sharing of services/ resources
• Essential characteristics
– On demand self-service
– Ubiquitous network access
– Location independent resource pooling
– Rapid elasticity
– Measured service
• “Cloud computing is a compilation of existing techniques and technologies,
packaged within a new infrastructure paradigm that offers improved
scalability, elasticity, business agility, faster startup time, reduced
management costs, and just-in-time availability of resources”

From [1] NIST

A Massive Concentration of Resources

• Also a massive concentration of risk

– expected loss from a single breach can be significantly
larger
– concentration of “users” represents a concentration of
threats
• “Ultimately, you can outsource responsibility but you can’t
outsource accountability.”

From [2] John McDermott, ACSAC 09

Cloud Computing: who should use it?

• Cloud computing definitely makes sense if your own security

is weak, missing features, or below average.
• Ultimately, if
– the cloud provider’s security people are “better” than
yours (and leveraged at least as efficiently),
– the web-services interfaces don’t introduce too many
new vulnerabilities, and
– the cloud provider aims at least as high as you do, at
security goals,
then cloud computing has better security.

From [2] John McDermott, ACSAC 09

Cloud Models
• Delivery Models
– SaaS
– PaaS
– IaaS
• Deployment Models
– Private cloud
– Community cloud
– Public cloud
– Hybrid cloud
• We propose one more Model: Management
Models (trust and tenancy issues)
– Self-managed
– 3rd party managed (e.g. public clouds and VPC)

From [1] NIST

Delivery Models

While cloud-based software services are maturing,

Cloud platform and infrastructure offering are still in their early stages !

9
From [6] Cloud Security and Privacy by Mather and Kumaraswamy
Impact of cloud computing on the
governance structure of IT
organizations

10
From [6] Cloud Security and Privacy by Mather and Kumaraswamy
If cloud computing is so great,
why isn’t everyone doing it?
• The cloud acts as a big black box, nothing inside
the cloud is visible to the clients
• Clients have no idea or control over what
happens inside a cloud
• Even if the cloud provider is honest, it can have
malicious system admins who can tamper with
the VMs and violate confidentiality and
integrity
• Clouds are still subject to traditional data
confidentiality, integrity, availability, and
privacy issues, plus some additional attacks
11
Companies are still afraid to use clouds

[Chow09ccsw]
12
Causes of Problems Associated
with Cloud Computing
• Most security problems stem from:
– Loss of control
– Lack of trust (mechanisms)
– Multi-tenancy
• These problems exist mainly in 3rd party
management models
– Self-managed clouds still have security
issues, but not related to above
END!!

Research in Cloud Security and Privacy
Document204 pages
Research in Cloud Security and Privacy
Kiran Reddy
No ratings yet
Cloud Complete
Document204 pages
Cloud Complete
Hemangi Priya Devi Dasi
No ratings yet
Research in Cloud Security and Privacy
Document204 pages
Research in Cloud Security and Privacy
ananthmt
No ratings yet
Security
Document69 pages
Security
Devanshu Patel
No ratings yet
Research in Cloud Security and Privacy: Modified From Bharat Bhargava, Anya Kim, Younsun Cho
Document49 pages
Research in Cloud Security and Privacy: Modified From Bharat Bhargava, Anya Kim, Younsun Cho
paolo
No ratings yet
Cloud Computing Presentation
Document29 pages
Cloud Computing Presentation
mohammedkamil1698
No ratings yet
Research in Cloud Security and Privacy
Document204 pages
Research in Cloud Security and Privacy
vetriit4
No ratings yet
Cloud Computing
Document204 pages
Cloud Computing
Sarayu Nagarajan
No ratings yet
Research in Cloud Security and Privacy
Document204 pages
Research in Cloud Security and Privacy
Aniket Nimonkar
No ratings yet
Research in Cloud Security and Privacy
Document204 pages
Research in Cloud Security and Privacy
thirugnanasambandhamurthy
No ratings yet
Effectively and Securely Using The Cloud Computing Paradigm
Document83 pages
Effectively and Securely Using The Cloud Computing Paradigm
Marky
No ratings yet
Effectively and Securely Using The Cloud Computing Paradigm
Document92 pages
Effectively and Securely Using The Cloud Computing Paradigm
asas_sgn_2001
No ratings yet
Cloud Security
Document70 pages
Cloud Security
Ibtissem Ch
75% (4)
Cloud Computing v26
Document92 pages
Cloud Computing v26
Mohammed AL-Haj
No ratings yet
Cloud Computing - Challenges, Risk, and Mitigation: Module Name
Document98 pages
Cloud Computing - Challenges, Risk, and Mitigation: Module Name
NIRMALYA_NJRCS
No ratings yet
CC UNIT 1 - 6th Sem B - Anshika Malsaria
Document22 pages
CC UNIT 1 - 6th Sem B - Anshika Malsaria
Dank Boii
No ratings yet
Week 1-2
Document70 pages
Week 1-2
Ali Ahmed
No ratings yet
Cloud Computing: Unit 1
Document76 pages
Cloud Computing: Unit 1
PRASHANTH L
100% (1)
Cloud Computing
Document32 pages
Cloud Computing
Abuzar Khan
No ratings yet
1.5. Cloud Deployment Models
Document51 pages
1.5. Cloud Deployment Models
19epci022 Prem Kumaar R
No ratings yet
Cloud Computing
Document15 pages
Cloud Computing
Ranjith Ramar
No ratings yet
Assignment - Cloud Computing
Document10 pages
Assignment - Cloud Computing
Ranjani Sundar
No ratings yet
Introduction To Cloud Computing: Mohamed Rahal ENIT 2018
Document99 pages
Introduction To Cloud Computing: Mohamed Rahal ENIT 2018
Nouradin Hassan Darar
No ratings yet
Cloud 10
Document3 pages
Cloud 10
Sandeep Nagendra
No ratings yet
IS Concept 2020 - Session 14 - Cloud Computing (T)
Document23 pages
IS Concept 2020 - Session 14 - Cloud Computing (T)
Derian Wijaya
No ratings yet
Definition of Cloud Computing - Characteristics of Cloud - Cloud Deployment Models
Document11 pages
Definition of Cloud Computing - Characteristics of Cloud - Cloud Deployment Models
vigneshg463
No ratings yet
Chapter #3 Understanding Cloud Computing
Document15 pages
Chapter #3 Understanding Cloud Computing
Muhammad Haider Ali
No ratings yet
Seminar On Cloud Computing: Submitted By: Shivansh Khatri 19BCON403
Document17 pages
Seminar On Cloud Computing: Submitted By: Shivansh Khatri 19BCON403
Dank Boii
No ratings yet
CC6004ES Network & Cloud Security: London Metropolitan University, Faculty of Computing
Document25 pages
CC6004ES Network & Cloud Security: London Metropolitan University, Faculty of Computing
jey456
No ratings yet
An Analysis of The Cloud Computing Security Problem
Document6 pages
An Analysis of The Cloud Computing Security Problem
rmsaqib1
No ratings yet
Ch1 - Introduction To Cloud Computing (Readonly)
Document58 pages
Ch1 - Introduction To Cloud Computing (Readonly)
Tom Jain
No ratings yet
Cloud Security
Document27 pages
Cloud Security
woynitu87
No ratings yet
Certificate of Cloud Security Knowledge (CCSK) v4 Preparation Guide
Document4 pages
Certificate of Cloud Security Knowledge (CCSK) v4 Preparation Guide
Manuel
No ratings yet
Security and Privacy Protection Issues in Cloud Computing Nikhil Bhuta
Document8 pages
Security and Privacy Protection Issues in Cloud Computing Nikhil Bhuta
Nikhil Bhuta Dhariyawad
No ratings yet
Chapter II (Cloud-Computing)
Document21 pages
Chapter II (Cloud-Computing)
Binyam Bekele Moges
No ratings yet
Research in Cloud Computing
Document26 pages
Research in Cloud Computing
BONNY PRAJAPATI
No ratings yet
Cloud Computing Unit-2 PPT - PPSX
Document46 pages
Cloud Computing Unit-2 PPT - PPSX
madhusudhan
No ratings yet
Chapter 3 ST ALL
Document60 pages
Chapter 3 ST ALL
Aschalew Ayele
No ratings yet
The Overview of
Document24 pages
The Overview of
Pat Lanugon
No ratings yet
Cloud Computing Unit1to4
Document66 pages
Cloud Computing Unit1to4
luffymonkeyd0123
No ratings yet
Cloud Computing Introduction and Awareness: Walt Lammert
Document28 pages
Cloud Computing Introduction and Awareness: Walt Lammert
wlammert
No ratings yet
Cloud Computing
Document6 pages
Cloud Computing
abhinav11021990
No ratings yet
Practical For MCA Program
Document17 pages
Practical For MCA Program
Devendra Kumar Chandrabahadur Yadav
No ratings yet
Maharishi Arvind College of Engineering & Research Centre, Jaipur
Document29 pages
Maharishi Arvind College of Engineering & Research Centre, Jaipur
Nikhil Bhuta Dhariyawad
No ratings yet
Cloud Computing 2023
Document26 pages
Cloud Computing 2023
adeenahussain70
No ratings yet
Cloud Computing Security
Document10 pages
Cloud Computing Security
AYISHA NISAR
No ratings yet
Introduction To Cloud Computing
Document21 pages
Introduction To Cloud Computing
Ruchira Saha
No ratings yet
Cloud 3-4-5
Document81 pages
Cloud 3-4-5
Sanskar Rangole
No ratings yet
Cloud Architecture Module 3 Btech
Document35 pages
Cloud Architecture Module 3 Btech
Iffat
No ratings yet
B0501 02-0812 PDF
Document5 pages
B0501 02-0812 PDF
IJMER
No ratings yet
Cloud - Computing Date 15, 16 June
Document30 pages
Cloud - Computing Date 15, 16 June
Srinivas Naidu
No ratings yet
CC Experiment 01
Document6 pages
CC Experiment 01
Varsha Kulkarni
No ratings yet
Unit-Ii CC
Document51 pages
Unit-Ii CC
preethi
No ratings yet
Introduction To IBM Cloud Satellite
Document12 pages
Introduction To IBM Cloud Satellite
baher hesham
No ratings yet
Cloud Computing Introduction
Document83 pages
Cloud Computing Introduction
Narmatha Thiyagarajan
No ratings yet
Cloud Computing Made Simple: Navigating the Cloud: A Practical Guide to Cloud Computing
From Everand
Cloud Computing Made Simple: Navigating the Cloud: A Practical Guide to Cloud Computing
Poonam Devi
No ratings yet
Shedding Light on Cloud Computing
From Everand
Shedding Light on Cloud Computing
Gregor Petri
Rating: 5 out of 5 stars
5/5 (1)
Cloud computing: Moving IT out of the office
From Everand
Cloud computing: Moving IT out of the office
BCS, The Chartered Institute for IT
No ratings yet
Cloud Computing im Kleinbetrieb - Ein Leitfaden für KMU und Start Ups
From Everand
Cloud Computing im Kleinbetrieb - Ein Leitfaden für KMU und Start Ups
Bernhard Gaum
No ratings yet
Cloud Computing: Harnessing the Power of the Digital Skies: The IT Collection
From Everand
Cloud Computing: Harnessing the Power of the Digital Skies: The IT Collection
Christopher Ford
No ratings yet
Rice Price Crisis: Causes, Impacts, and Solutions: Sushil Pandey Mark W. Rosegrant
Document15 pages
Rice Price Crisis: Causes, Impacts, and Solutions: Sushil Pandey Mark W. Rosegrant
John Khiener Abendan
No ratings yet
Unit 7 - Equity and Ethics - LRS127V 2020
Document14 pages
Unit 7 - Equity and Ethics - LRS127V 2020
Excellency Lesley
No ratings yet
Caribbean 2021 E&p Summit Program Book - 13september2021
Document10 pages
Caribbean 2021 E&p Summit Program Book - 13september2021
Renato Longo
No ratings yet
Reading Test 1. Online: Is Scheduled
Document5 pages
Reading Test 1. Online: Is Scheduled
Thanh Lê
No ratings yet
UG JForce Agreement - Terms and Conditions
Document8 pages
UG JForce Agreement - Terms and Conditions
ALELE VINCENT
No ratings yet
Test Report: (5322) 193-0108 Carter'S Inc
Document56 pages
Test Report: (5322) 193-0108 Carter'S Inc
leav Darany
No ratings yet
www11 Ceda - Polimi
Document1 page
www11 Ceda - Polimi
THOMAS VON PLESSING
No ratings yet
Comprehensive Analysis of The Business Environment in China: Polytechnic University of The Philippines Sto. Tomas Branch
Document26 pages
Comprehensive Analysis of The Business Environment in China: Polytechnic University of The Philippines Sto. Tomas Branch
Erika Aranda
No ratings yet
Hamleys RILPR12082008
Document3 pages
Hamleys RILPR12082008
Sudip Gupta
No ratings yet
Mgt3 Governance
Document2 pages
Mgt3 Governance
Zeah Viendell Cruzat
No ratings yet
Masterclass Brochure 2023
Document10 pages
Masterclass Brochure 2023
Nuhu Dan-azumi Muhammad
No ratings yet
Mwiga
Document89 pages
Mwiga
michael richard
No ratings yet
01 Cash & CE Composition
Document3 pages
01 Cash & CE Composition
sharielles /
No ratings yet
ESIC Benefits at A Glance
Document5 pages
ESIC Benefits at A Glance
vix8
No ratings yet
Matrix Consulting: Financial Audit of SLCPD
Document142 pages
Matrix Consulting: Financial Audit of SLCPD
MacKenzie Ryan
No ratings yet
Kaizen Sheet - Tamil & Eng
Document6 pages
Kaizen Sheet - Tamil & Eng
krixot
No ratings yet
Chapter 5
Document23 pages
Chapter 5
Alex Workina
No ratings yet
Learning Resource - Accounting and The Business Environment
Document109 pages
Learning Resource - Accounting and The Business Environment
Crystal Castor Labrague
No ratings yet
Mathematics For Economics and Business 8th Edition Jacques Solutions Manual
Document36 pages
Mathematics For Economics and Business 8th Edition Jacques Solutions Manual
duckingsiddow9rmb1
100% (21)
D - Data Processing Agreement For SAP Services
Document10 pages
D - Data Processing Agreement For SAP Services
Ulysse Tpn
No ratings yet
Computerised System Validation - Introduction To Risk Management - The GAMP® 5 Approach
Document6 pages
Computerised System Validation - Introduction To Risk Management - The GAMP® 5 Approach
Huu Tien
No ratings yet
Description Freight/Risk More Details EXW: Buyer Buyer Buyer
Document1 page
Description Freight/Risk More Details EXW: Buyer Buyer Buyer
Zainal Abidin
No ratings yet
Whitepaper V1.0: 1. Introduct On
Document11 pages
Whitepaper V1.0: 1. Introduct On
Ta
No ratings yet
Indonesian Coal Index Report: Argus/Coalindo
Document2 pages
Indonesian Coal Index Report: Argus/Coalindo
Rahmat Dian Syah Putra
No ratings yet
ATP catalogoOR Ita Def WEB
Document15 pages
ATP catalogoOR Ita Def WEB
Sebastian Quespe
No ratings yet
Active Agency September 2022
Document8 pages
Active Agency September 2022
Karthik Shankar
No ratings yet
All Sbi Branches Ifsc Code
Document4,315 pages
All Sbi Branches Ifsc Code
Madhan Gopal
75% (12)
KPMG Global Economic Outlook h1 2023 Report
Document50 pages
KPMG Global Economic Outlook h1 2023 Report
z_k_j_v
100% (1)
Muddy Waters - YY - 11182020
Document71 pages
Muddy Waters - YY - 11182020
Alp
No ratings yet
01 PRMGT - Assignment Question Marking Scheme
Document6 pages
01 PRMGT - Assignment Question Marking Scheme
Michael Tam
No ratings yet