GUO Rui-peng

DOI: https://doi.org/10.3969/j.issn.1006-2475.2012.06.047

2012-01-01

Abstract:The emergence of cloud computing enables the enterprises and individuals through the network to use computing resources and storage resources conveniently,cloud computing in data security issues are also increasingly attracted widespread attention.This paper discusses the objectives and requirements of cloud computing security,and analyzes the cloud computing user access,encryption technology,access control,virtualization security and other critical security technologies.

Elham Mohammed Thabit A. Alsaadi,Sabah Mohammed Fayadh,Ashwak Alabaichi

DOI: https://doi.org/10.1063/5.0027460

2020-01-01

Abstract:Cloud Computing is a model based on computing system which provides convenient and customizable services to the users for accessing to different cloud applications. It provides a way for storing and accessing cloud data from anywhere via connecting the cloud application utilizing internet. The cloud computing and its related safety problems is one of widely discussed concerns in today generation's research field. While numerous cloud security investigations are previously widespread, there residues a definite distance in properly identifying these issues and find the appropriate solutions. Some studies discuss the problems of virtualization and approach the target, while others talk about access control mechanisms, but what's missing is a standard framework which simultaneously extends the concept of cloud security and describes its specific requirements. In addition, countermeasures given in a survey must clearly illustrate the problem it deals with. This analysis paper took all of these elements into consideration so that the necessary areas were properly connected and a number of open issues were discussed in this area. This paper also reviews the most significant security techniques to data protection and cloud security in the cloud computing. Moreover, security techniques for data protection will be recommended in order to have enhanced security in cloud computing. It will concentrate primarily on issues related to data security and provides solutions.

Yunusa Simpa Abdulsalam,Mustapha Hedabou

DOI: https://doi.org/10.3390/fi14010011

2021-12-27

Future Internet

Abstract:Advances in the usage of information and communication technologies (ICT) has given rise to the popularity and success of cloud computing. Cloud computing offers advantages and opportunities for business users to migrate and leverage the scalability of the pay-as-you-go price model. However, outsourcing information and business applications to the cloud or a third party raises security and privacy concerns, which have become critical in adopting cloud implementation and services. Researchers and affected organisations have proposed different security approaches in the literature to tackle the present security flaws. The literature also provides an extensive review of security and privacy issues in cloud computing. Unfortunately, the works provided in the literature lack the flexibility in mitigating multiple threats without conflicting with cloud security objectives. The literature has further focused on only highlighting security and privacy issues without providing adequate technical approaches to mitigate such security and privacy threats. Conversely, studies that offer technical solutions to security threats have failed to explain how such security threats exist. This paper aims to introduce security and privacy issues that demand an adaptive solution approach without conflicting with existing or future cloud security. This paper reviews different works in the literature, taking into account its adaptiveness in mitigating against future reoccurring threats and showing how cloud security conflicts have invalidated their proposed models. The article further presents the security threats surrounding cloud computing from a user perspective using the STRIDE approach. Additionally, it provides an analysis of different inefficient solutions in the literature and offers recommendations in terms of implementing a secure, adaptive cloud environment.

Usman Aijaz,Mohammed Abubakar,Aditya Reddy,Abuzar .,Alok C Pujari

DOI: https://doi.org/10.46610/joscnds.2024.v01i01.005

2024-04-26

Abstract:Cloud computing has completely transformed how businesses handle, store, and process data and applications. However, using cloud services brings several security issues that need to be resolved to guarantee the availability, confidentiality, and integrity of critical data. This abstract overviews vital aspects of cloud computing security and highlights emerging trends and research directions. Essential challenges of cloud computing security include ensuring data privacy and confidentiality, maintaining data integrity and trustworthiness, and addressing compliance with regulatory requirements. Identity and access management (IAM) remains a critical area, focusing on enhancing authentication mechanisms and access controls to mitigate the risks of unauthorized access and insider threats. Additionally, active research areas include securing cloud orchestration and management platforms, resilience and availability of cloud services, and addressing the unique security considerations of cloud native technologies. Interdisciplinary collaboration between researchers, industry practitioners, and policymakers is essential to develop innovative security solutions and best practices for cloud computing environments. By addressing these challenges and advancing the state of the art in cloud security, organizations can leverage the benefits of cloud computing while mitigating associated risks and ensuring the protection of sensitive data and resources. In summary, this review paper provides a holistic understanding of cloud computing security, offering insights into current practices, challenges, and future directions for ensuring the confidentiality, integrity, and availability of cloud based systems and data.

Devanshi Ledwani,Himanshi Saini,Lalita Ledwani,Vaibhav Bhatnagar,Swami Nisha Bhagirath

DOI: https://doi.org/10.1080/09720529.2022.2133253

2022-12-10

Journal of Discrete Mathematical Sciences and Cryptography

Abstract:Cloud computing is the on-demand availability of a group of networked elements providing services, especially data storage and computing power, without actual management and addressing by the user. In lieu, the entire suite of hardware and software is managed by a provider and have functions dispersed over various location, each location being a data center. Since cloud computing users rely on sharing resources and may request multiple cloud services concurrently, a dynamic provision must be there so that all the resources are available to the user in a competent manner. However, despite abundantly available benefits, many organizations are still skeptical about using the cloud computing service model because of security concerns associated with the service. The paper also discusses different types of cloud security, controls of cloud security and algorithms used for emanating the privacy of the client's data. In this paper, a CNN and SVM model is also applied for detection Anti-Spoofing images for identification on images on cloud.

Kai Bu,Bin Xiao,Yi Qian

DOI: https://doi.org/10.1002/cpe.4241

2017-01-01

Abstract:“Cloud” is a common metaphor for an Internet accessible infrastructure (e.g., data storage and computing hardware) that is hidden from users. Cloud computing makes data truly mobile and a user can simply access a chosen cloud with any internet accessible device. In cloud computing, IT-related capabilities are provided as services, accessible without requiring detailed knowledge of the underlying technology. Thus, many mature technologies are used as components in cloud computing, but still there are many unresolved and open problems.

Dr. Satinderjeet Singh

DOI: https://doi.org/10.46431/mejast.2022.5220

2022-01-01

Middle East Journal of Applied Science & Technology

Abstract:The cloud is a network of virtual computers that are linked together and may exhibit and offer computational capabilities continuously depending on certain Service Level Agreements (SLAs) that have been agreed between the parties to a contract between the clients and the internet provider. Cloud computing has several benefits, including endless computational resources, cheap cost, security controls, hypervisor protection, instantaneous elasticity, high throughput, and fault-tolerant solutions with increased performance. Since cloud computing is a comparatively recent computing model, there exists a lot of uncertainty about how well confidentiality of all levels, including host, network, data levels, and implementation, can be achieved. As a result, there still are important obstacles to cloud computing adoption. These constraints include security issues concerning privacy, compliance, and legal issues. When databases and software applications are moved from the cloud to large data centers, data management becomes a major challenge. Numerous security issues may develop while using cloud computing, including issues with privacy and control, virtualization and accessibility issues, confidentiality, management of credentials and identities, authentication of responding devices, and authenticity. In this paper, an effort is made to offer a comprehensive review of data security and threats in cloud computing.

Tarek Ali,Mohammed Al-Khalidi,Rabab Al-Zaidi

DOI: https://doi.org/10.1080/08874417.2024.2329985

2024-03-31

Journal of Computer Information Systems

Abstract:Cloud computing faces more security threats, requiring better security measures. This paper examines the various classification and categorization schemes for cloud computing security issues, including the widely known CIA trinity (confidentiality, integrity, and availability), by considering critical aspects of the cloud, such as service models, deployment models, and involved parties. A comprehensive comparison of cloud security classifications constructs an exhaustive taxonomy. ISO27005, NIST SP 800–30, CRAMM, CORAS, OCTAVE Allegro, and COBIT 5 are rigorously compared based on their applicability, adaptability, and suitability within a cloud-based hosting methodology. The findings of this research recommend OCTAVE Allegro as the preferred cloud hosting paradigm. With many security models available in management studies, it is imperative to identify those suitable for the rapidly expanding and dynamically evolving cloud environment. This study underscores the significant methods for securing data on cloud-hosting platforms, thereby contributing to establishing a robust cloud security taxonomy and hosting methodology.

computer science, information systems

Hamed Tabrizchi,Marjan Kuchaki Rafsanjani

DOI: https://doi.org/10.1007/s11227-020-03213-1

IF: 3.3

2020-02-28

The Journal of Supercomputing

Abstract:Cloud computing has gained huge attention over the past decades because of continuously increasing demands. There are several advantages to organizations moving toward cloud-based data storage solutions. These include simplified IT infrastructure and management, remote access from effectively anywhere in the world with a stable Internet connection and the cost efficiencies that cloud computing can bring. The associated security and privacy challenges in cloud require further exploration. Researchers from academia, industry, and standards organizations have provided potential solutions to these challenges in the previously published studies. The narrative review presented in this survey provides cloud security issues and requirements, identified threats, and known vulnerabilities. In fact, this work aims to analyze the different components of cloud computing as well as present security and privacy problems that these systems face. Moreover, this work presents new classification of recent security solutions that exist in this area. Additionally, this survey introduced various types of security threats which are threatening cloud computing services and also discussed open issues and propose future directions. This paper will focus and explore a detailed knowledge about the security challenges that are faced by cloud entities such as cloud service provider, the data owner, and cloud user.

Jianhua Che,Yamin Duan,Tao Zhang,Jie Fan

DOI: https://doi.org/10.1016/j.proeng.2011.11.2551

2011-01-01

Procedia Engineering

Abstract:Cloud computing is introducing many huge changes to people's lifestyle and working pattern recently for its multitudinous benefits. However, the security of cloud computing is always the focus of numerous potential cloud customers, and a big barrier for its widespread applications. In this paper, to facilitate customers to understand the security status quo of cloud computing and contribute some efforts to improving the security level of cloud computing, we surveyed the existing popular security models of cloud computing, e.g. multiple-tenancy model, risk accumulation model, cube model of cloud computing, and summarized the main security risks of cloud computing deriving from different organizations. Finally, we gave some security strategies from the perspective of construction, operation and security incident response to relieve the common security issues of cloud computing.

English Else

Karim Djemame,Afnan Ullah Khan,Manuel Oriol,Ming Jiang,Mariam Kiran

DOI: https://doi.org/10.1109/CloudCom.2012.6427574

2012-01-01

Abstract:Cloud computing provides outsourcing of resources bringing economic benefits. The outsourcing however does not allow data owners to outsource the responsibility of confidentiality, integrity and access control, as it still is the responsibility of the data owner. As cloud computing is transparent to both the programmers and the users, it induces challenges that were not present in previous forms of distributed computing. Furthermore, cloud computing enables its users to abstract away from low-level configuration such as configuring IP addresses and routers. It creates an illusion that this entire configuration is automated. This illusion is also true for security services, for instance automating security policies and access control in cloud, so that individuals or end-users using the cloud only perform very high-level (business oriented) configuration. This paper investigates the security challenges posed by the transparency of distribution, abstraction of configuration and automation of services by performing a detailed threat analysis of cloud computing across its different deployment scenarios (private, bursting, federation or multi-clouds). This paper also presents a risk inventory which documents the security threats identified in terms of availability, integrity and confidentiality for cloud infrastructures in detail for future security risks. We also propose a methodology for performing security risk assessment for cloud computing architectures presenting some of the initial results.

Fabian Süß,Marco Freimuth,Andreas Aßmuth,George R. S. Weir,Bob Duncan

2024-05-19

Abstract:In recent years, Cloud Computing has transformed local businesses and created new business models on the Internet- and Cloud services are still flourishing. But after the emphatic hype in the early years, a more realistic perception of Cloud services has emerged. One reason for this surely is that today, Cloud Computing is considered as an established and well-accepted technology and no longer as a technical novelty. But the second reason for this assessment might also be numerous security issues that Cloud Computing in general or specific Cloud services have experienced since then. In this paper, we revisit attacks on Cloud services and Cloud-related attack vectors that have been published in recent years. We then consider successful or proposed solutions to cope with these challenges. Based on these findings, we apply a security metric in order to rank all these Cloud-related security challenges concerning their severity. This should assist security professionals to prioritize their efforts toward addressing these issues.

Cryptography and Security,Distributed, Parallel, and Cluster Computing

Komal Singh Gill,Anju Sharma,Sharad Saxena,Gill, Komal Singh,Sharma, Anju,Saxena, Sharad

DOI: https://doi.org/10.1007/s11831-024-10095-6

IF: 9.7

2024-04-02

Archives of Computational Methods in Engineering

Abstract:The presented survey paper explores the application of game theoretic models for addressing security challenges in cloud computing environments. It highlights the significance of cloud computing as an integral part of modern technology due to its accessibility, scalability, and cost-effectiveness. However, the paper acknowledges that security issues pose a considerable concern in cloud computing, surpassing the effectiveness of traditional security measures. To overcome these challenges, the paper focuses on game theory as a valuable framework for modeling security scenarios by considering strategic interactions among multiple parties with conflicting interests. By analyzing existing research, the presented paper investigates the practical utilization of game theoretic models to enhance security in real-world cloud computing environments. The findings suggest that while game theory holds promise in offering effective security solutions, further research is imperative to address the practical limitations of these models in the context of cloud computing.

computer science, interdisciplinary applications,engineering, multidisciplinary,mathematics

Kui Ren,Cong Wang,Qian Wang

DOI: https://doi.org/10.1109/MIC.2012.14

IF: 2.68

2012-01-01

IEEE Internet Computing

Abstract:Cloud computing represents today's most exciting computing paradigm shift in information technology. However, security and privacy are perceived as primary obstacles to its wide adoption. Here, the authors outline several critical security challenges and motivate further investigation of security solutions for a trustworthy public cloud environment.

Dujuan Zhang

DOI: https://doi.org/10.1088/1742-6596/1648/2/022046

2020-10-01

Journal of Physics: Conference Series

Abstract:Abstract Loud computing is a network-based modern computer technology, it is a new computing service model. The application of cloud computing has brought great changes to computers in many aspects, and also brought many new directions and opportunities. However, the development of cloud computing has also brought a certain impact on computer security. Based on above, the article expounds the cloud computing features and computer security firstly, then explores computer security issues and measures under cloud computing in details. We hope to solve practical security problems through research on computer security issues.

Bader Alouffi,Muhammad Hasnain,Abdullah Alharbi,Wael Alosaimi,Hashem Alyami,Muhammad Ayaz

DOI: https://doi.org/10.1109/access.2021.3073203

IF: 3.9

2021-01-01

IEEE Access

Abstract:Cloud computing has become a widely exploited research area in academia and industry. Cloud computing benefits both cloud services providers (CSPs) and consumers. The security challenges associated with cloud computing have been widely studied in the literature. This systematic literature review (SLR) is aimed to review the existing research studies on cloud computing security, threats, and challenges. This SLR examined the research studies published between 2010 and 2020 within the popular digital libraries. We selected 80 papers after a meticulous screening of published works to answer the proposed research questions. The outcomes of this SLR reported seven major security threats to cloud computing services. The results showed that data tampering and leakage were among the highly discussed topics in the chosen literature. Other identified security risks were associated with the data intrusion and data storage in the cloud computing environment. This SLR's results also indicated that consumers' data outsourcing remains a challenge for both CSPs and cloud users. Our survey paper identified the blockchain as a partnering technology to alleviate security concerns. The SLR findings reveal some suggestions to be carried out in future works to bring data confidentiality, data integrity, and availability.

computer science, information systems,telecommunications,engineering, electrical & electronic

.Dr. Aakriti Sharma,,

DOI: https://doi.org/10.55041/ijsrem31596

2024-04-25

INTERANTIONAL JOURNAL OF SCIENTIFIC RESEARCH IN ENGINEERING AND MANAGEMENT

Abstract:Cloud computing has revolutionized the way businesses operate, offering unprecedented scalability, flexibility, and cost-efficiency. However, alongside its numerous benefits, cloud computing also presents significant security challenges. This research paper aims to provide a comprehensive comparison of cloud security issues, examining the common threats, vulnerabilities, and mitigation strategies across various cloud deployment models and service types. Through a systematic review of existing literature and case studies, this paper highlights the evolving landscape of cloud security, identifies key challenges, evaluates current solutions, and outlines future directions for research and practice in the field.

Sun Bin,Wang Yongjie

DOI: https://doi.org/10.1088/1742-6596/1982/1/012204

2021-07-01

Journal of Physics: Conference Series

Abstract:Abstract The development of network technology has changed the traditional network application mode to coordinate all kinds of data and resources effectively. It brings about the improvement of computer computing ability, data processing ability and storage ability, and offers users a new and optimized usage experience by improving the ability of computer network service. However, the construction of cloud computing technology environment also causes people to worry about the network security, and the problem of computer network security under cloud computing technology environment can not be underestimated. The top priority is to speed up the research and development of defense technology, improve the risk response system, consciously enhance the awareness of security protection, and be answerable for dealing with network risk with multi-pronged measures. This work mainly discussed the problems of computer network security under cloud computing technology environment from aspects of encryption technology, authorized accessing, network monitoring, and consciousness awakening, expecting to provide guidance and reference for computer network security response under the background of cloud computing.

Adeel Javaid

DOI: https://doi.org/10.2139/SSRN.2388377

2014-01-08

Abstract:The cloud computing paradigm is still evolving, but has recently gained tremendous momentum. However, security and privacy issues pose as the key roadblock to its fast adoption. In this paper we present security and privacy challenges that are exacerbated by the unique aspects of clouds and show how they're related to various delivery and deployment models. We discuss various approaches to address these challenges, existing solutions, and work needed to provide a trustworthy cloud computing environment.

Engineering,Computer Science