Cloud Computing Security : Technology Security

Resource Pooling: There should be multiple resources available for the users the CSP should provide multiple devices collected and provide to various users because people using the cloud might be in different locations from the same organization the resources should be pooled and provided

The providers computing resources are pooled to serve multiple consumers using a multi-tenant model, with different physical

Usage of remote servers via internet to store, manage and process data instead of using a personal computer is known as Cloud computing. It’s a set of Information Technology services with the ability to scale up or down their service requirements. Most of the cloud services are provided by a third party service provider. In cloud computing, organizations can utilize IT services without in advance investment. Despite its benefits obtained from the cloud computing, the organizations are slow in accepting it due to security issues and challenges. Security is one of the major problems which hinder the growth of cloud. It’s not wise to handing over the important data to another company; such that clients need to be vigilant in understanding the risks of data infringement in this new environment. This paper discusses a detailed analysis of the cloud computing security issues and challenges. (Ayoleke)

Any number of end users and/or computing resources can be added on the fly. User accounts and resources can also be added dynamically as workloads demand those resources using the feature called auto-scaling.

(2) Utility Computing - offers storage and virtual servers that an organization can access on demand.

Allocation of resources-They are grouped to serve a large number of simultaneous users. Computing resources are joint together to serve numerous

In this article, we discuss about the different cloud types and models, threats and vulnerabilities of cloud, and how to manage them. The main aim of this literature review is to identify the weak points in cloud computing, minimize the threats and improve the security system. We will also discuss two of the main concepts of cloud – virtualization and multi-tenancy (Mishra, Mathur, Jain, & Rathore, 2013). A brief analysis of each of the threat and security measure is described in the literature review.

Cloud computing has become so famous; there is much widespread news about the cloud these days. This is mainly because of the exponential shift of the business applications from traditional models of software towards the Internet, and now through mobile devices. Cloud computing is a model that uses the network of remote servers that has been hosted on the internet rather than on a specific hardware. This would enable a better shared pool for storing, accessing and processing of data. With the huge information being available in the internet, the security for cloud computing has been challenging and this paper would elucidates the security threats of cloud computing also stating the possible countermeasures for them.

Though the architecture of cloud computation brings about the mitigation or negation of current security threats for users, such as the risk of leaking sensitive information at a lost or stolen laptop, new vulnerabilities and challenges are introduced. [Security and Privacy Issues in Cloud Computing] The threats to information assets residing in the cloud, including the outsourced data (input) and its corresponding solution (output), can generally be on

Almost all kind of large and small organizations might face increasing number of attacks into their network or intellectual property. This may lead to data disclosure, data destruction, and damage of organization’s reputation. There are numerous threats in the cyber space which might be capable of stealing, destroying or making use of out sensitive data for financial and non-financial gains. As the amount of computer, mobile and internet users increases, so does the number of exploiters.

According to [3], there are so many security risks of the user of the cloud computing services, for handling these hazards the possible types of attacks must be categorized so that the solution of that can be found [4]. The author has proposed the idea of attacks possible in the cloud computing. The organizations are providing cloud services according to the cloud computing categorization. The cloud computing is still not matured in terms of security, and most of the researchers in published literature focused on security and new categorization of the attack surface. The paper focused on the initial attacks and hacking efforts linked to cloud computing organizations and their systems. In the cloud computing, there are three different contributor classes as a user, the cloud, and service. In cloud computing, two contributors must involve in the communication. The attacks can be launched on any of these three contributors during communication. The contributor classes must be secured with a security interface or a channel between the communicating parties, which depends on the service model that the cloud have like IaaS, PaaS, and SaaS.

Based on the study of various security models of cloud computing we have proposed a new security model of cloud computing the steps in the proposed security model are: first the user creates a local user agent, and establish a temporary security certificate, and then user agents use this certificate for secure authentication in an effective time. With this certificate, which includes the host name, user name, user id, start time, end time and security attributes etc; the user’s security access and authorization is complete. When the user’s task is to use the resource on the cloud service provider, mutual authentication take place between user agent and specific application, while the application checks if the user agents certificate is

In this paper, the authors survey many sources and literature on cloud security issues, namely vulnerabilities, threats, and attacks. A total of 504 articles were look at to gather the data used in this paper. While the authors use this number to say that the research trend is up on mitigating security risks, they also suggest that security is the main priority of most research to the detriment of other areas. They offer no concrete numbers to back up this claim..

Then the characteristic of resource pooling. This allows a provider a plethora of computing resources such as data storage & processing. Rapid elasticity is the next and is best described as a network that expands or decreases, in some cases, automatically to meet the needs of a customer. Finally, measured service is cloud computing resource usage can be measured, described as providing transparency for the provider and consumer. Cloud computing services use a metering capability which permits it to control and enhance resource use. The more you utilize the higher the bill.

Cloud Computing is one of the predominant and emerging technologies. It provides easy access to the resources from all around the world remotely through internet access .As a result of this all the organizations/business enterprises are looking to take advantage of the cloud technology to make efficient use of resources and minimizing the storage cost. Cloud technology is designed with different type of services like IaaS (Infrastructure as a service),SaaS (Software as a Service),and PaaS (Platform as a Service) for the different type of business /users. Cloud computing is all about storing the files at third party. So, in that terms cloud environment is very unsafe. In spite of weak security measures that are maintained using