Cloud Computing Security:
Cloud Computing Security means that Data in Cloud should be stored in encrypted form (unreadable form). It is a sub-domain of network security, computer security whether data is stored and that has back up also. Nowadays Client data stored in Datacenter only.
Security – Basic Components:
Confidentiality: It means that keeping data and resources hidden
Integrity: Authentication with Data Integrity maintain
Availability: Enabling access to data and resources
Security Attacks classification:
Basically four types of security attacks:
-
- Interception
- Interruption :
- Modification
- Fabrication
Classes of Threats in Cloud Security
-
- Deception
- Disclosure
- Usurpation
- Disruption
In the Cloud security to reduced attacks from Hackers to prevention the data. Detect the attacker’s violation of security policy, recovery the data to stop attacks from the hackers.
Cloud Security Passive Attacks & Active Attacks:
Passive Attacks: Obtain information that is being transmitted
Two types:
Release of message contents: It may be desirable to prevent the opponent from learning the contents of the transmission.
Traffic Analysis: The opponent can determine the location and identity of communicating hosts, and observe the frequency and length of messages being exchanged. It is very difficult to detect
Active Attacks: It involves some of the modification data streams or the creation of a false stream.
Basically Active attacks
Cloud Security Mechanism:
Encryption
PKI (Public Key Infrastructure)
SSO (Single Sign-On)
IAM (Identity and Access Management)