IJERA Editor, profile picture
Uploaded byIJERA Editor
311 views

Br36413417

The document presents a survey on data security models in cloud computing, highlighting the increasing complexity and adoption of cloud services along with associated security risks. It discusses various security threats such as data integrity, confidentiality, and insider threats while reviewing multiple proposed security models that aim to address these issues during different stages of the data lifecycle. The research concludes with recommendations for suitable models based on specific security needs, emphasizing the importance of ensuring data reliability and confidentiality in cloud environments.

Embed presentation

Download to read offline
Noman Mazher et al Int. Journal of Engineering Research and Application ISSN : 2248-9622, Vol. 3, Issue 6, Nov-Dec 2013, pp.413-417 RESEARCH ARTICLE www.ijera.com OPEN ACCESS A Survey on data security models in cloud computing Noman Mazher1 Imran Ashraf2 1 2 Department of Information Technology University of Gujrat, Gujrat Pakistan Lecturer Faculty of CS & IT, University of Gujrat, Gujrat Pakistan Abstract: The world of data computing is becoming larger and complex day by day. Could computing is the most popular model for supporting large and complex data. Organizations are moving toward cloud computing for getting benefit of its cost reduction and elasticity features. However cloud computing has potential riks and vulnerabilities. One of major hurdle in moving to cloud computing is its security and privacy concerns. As in cloud computing environment data is out of user possession this leads to great risk of data integrity, data confidentiality and data vulnerability etc. A number of security models have been developed to cope with these security threats. Our research aims at investigating security models that were developed for securing data during whole lifecycle of cloud computing. Keywords—Cloud computing , data security , security model I. INTRODUCTION The world of computation has becoming larger and complex day by day. Could computing is most popular model for supporting large and complex data. Organizations are moving toward cloud computing for getting benefit of its cost reduction and elasticity features. Yet cloud computing have potential disadvantages and threats. One of the major hurdles in moving to cloud computing is its security and privacy concerns. As in cloud computing environment data is out of user possession this increases the risk of data integrity, data confidentiality etc. To reduce these risks researchers have purposed many security models. In our research we will investigate security models that were developed for securing data during whole lifecycle of cloud computing. The data life cycle is divided into seven stages that are Data generation , data transfer , use , share , storage , archival and destruction (Chen e Zhao, 2012) . In proceeding section we will introduce different security models purposed for different security threats. II. RELATED WORKS Cloud computing collects all the computing resources and manages them automatically through software. The historical data and present data are integrated to make the collected information more accurate. In this way cloud computing provides more intelligent service to the users. The users are not bothered about how to buy a server or solution. Instead they can buy the computing resources on the internet according to their need. However cloud computing emerge as promising technology in order www.ijera.com to provide the services remotely. But there are many security issues in cloud computing. For example in February, 2010, the Amazon network host service, S3 (Simple Storage Service) was broken down for 4 hours. This made people think about the security of cloud computing again. Since Amazon provides S3, it has attracted a lot of entrepreneur on Web 2.0 put their website on the data center of Amazon to save a large hardware investment (Zhang et al., 2010). So the service of cloud computing is not stable and believable. Security is still a major concern in cloud computing and one of the reason that’s why cloud computing is still not admitted by the users. To improve security of cloud many models have been purposed. User would like to know which security scheme they should implement for securing our data. Comparison of these security schemes have also been done by many researchers such as Farzad Sabahi discuss many security problems to cloud computing against these problems. (Sabahi, 2011) . In this section we will introduce different security models which were purposed by different researchers. We will also tell about each security model that in which layer it works. A. Private Virtual Infrastructure (PVI): This model is proposed by F.John Krothein .(Author Guidelines for 8 - krautheim.pdf, 2013) In this model he addresses risks associated with data. As in cloud computing data is out of control of organization so privacy and security of data is the major concern of the organizations. PVI ensures security of data while transferring data from client to service provider and vice versa. Main purpose of PVI is to secure data during its transfer stage. In this 413 | P a g e
Noman Mazher et al Int. Journal of Engineering Research and Application ISSN : 2248-9622, Vol. 3, Issue 6, Nov-Dec 2013, pp.413-417 www.ijera.com purposed architecture data security is ensured with the help of two layers: PVI layer and cloud fabric layer. PVI layer: Datacenter of PVI is controlled by information owner. Each client is responsible of security of data through firewall, intrusion detection system and other monitoring and logging system to ensure that data is confidential. Cloud fabric layer: Cloud datacenter or fabrics are controlled by cloud service provider. This layer is responsible of maintaining physical and logical security of data. They ensure the security through security tools. Another tool Locator Botprovider is also used. Locator Botprovider provides details of all activities by monitoring the cloud security. He claims that locator Botprovider will also ensure security during destruction stage of data. This architecture is general and does not restrict itself to any specific XaaS (IaaS, PaaS, and SaaS) service. It is a suggested architecture and there is no implementation detail provided. Fig 1: cloud data storage service (Wang et al., 2010) Third Party Auditor (TPA) is pivotal point in this architecture as he has expertise and experience of auditing data. TPA can send regular audit reports of data. From those report user can evaluate that either his data is going securely on cloud or not. To show the performance of the proposed model a mathematical notational proof is provided as well. However no implementation detail in any domain is provided. This architecture can be used for all XaaS (IaaS, PaaS, and SaaS) services. infrastructure for sensitive, private data and computation, while integrating public clouds for no sensitive, public data and computation. In this paper the purposed model Hybprex is also implemented in a specific environment called Mapreduce. Mapreduce is a programming model used to execute large dataset with parallel algorithm. C. Cloud data storage security scheme: This scheme is developed by Syed Azahad and Mr.Srinivas Rao(Azhad e Rao). In this scheme their main focus is on data storage security. This scheme is developed with SaaS in mind. This scheme addresses the correctness of data in the cloud environment. In this scheme they use homomorphic token with distributed verification. They claim to achieve integration of correctness of storage data and error localization of data. They also give security analysis and the results of their analysis with the help of graphs. D. Hypbrex (Hybrid Execution) model: Steven.Y.Ko et.al purposed that model (Ko, Jeon e Morales, 2011). The HybrEx model provides a seamless way for an organization to utilize their own www.ijera.com B. Privacy-preservation public Auditing: This model is purposed by Cong-wang et...al. (Wang et al., 2010)This architecture is suggested typically for securing data of cloud during during storage stage. In prototype of this model he takes three entities 1) cloud user 2) cloud server 3) cloud service provider. Fig 2: Architecture of Hypbrex model (Azhad e Rao) Hypbrex model typically worsk on storage stage of data. For ensuring integrity of data on public cloud he purposed to maintain hashes of public data in private cloud. With the help of these hashing algorithms hybprex can validate integrity of both public and private data 414 | P a g e
Noman Mazher et al Int. Journal of Engineering Research and Application ISSN : 2248-9622, Vol. 3, Issue 6, Nov-Dec 2013, pp.413-417 E. . Airavat : Indraji roy et al purposed that model for security and privacy for Mapreduce .(Untitled - roy.pdf, 2013) Mapreduce is a programming model used to execute large dataset with parallel algorithm. Airavat guarantees to bound information leakage from any individual data that is computed over mapreduce.. Fig 3 : Architecture of mapreduce (Roy et al., 2010) In this paper they implemented Airavat on mapreduce environment and gave the result with the help of graphs .Airavat provides security on data storage stage. F. Integrated conceptual digital forensic framework This paper is written by Ben Martenie (An integrated conceptual digital forensic framework for cloud computing - r_6_130217100243.pdf, 2013) . In this paper he integrates two framework of digital forensics. These two frameworks are McKemmish (1999) and NIST (Kent et al., 2006) . This framework is analyzed with help of survey and questioner. These frameworks are work for data security in data transfer stage. G. Insider Threat remedies: William R.ClayComb discussed a series of security threats which are associated to cloud Fig 4: Overview of POR process (ProvingRetrievability-and-Possession-within-the-CloudStorage-Model.pdf, 2013) 2) PDP (Proving data possession) www.ijera.com www.ijera.com computing in general and data security in specific. A general data security threat is insider threat.(Claycomb e Nicoll, 2012) Insider threat is commonly known as “Rouge Administrator” threat. According to definition of CERT insider threat is “current or former employee, contractor, or other business partner who has or had authorized access to an organizations network, system or data and intentionally exceeded or misused that access in a manner that negatively affected the confidentiality, integrity, or availability of the organizations information or information systems.” They gave the following suggestions to prevent our data from insider threat:  Enforce strict supply chain management and conduct a comprehensive supplier assessment.  Specify human resource requirements as part of legal contracts.  Require transparency into overall information security and management practices, as well as compliance reporting.  Determine security breach notification processes. Insider threat or “rogue administrator” threat can be categorized on data storage stage of cloud computing. H. POR and PDP: Jeff WhiteWorth discussed two issue of SaaS storage model (Proving-Retrievability-and-Possessionwithin-the-Cloud-Storage-Model.pdf, 2013). 1) POR (Prove of Retrievability ) First issue is Prove of Retrievability. This means that user should have any proof that data stored on Cloud storage device can be retrieved without any error or loss, when needed. Solution provided for POR is to use hash function on data. So data is sent in encrypted state. When original data owner or prover wants to retrieve data from cloud service provider or verifier he can ensure that data which are retrieved are same as sent for storing . Provable data possession (PDP) refers to the ability of a client to verify that data stored with a server still possesses the data without retrieving it. The building block of the proposed PDP scheme utilizes 415 | P a g e
Noman Mazher et al Int. Journal of Engineering Research and Application ISSN : 2248-9622, Vol. 3, Issue 6, Nov-Dec 2013, pp.413-417 Homomorphic Verifiable Tags (HVTs) that are, in the most basic concept, metadata stored with the file that provides unforgeable data tags used for verification. These building blocks are utilized in the four main polynomial-time algorithms used in the PDP scheme: KeyGen, TagBlock, GenProof and www.ijera.com CheckProof. The first two algorithms are used in the scheme setup to produce public and secret keys as well as HVTs. GenProof is used by the server to generate a proof in response to the challenge sent by the client and CheckProof is used by the client to verify the proof generated by the server. Fig 5: PDP overview (Proving-Retrievability-andPossession-within-the-Cloud-Storage-Model.pdf, 2013) Both of these approaches address data security at storage stage. I. Transparent Table encryption Technique: Ms. Ankita Parkash et al purposed an oracle storage based technique for ensuring data security in cloud computing (Baheti e Patil, 2013). This technique ensures the reliability of data that is stored in cloud environment. Fig 6: Working diagram of proposed system (Baheti e Patil, 2013) In this approach they purposed a novel approach of storing data. As user data is stored on any particular cloud so we divide that particular cloud into four groups or region R0, R1, R3 and R3. When user stores his file on cloud his file is partitioned in four parts. A segment file is maintained for each file. www.ijera.com Fig 7: segment table (Baheti e Patil, 2013) Here Base represents the starting address of segment in memory. The bound represents end address of the segment. Rw field represents read and write access of that segment. This all work will be done on cloud administrator side. Cloud administrator encrypts entries of segment table. When user wants to retrieve their data cloud administrator will decrypt that segment table entries and with the help of base and bound address gets user data and sends it to the user. So in this way user data can be secured in cloud environment. This technique also addresses security threats at data storage stage. III. CONCLUSION In this research we analyzed different security models that were purposed for different stages of data in cloud computing. It presents a comprehensive report on different security models which has been purposed so far. For securing data on different stages of data lifecycle different security models can be implemented within different perspectives. Confidentiality is an immense concern of data security. To ensure users confidentiality Hypbrex model can be implemented as it is developed by taking confidentiality in mind specifically. While in the environment where information leakage is more important Airavat is the best suit. If data will have to store for long time their Proof of reliability and proof of data possession is very important. So model of OR 416 | P a g e
Noman Mazher et al Int. Journal of Engineering Research and Application ISSN : 2248-9622, Vol. 3, Issue 6, Nov-Dec 2013, pp.413-417 and PDP scheme presented is best suited in scenario where data will have to store for a long time. Reliability of stored data is very important for user. Transport Table Encryption Scheme is best suited for ensuring reliability of data. Cloud computing security scheme can be used where integration and correctness of data is important. Transfer of data during client to server can be secured using PVI model. [12] [13] www.ijera.com WANG, C. et al. Privacy-preserving public auditing for data storage security in cloud computing. INFOCOM, 2010 Proceedings IEEE, 2010, IEEE. p.1-9. ZHANG, S. et al. Cloud computing research and development trend. Future Networks, 2010. ICFN'10. Second International Conference on, 2010, IEEE. p.93-97. References: [1] [2] [3] [4] [5] [6] [7] [8] [9] [10] [11] http://www.ccbc.ir/files_site/files/r_6_13021 7100243.pdf >. Author Guidelines for 8 - krautheim.pdf. 2013. Disponível em: < http://static.usenix.org/event/hotcloud09/tec h/full_papers/krautheim.pdf >. AZHAD, S.; RAO, M. S. Ensuring Data Storage Security in Cloud Computing. BAHETI, A. P.; PATIL, S. V. Cloud Security Based On Oracle Storage Using Transparent Table Encryption Technique. IJCER, v. 2, n. 2, p. 132-136, 2013. ISSN 2278-5795. CHEN, D.; ZHAO, H. Data security and privacy protection issues in cloud computing. Computer Science and Electronics Engineering (ICCSEE), 2012 International Conference on, 2012, IEEE. p.647-651. CLAYCOMB, W. R.; NICOLL, A. Insider Threats to Cloud Computing: Directions for New Research Challenges. Computer Software and Applications Conference (COMPSAC), 2012 IEEE 36th Annual, 2012, IEEE. p.387-394. KO, S. Y.; JEON, K.; MORALES, R. The hybrex model for confidentiality and privacy in cloud computing. Proceedings of the 2011 conference on Hot topics in Cloud Computing. USENIX Association, Portland, OR, 2011. Proving-Retrievability-and-Possessionwithin-the-Cloud-Storage-Model.pdf. 2013. Disponível em: < http://www.whitworthtech.com/sysadmin/w p-content/uploads/2012/07/ProvingRetrievability-and-Possession-within-theCloud-Storage-Model.pdf >. ROY, I. et al. Airavat: Security and Privacy for MapReduce. NSDI, 2010. p.297-312. SABAHI, F. Cloud computing security threats and responses. Communication Software and Networks (ICCSN), 2011 IEEE 3rd International Conference on, 2011, IEEE. p.245-249. Untitled - roy.pdf. 2013. Disponível em: < https://www.usenix.org/legacy/event/nsdi10/ tech/full_papers/roy.pdf >. www.ijera.com 417 | P a g e

More Related Content

PDF
A Brief Survey on Various Technologies Involved in Cloud Computing Security
byAssociate Professor in VSB Coimbatore
 
PDF
EFFECTIVE METHOD FOR MANAGING AUTOMATION AND MONITORING IN MULTI-CLOUD COMPUT...
byIJNSA Journal
 
PDF
IRJET- Two ways Verification for Securing Cloud Data
byIRJET Journal
 
PDF
FRAMEWORK FOR SECURE CLOUD COMPUTING
byijccsa
 
PDF
IRJET-Implementation of Threshold based Cryptographic Technique over Cloud Co...
byIRJET Journal
 
PDF
Exploring Cloud Encryption
bySamuel Borthwick
 
PDF
Ad4502189193
byIJERA Editor
 
PDF
IRJET- A Novel Framework for Three Level Isolation in Cloud System based ...
byIRJET Journal
 
A Brief Survey on Various Technologies Involved in Cloud Computing Security
byAssociate Professor in VSB Coimbatore
 
EFFECTIVE METHOD FOR MANAGING AUTOMATION AND MONITORING IN MULTI-CLOUD COMPUT...
byIJNSA Journal
 
IRJET- Two ways Verification for Securing Cloud Data
byIRJET Journal
 
FRAMEWORK FOR SECURE CLOUD COMPUTING
byijccsa
 
IRJET-Implementation of Threshold based Cryptographic Technique over Cloud Co...
byIRJET Journal
 
Exploring Cloud Encryption
bySamuel Borthwick
 
Ad4502189193
byIJERA Editor
 
IRJET- A Novel Framework for Three Level Isolation in Cloud System based ...
byIRJET Journal
 

What's hot

PDF
Multi- Level Data Security Model for Big Data on Public Cloud: A New Model
byEswar Publications
 
PDF
C017421624
byIOSR Journals
 
PDF
Research Paper Digital Forensics on Google Cloud Platform
bySamuel Borthwick
 
PDF
Cloud computing and security issues in the
byIJNSA Journal
 
PDF
Enhancing Data Storage Security in Cloud Computing Through Steganography
byIDES Editor
 
PDF
IRJET- An EFficiency and Privacy-Preserving Biometric Identification Scheme i...
byIRJET Journal
 
PDF
Security Issues in Cloud Computing by rahul abhishek
byEr. rahul abhishek
 
PDF
Security policy enforcement in cloud infrastructure
bycsandit
 
PDF
A Security Model for Virtual Infrastructure in the Cloud
byEditor IJCATR
 
PDF
A SECURITY FRAMEWORK IN CLOUD COMPUTING INFRASTRUCTURE
byIJNSA Journal
 
PDF
A Data Sharing Protocol to Minimize Security and Privacy Risks in Cloud Storage
byijtsrd
 
PDF
A proposed Solution: Data Availability and Error Correction in Cloud Computing
byCSCJournals
 
PDF
Secure Channel Establishment Techniques for Homomorphic Encryption in Cloud C...
byIRJET Journal
 
PDF
Enhanced Integrity Preserving Homomorphic Scheme for Cloud Storage
byIRJET Journal
 
PDF
Cloud computing technology security and trust challenges
byijsptm
 
PDF
Role Based Access Control Model (RBACM) With Efficient Genetic Algorithm (GA)...
bydbpublications
 
PDF
Efficient technique for privacy preserving publishing of set valued data on c...
byElavarasaN GanesaN
 
RTF
Secure third party cloud computing services a proposal by shibwabo anyembe
byShibwabo Christopher Anyembe
 
Multi- Level Data Security Model for Big Data on Public Cloud: A New Model
byEswar Publications
 
C017421624
byIOSR Journals
 
Research Paper Digital Forensics on Google Cloud Platform
bySamuel Borthwick
 
Cloud computing and security issues in the
byIJNSA Journal
 
Enhancing Data Storage Security in Cloud Computing Through Steganography
byIDES Editor
 
IRJET- An EFficiency and Privacy-Preserving Biometric Identification Scheme i...
byIRJET Journal
 
Security Issues in Cloud Computing by rahul abhishek
byEr. rahul abhishek
 
Security policy enforcement in cloud infrastructure
bycsandit
 
A Security Model for Virtual Infrastructure in the Cloud
byEditor IJCATR
 
A SECURITY FRAMEWORK IN CLOUD COMPUTING INFRASTRUCTURE
byIJNSA Journal
 
A Data Sharing Protocol to Minimize Security and Privacy Risks in Cloud Storage
byijtsrd
 
A proposed Solution: Data Availability and Error Correction in Cloud Computing
byCSCJournals
 
Secure Channel Establishment Techniques for Homomorphic Encryption in Cloud C...
byIRJET Journal
 
Enhanced Integrity Preserving Homomorphic Scheme for Cloud Storage
byIRJET Journal
 
Cloud computing technology security and trust challenges
byijsptm
 
Role Based Access Control Model (RBACM) With Efficient Genetic Algorithm (GA)...
bydbpublications
 
Efficient technique for privacy preserving publishing of set valued data on c...
byElavarasaN GanesaN
 
Secure third party cloud computing services a proposal by shibwabo anyembe
byShibwabo Christopher Anyembe
 

Viewers also liked

PDF
Bs36418429
byIJERA Editor
 
PDF
Bj36363371
byIJERA Editor
 
PDF
Bc36330333
byIJERA Editor
 
PDF
Ax36300303
byIJERA Editor
 
PDF
B360614
byIJERA Editor
 
PDF
Z36149154
byIJERA Editor
 
PDF
Ab36161166
byIJERA Editor
 
PDF
At36276280
byIJERA Editor
 
PDF
Ak36215227
byIJERA Editor
 
PDF
Bl36378381
byIJERA Editor
 
PDF
Bw36444448
byIJERA Editor
 
PDF
Cp36547553
byIJERA Editor
 
PDF
Ci36507510
byIJERA Editor
 
PDF
Bz36459463
byIJERA Editor
 
PDF
Bn36386389
byIJERA Editor
 
PDF
Ck36515520
byIJERA Editor
 
PDF
Bu36433437
byIJERA Editor
 
PDF
Bk36372377
byIJERA Editor
 
PDF
Cq36554559
byIJERA Editor
 
PDF
Bt36430432
byIJERA Editor
 
Bs36418429
byIJERA Editor
 
Bj36363371
byIJERA Editor
 
Bc36330333
byIJERA Editor
 
Ax36300303
byIJERA Editor
 
B360614
byIJERA Editor
 
Z36149154
byIJERA Editor
 
Ab36161166
byIJERA Editor
 
At36276280
byIJERA Editor
 
Ak36215227
byIJERA Editor
 
Bl36378381
byIJERA Editor
 
Bw36444448
byIJERA Editor
 
Cp36547553
byIJERA Editor
 
Ci36507510
byIJERA Editor
 
Bz36459463
byIJERA Editor
 
Bn36386389
byIJERA Editor
 
Ck36515520
byIJERA Editor
 
Bu36433437
byIJERA Editor
 
Bk36372377
byIJERA Editor
 
Cq36554559
byIJERA Editor
 
Bt36430432
byIJERA Editor
 

Similar to Br36413417

PDF
Security Issues’ in Cloud Computing and its Solutions.
byIJCERT JOURNAL
 
PDF
IJSRED-V2I1P2
byIJSRED
 
PDF
Data Security Model Enhancement In Cloud Environment
byIOSR Journals
 
PDF
Privacy and Integrity Preserving in Cloud Storage Devices
byIOSR Journals
 
PDF
Ensuring secure transfer, access and storage over the cloud storage
byeSAT Publishing House
 
PDF
Ensuring secure transfer, access and storage over the cloud storage
byeSAT Journals
 
PDF
Security and privacy approach of cloud computing
byJahangeer Qadiree
 
PPT
28_Security-Privacy-in_Cloud_AND_real.ppt
bykyogesh5
 
PPT
28_Security-Privacy-inxssudusd_Cloud.ppt
byajinkyajagtap23
 
PDF
Paper id 212014106
byIJRAT
 
PDF
IRJET- Model-Driven Platform for Service Security and Framework for Data ...
byIRJET Journal
 
PDF
Ijarcet vol-2-issue-3-951-956
byEditor IJARCET
 
PDF
Survey of Privacy-preserving Mechanisms and Compliance Frameworks for Secure...
byBRNSSPublicationHubI
 
PDF
An approach for secured data transmission at client end in cloud computing
byIAEME Publication
 
PDF
A Novel Computing Paradigm for Data Protection in Cloud Computing
byIJMER
 
PDF
To Improve Data Storage Security Levels in the Cloud
byrahulmonikasharma
 
PDF
Survey on securing outsourced storages in cloud
byeSAT Publishing House
 
PDF
Survey on securing outsourced storages in cloud
byeSAT Journals
 
PDF
Proposed Model for Enhancing Data Storage Security in Cloud Computing Systems
byHossam Al-Ansary
 
PDF
Cloud Data Protection for the Masses
byIRJET Journal
 
Security Issues’ in Cloud Computing and its Solutions.
byIJCERT JOURNAL
 
IJSRED-V2I1P2
byIJSRED
 
Data Security Model Enhancement In Cloud Environment
byIOSR Journals
 
Privacy and Integrity Preserving in Cloud Storage Devices
byIOSR Journals
 
Ensuring secure transfer, access and storage over the cloud storage
byeSAT Publishing House
 
Ensuring secure transfer, access and storage over the cloud storage
byeSAT Journals
 
Security and privacy approach of cloud computing
byJahangeer Qadiree
 
28_Security-Privacy-in_Cloud_AND_real.ppt
bykyogesh5
 
28_Security-Privacy-inxssudusd_Cloud.ppt
byajinkyajagtap23
 
Paper id 212014106
byIJRAT
 
IRJET- Model-Driven Platform for Service Security and Framework for Data ...
byIRJET Journal
 
Ijarcet vol-2-issue-3-951-956
byEditor IJARCET
 
Survey of Privacy-preserving Mechanisms and Compliance Frameworks for Secure...
byBRNSSPublicationHubI
 
An approach for secured data transmission at client end in cloud computing
byIAEME Publication
 
A Novel Computing Paradigm for Data Protection in Cloud Computing
byIJMER
 
To Improve Data Storage Security Levels in the Cloud
byrahulmonikasharma
 
Survey on securing outsourced storages in cloud
byeSAT Publishing House
 
Survey on securing outsourced storages in cloud
byeSAT Journals
 
Proposed Model for Enhancing Data Storage Security in Cloud Computing Systems
byHossam Al-Ansary
 
Cloud Data Protection for the Masses
byIRJET Journal
 

Recently uploaded

PPTX
Accelerate Innovation with Engineering R&D Services
byChetu
 
PDF
TopMate ES11 3-Wheel Electric Scooter: Comfort, Stability, and Independence f...
byTopmate
 
PDF
Just Eat Data Scraping For Restaurant Reviews And Pricing.pdf
byfusiondata2026
 
PDF
Adding Copilot+ PCs with Snapdragon to your HP fleet won’t require IT deploym...
byPrincipled Technologies
 
PDF
TrustArc Webinar - Unpacking India’s DPDP Act: What You Should Know
byTrustArc
 
PDF
Hart, Inc. M&A Data Transition Checklist
byHart, Inc.
 
PDF
Top 10 Dedicated Server Providers in Stockholm (Updated Edition).pdf
byAtal Networks
 
PPTX
Webinar: EVerest for Production: Accelerating EV Charger Development w/ Indus...
byDanBrown980551
 
PPT
connectives-linking words in English.ppt
byAmrMohammed82
 
PPTX
WIFI Enabled 8 by 32 Matrix.pptx for final year project
bymdsabbirhossain524856
 
PDF
Building Voice Agents with Google Agent Development Kit
bySuresh Peiris
 
PDF
Zniber Partners. Audience Foresight for Confident Decisions
bySamuel Zniber
 
PDF
Are AI Hallucinations Getting Better or Worse? We Analyzed the Data.
byScott M. Graffius
 
PPTX
Storage-and-HCI-Positioning-update-sales.pptx
byhungungphu123
 
PDF
Profiting from Technological Innovation: Managing Intellectual Property to Bu...
byDavid Teece
 
PDF
AI Data Analyst: Smarter Insights for Modern Real Estate Decisions
byLeni Analyst
 
PDF
How Automation Powers Data Quality and Governance at Scale
bySafe Software
 
PDF
Presentation of Cybersecurity and data protection
bytarikaityahya2
 
PPTX
The Abomination of AI – keynote at ICoSCI 2026
byAlan Dix
 
PPTX
Fortify Your Digital Defenses with ServiceNow Security Operations by Suma Soft
byGavin Ellis
 
Accelerate Innovation with Engineering R&D Services
byChetu
 
TopMate ES11 3-Wheel Electric Scooter: Comfort, Stability, and Independence f...
byTopmate
 
Just Eat Data Scraping For Restaurant Reviews And Pricing.pdf
byfusiondata2026
 
Adding Copilot+ PCs with Snapdragon to your HP fleet won’t require IT deploym...
byPrincipled Technologies
 
TrustArc Webinar - Unpacking India’s DPDP Act: What You Should Know
byTrustArc
 
Hart, Inc. M&A Data Transition Checklist
byHart, Inc.
 
Top 10 Dedicated Server Providers in Stockholm (Updated Edition).pdf
byAtal Networks
 
Webinar: EVerest for Production: Accelerating EV Charger Development w/ Indus...
byDanBrown980551
 
connectives-linking words in English.ppt
byAmrMohammed82
 
WIFI Enabled 8 by 32 Matrix.pptx for final year project
bymdsabbirhossain524856
 
Building Voice Agents with Google Agent Development Kit
bySuresh Peiris
 
Zniber Partners. Audience Foresight for Confident Decisions
bySamuel Zniber
 
Are AI Hallucinations Getting Better or Worse? We Analyzed the Data.
byScott M. Graffius
 
Storage-and-HCI-Positioning-update-sales.pptx
byhungungphu123
 
Profiting from Technological Innovation: Managing Intellectual Property to Bu...
byDavid Teece
 
AI Data Analyst: Smarter Insights for Modern Real Estate Decisions
byLeni Analyst
 
How Automation Powers Data Quality and Governance at Scale
bySafe Software
 
Presentation of Cybersecurity and data protection
bytarikaityahya2
 
The Abomination of AI – keynote at ICoSCI 2026
byAlan Dix
 
Fortify Your Digital Defenses with ServiceNow Security Operations by Suma Soft
byGavin Ellis
 

Br36413417

  • 1.
    Noman Mazher etal Int. Journal of Engineering Research and Application ISSN : 2248-9622, Vol. 3, Issue 6, Nov-Dec 2013, pp.413-417 RESEARCH ARTICLE www.ijera.com OPEN ACCESS A Survey on data security models in cloud computing Noman Mazher1 Imran Ashraf2 1 2 Department of Information Technology University of Gujrat, Gujrat Pakistan Lecturer Faculty of CS & IT, University of Gujrat, Gujrat Pakistan Abstract: The world of data computing is becoming larger and complex day by day. Could computing is the most popular model for supporting large and complex data. Organizations are moving toward cloud computing for getting benefit of its cost reduction and elasticity features. However cloud computing has potential riks and vulnerabilities. One of major hurdle in moving to cloud computing is its security and privacy concerns. As in cloud computing environment data is out of user possession this leads to great risk of data integrity, data confidentiality and data vulnerability etc. A number of security models have been developed to cope with these security threats. Our research aims at investigating security models that were developed for securing data during whole lifecycle of cloud computing. Keywords—Cloud computing , data security , security model I. INTRODUCTION The world of computation has becoming larger and complex day by day. Could computing is most popular model for supporting large and complex data. Organizations are moving toward cloud computing for getting benefit of its cost reduction and elasticity features. Yet cloud computing have potential disadvantages and threats. One of the major hurdles in moving to cloud computing is its security and privacy concerns. As in cloud computing environment data is out of user possession this increases the risk of data integrity, data confidentiality etc. To reduce these risks researchers have purposed many security models. In our research we will investigate security models that were developed for securing data during whole lifecycle of cloud computing. The data life cycle is divided into seven stages that are Data generation , data transfer , use , share , storage , archival and destruction (Chen e Zhao, 2012) . In proceeding section we will introduce different security models purposed for different security threats. II. RELATED WORKS Cloud computing collects all the computing resources and manages them automatically through software. The historical data and present data are integrated to make the collected information more accurate. In this way cloud computing provides more intelligent service to the users. The users are not bothered about how to buy a server or solution. Instead they can buy the computing resources on the internet according to their need. However cloud computing emerge as promising technology in order www.ijera.com to provide the services remotely. But there are many security issues in cloud computing. For example in February, 2010, the Amazon network host service, S3 (Simple Storage Service) was broken down for 4 hours. This made people think about the security of cloud computing again. Since Amazon provides S3, it has attracted a lot of entrepreneur on Web 2.0 put their website on the data center of Amazon to save a large hardware investment (Zhang et al., 2010). So the service of cloud computing is not stable and believable. Security is still a major concern in cloud computing and one of the reason that’s why cloud computing is still not admitted by the users. To improve security of cloud many models have been purposed. User would like to know which security scheme they should implement for securing our data. Comparison of these security schemes have also been done by many researchers such as Farzad Sabahi discuss many security problems to cloud computing against these problems. (Sabahi, 2011) . In this section we will introduce different security models which were purposed by different researchers. We will also tell about each security model that in which layer it works. A. Private Virtual Infrastructure (PVI): This model is proposed by F.John Krothein .(Author Guidelines for 8 - krautheim.pdf, 2013) In this model he addresses risks associated with data. As in cloud computing data is out of control of organization so privacy and security of data is the major concern of the organizations. PVI ensures security of data while transferring data from client to service provider and vice versa. Main purpose of PVI is to secure data during its transfer stage. In this 413 | P a g e
  • 2.
    Noman Mazher etal Int. Journal of Engineering Research and Application ISSN : 2248-9622, Vol. 3, Issue 6, Nov-Dec 2013, pp.413-417 www.ijera.com purposed architecture data security is ensured with the help of two layers: PVI layer and cloud fabric layer. PVI layer: Datacenter of PVI is controlled by information owner. Each client is responsible of security of data through firewall, intrusion detection system and other monitoring and logging system to ensure that data is confidential. Cloud fabric layer: Cloud datacenter or fabrics are controlled by cloud service provider. This layer is responsible of maintaining physical and logical security of data. They ensure the security through security tools. Another tool Locator Botprovider is also used. Locator Botprovider provides details of all activities by monitoring the cloud security. He claims that locator Botprovider will also ensure security during destruction stage of data. This architecture is general and does not restrict itself to any specific XaaS (IaaS, PaaS, and SaaS) service. It is a suggested architecture and there is no implementation detail provided. Fig 1: cloud data storage service (Wang et al., 2010) Third Party Auditor (TPA) is pivotal point in this architecture as he has expertise and experience of auditing data. TPA can send regular audit reports of data. From those report user can evaluate that either his data is going securely on cloud or not. To show the performance of the proposed model a mathematical notational proof is provided as well. However no implementation detail in any domain is provided. This architecture can be used for all XaaS (IaaS, PaaS, and SaaS) services. infrastructure for sensitive, private data and computation, while integrating public clouds for no sensitive, public data and computation. In this paper the purposed model Hybprex is also implemented in a specific environment called Mapreduce. Mapreduce is a programming model used to execute large dataset with parallel algorithm. C. Cloud data storage security scheme: This scheme is developed by Syed Azahad and Mr.Srinivas Rao(Azhad e Rao). In this scheme their main focus is on data storage security. This scheme is developed with SaaS in mind. This scheme addresses the correctness of data in the cloud environment. In this scheme they use homomorphic token with distributed verification. They claim to achieve integration of correctness of storage data and error localization of data. They also give security analysis and the results of their analysis with the help of graphs. D. Hypbrex (Hybrid Execution) model: Steven.Y.Ko et.al purposed that model (Ko, Jeon e Morales, 2011). The HybrEx model provides a seamless way for an organization to utilize their own www.ijera.com B. Privacy-preservation public Auditing: This model is purposed by Cong-wang et...al. (Wang et al., 2010)This architecture is suggested typically for securing data of cloud during during storage stage. In prototype of this model he takes three entities 1) cloud user 2) cloud server 3) cloud service provider. Fig 2: Architecture of Hypbrex model (Azhad e Rao) Hypbrex model typically worsk on storage stage of data. For ensuring integrity of data on public cloud he purposed to maintain hashes of public data in private cloud. With the help of these hashing algorithms hybprex can validate integrity of both public and private data 414 | P a g e
  • 3.
    Noman Mazher etal Int. Journal of Engineering Research and Application ISSN : 2248-9622, Vol. 3, Issue 6, Nov-Dec 2013, pp.413-417 E. . Airavat : Indraji roy et al purposed that model for security and privacy for Mapreduce .(Untitled - roy.pdf, 2013) Mapreduce is a programming model used to execute large dataset with parallel algorithm. Airavat guarantees to bound information leakage from any individual data that is computed over mapreduce.. Fig 3 : Architecture of mapreduce (Roy et al., 2010) In this paper they implemented Airavat on mapreduce environment and gave the result with the help of graphs .Airavat provides security on data storage stage. F. Integrated conceptual digital forensic framework This paper is written by Ben Martenie (An integrated conceptual digital forensic framework for cloud computing - r_6_130217100243.pdf, 2013) . In this paper he integrates two framework of digital forensics. These two frameworks are McKemmish (1999) and NIST (Kent et al., 2006) . This framework is analyzed with help of survey and questioner. These frameworks are work for data security in data transfer stage. G. Insider Threat remedies: William R.ClayComb discussed a series of security threats which are associated to cloud Fig 4: Overview of POR process (ProvingRetrievability-and-Possession-within-the-CloudStorage-Model.pdf, 2013) 2) PDP (Proving data possession) www.ijera.com www.ijera.com computing in general and data security in specific. A general data security threat is insider threat.(Claycomb e Nicoll, 2012) Insider threat is commonly known as “Rouge Administrator” threat. According to definition of CERT insider threat is “current or former employee, contractor, or other business partner who has or had authorized access to an organizations network, system or data and intentionally exceeded or misused that access in a manner that negatively affected the confidentiality, integrity, or availability of the organizations information or information systems.” They gave the following suggestions to prevent our data from insider threat:  Enforce strict supply chain management and conduct a comprehensive supplier assessment.  Specify human resource requirements as part of legal contracts.  Require transparency into overall information security and management practices, as well as compliance reporting.  Determine security breach notification processes. Insider threat or “rogue administrator” threat can be categorized on data storage stage of cloud computing. H. POR and PDP: Jeff WhiteWorth discussed two issue of SaaS storage model (Proving-Retrievability-and-Possessionwithin-the-Cloud-Storage-Model.pdf, 2013). 1) POR (Prove of Retrievability ) First issue is Prove of Retrievability. This means that user should have any proof that data stored on Cloud storage device can be retrieved without any error or loss, when needed. Solution provided for POR is to use hash function on data. So data is sent in encrypted state. When original data owner or prover wants to retrieve data from cloud service provider or verifier he can ensure that data which are retrieved are same as sent for storing . Provable data possession (PDP) refers to the ability of a client to verify that data stored with a server still possesses the data without retrieving it. The building block of the proposed PDP scheme utilizes 415 | P a g e
  • 4.
    Noman Mazher etal Int. Journal of Engineering Research and Application ISSN : 2248-9622, Vol. 3, Issue 6, Nov-Dec 2013, pp.413-417 Homomorphic Verifiable Tags (HVTs) that are, in the most basic concept, metadata stored with the file that provides unforgeable data tags used for verification. These building blocks are utilized in the four main polynomial-time algorithms used in the PDP scheme: KeyGen, TagBlock, GenProof and www.ijera.com CheckProof. The first two algorithms are used in the scheme setup to produce public and secret keys as well as HVTs. GenProof is used by the server to generate a proof in response to the challenge sent by the client and CheckProof is used by the client to verify the proof generated by the server. Fig 5: PDP overview (Proving-Retrievability-andPossession-within-the-Cloud-Storage-Model.pdf, 2013) Both of these approaches address data security at storage stage. I. Transparent Table encryption Technique: Ms. Ankita Parkash et al purposed an oracle storage based technique for ensuring data security in cloud computing (Baheti e Patil, 2013). This technique ensures the reliability of data that is stored in cloud environment. Fig 6: Working diagram of proposed system (Baheti e Patil, 2013) In this approach they purposed a novel approach of storing data. As user data is stored on any particular cloud so we divide that particular cloud into four groups or region R0, R1, R3 and R3. When user stores his file on cloud his file is partitioned in four parts. A segment file is maintained for each file. www.ijera.com Fig 7: segment table (Baheti e Patil, 2013) Here Base represents the starting address of segment in memory. The bound represents end address of the segment. Rw field represents read and write access of that segment. This all work will be done on cloud administrator side. Cloud administrator encrypts entries of segment table. When user wants to retrieve their data cloud administrator will decrypt that segment table entries and with the help of base and bound address gets user data and sends it to the user. So in this way user data can be secured in cloud environment. This technique also addresses security threats at data storage stage. III. CONCLUSION In this research we analyzed different security models that were purposed for different stages of data in cloud computing. It presents a comprehensive report on different security models which has been purposed so far. For securing data on different stages of data lifecycle different security models can be implemented within different perspectives. Confidentiality is an immense concern of data security. To ensure users confidentiality Hypbrex model can be implemented as it is developed by taking confidentiality in mind specifically. While in the environment where information leakage is more important Airavat is the best suit. If data will have to store for long time their Proof of reliability and proof of data possession is very important. So model of OR 416 | P a g e
  • 5.
    Noman Mazher etal Int. Journal of Engineering Research and Application ISSN : 2248-9622, Vol. 3, Issue 6, Nov-Dec 2013, pp.413-417 and PDP scheme presented is best suited in scenario where data will have to store for a long time. Reliability of stored data is very important for user. Transport Table Encryption Scheme is best suited for ensuring reliability of data. Cloud computing security scheme can be used where integration and correctness of data is important. Transfer of data during client to server can be secured using PVI model. [12] [13] www.ijera.com WANG, C. et al. Privacy-preserving public auditing for data storage security in cloud computing. INFOCOM, 2010 Proceedings IEEE, 2010, IEEE. p.1-9. ZHANG, S. et al. Cloud computing research and development trend. Future Networks, 2010. ICFN'10. Second International Conference on, 2010, IEEE. p.93-97. References: [1] [2] [3] [4] [5] [6] [7] [8] [9] [10] [11] http://www.ccbc.ir/files_site/files/r_6_13021 7100243.pdf >. Author Guidelines for 8 - krautheim.pdf. 2013. Disponível em: < http://static.usenix.org/event/hotcloud09/tec h/full_papers/krautheim.pdf >. AZHAD, S.; RAO, M. S. Ensuring Data Storage Security in Cloud Computing. BAHETI, A. P.; PATIL, S. V. Cloud Security Based On Oracle Storage Using Transparent Table Encryption Technique. IJCER, v. 2, n. 2, p. 132-136, 2013. ISSN 2278-5795. CHEN, D.; ZHAO, H. Data security and privacy protection issues in cloud computing. Computer Science and Electronics Engineering (ICCSEE), 2012 International Conference on, 2012, IEEE. p.647-651. CLAYCOMB, W. R.; NICOLL, A. Insider Threats to Cloud Computing: Directions for New Research Challenges. Computer Software and Applications Conference (COMPSAC), 2012 IEEE 36th Annual, 2012, IEEE. p.387-394. KO, S. Y.; JEON, K.; MORALES, R. The hybrex model for confidentiality and privacy in cloud computing. Proceedings of the 2011 conference on Hot topics in Cloud Computing. USENIX Association, Portland, OR, 2011. Proving-Retrievability-and-Possessionwithin-the-Cloud-Storage-Model.pdf. 2013. Disponível em: < http://www.whitworthtech.com/sysadmin/w p-content/uploads/2012/07/ProvingRetrievability-and-Possession-within-theCloud-Storage-Model.pdf >. ROY, I. et al. Airavat: Security and Privacy for MapReduce. NSDI, 2010. p.297-312. SABAHI, F. Cloud computing security threats and responses. Communication Software and Networks (ICCSN), 2011 IEEE 3rd International Conference on, 2011, IEEE. p.245-249. Untitled - roy.pdf. 2013. Disponível em: < https://www.usenix.org/legacy/event/nsdi10/ tech/full_papers/roy.pdf >. www.ijera.com 417 | P a g e