Vasanth Ganesan, profile picture
Uploaded byVasanth Ganesan
PPTX, PDF699 views

Cloud Computing - Security (BIG Data)

Cloud computing provides opportunities for operational efficiency and scalability but also poses security risks. Key security concerns include weak trust boundaries as data is shared, lack of transparency around data collection and monitoring, and inadequate identity and access management. Privacy is also a concern as data moves outside an organization's control and across legal jurisdictions with inconsistent privacy laws. Customers should ask cloud providers detailed questions about their security certifications, data protection practices, key management, and control monitoring to understand how provider addresses these risks.

Embed presentation

Downloaded 37 times
Cloud Computing Security – The BIG Data Vasanth Ganesan MS Telecommunications & Business University of Maryland, College Park
What is Cloud Computing? Its all about “Sharing”
Like with anything new, the primary concern is security RISKS are ALWAYS there!
Low Cloud Security Concerns High SaaS PaaS IaaS The Stack Operational Efficiency Low High
Security Risks & Potential Opportunities
What are your main concerns in your approach to Cloud Computing? Source: ENISA – An SME Perspective on Cloud, 2009
Security Snap Copy Mount Yesterday Today
In Brief – “Data” • Trust Boundary • Data Security • Identity and Access Management (IAM) • Privacy Considerations Information Assurance Concerns CSA Security Guidance v2.1
Trust Boundary • Trust Boundaries have changed with cloud computing • Note: Different cloud providers might have different trust boundaries • Data barriers • Need for transparency Governance Enterprise Risk Management Compliance and Audit Source: Cloud Security and Privacy – Tim Mather
Data Security • Provider’s data collection efforts and monitoring of such • Use of encryption – Data in Transit – Data at Rest – Key management is a significant issue • Data lineage • Data provenance • Data remanence Information Lifecycle Management Encryption and Key Management Compliance and Audit Source: Cloud Security and Privacy – Tim Mather
Identity and Access Management • One of the biggest challenges today • Currently inadequate for Enterprises • Access Control tool Identity and Access Management Traditional security Compliance and Audit Source: Cloud Security and Privacy – Tim Mather
Privacy Considerations • Data is no longer static • Transborder data issues may be exacerbated – Privacy laws (inconsistent among different jurisdictions) • Data governance is weak – Encryption is not pervasive – Cloud Providers absolve themselves – Data remanence still is a “?” Information Lifecycle Management Traditional security Compliance and Audit Source: Cloud Security and Privacy – Tim Mather
Then why the Cloud? Lowers Time to TCO Market Focus on Core Scalability Business Flexibility
Potential Questions from the Clients • Does the provider hold certifications such as ISO 27001/2, SAS 70? If yes, what is the scope of the certifications? • Does the provider share with the physical location of the servers? • To what extent are storage, memory and other data traces erased from the machines before being reallocated to a different customer? i.e. Data remanence • Does the provider support the data classification scheme used? • How does the provider guarantee isolation of resources from other customers? • Learn from the Cloud service provider (CSP) about key management. Who handles and manages the key? • How does the CSP report on its security management? • Does the CSP have an analytics tool to monitor your cloud? • What are the CSP’s control monitoring processes? • Is your data bound by local jurisdiction?

More Related Content

PDF
110307 cloud security requirements gourley
byGovCloud Network
 
PPTX
Trend micro data protection
byAndrew Wong
 
PPT
Information Security Management.Introduction
byyuliana_mar
 
PPTX
Extending security in the cloud network box - v4
byValencell, Inc.
 
PPTX
Everyone is talking Cloud - How secure is your data?
byBianca Mueller, LL.M.
 
PDF
RSA Presentation - 5 Steps to Improving PCI Compliance
byEMC
 
PPTX
Symantec Enterprise Mobility Enhancements
bySymantec
 
PDF
Data Loss Prevention: Brainstorming
bylkcyber
 
110307 cloud security requirements gourley
byGovCloud Network
 
Trend micro data protection
byAndrew Wong
 
Information Security Management.Introduction
byyuliana_mar
 
Extending security in the cloud network box - v4
byValencell, Inc.
 
Everyone is talking Cloud - How secure is your data?
byBianca Mueller, LL.M.
 
RSA Presentation - 5 Steps to Improving PCI Compliance
byEMC
 
Symantec Enterprise Mobility Enhancements
bySymantec
 
Data Loss Prevention: Brainstorming
bylkcyber
 

What's hot

PDF
Symantec Data Loss Prevention 11
bySymantec
 
PPT
Data Classification And Loss Prevention
byNicholas Davis
 
PPT
Lecture Data Classification And Data Loss Prevention
byNicholas Davis
 
PPTX
Cloud computing security
bygangal
 
PPTX
Disaster recovery
bySameeu Imad
 
PPTX
Information and Identity Protection - Data Loss Prevention, Encryption, User ...
bySymantec APJ
 
PDF
Ciso executive forum 2013
byBill Burns
 
PDF
Security and privacy of cloud data: what you need to know (Interop)
byDruva
 
PDF
Cloud data governance, risk management and compliance ny metro joint cyber...
byUlf Mattsson
 
PPTX
Enterprise API Security & Data Loss Prevention - Intel
byIntel - API Security & Tokenization
 
PPTX
Cyber security within Organisations: A sneaky peak of current status, trends,...
byMarco Casassa Mont
 
PPTX
3 Executive Strategies to Reduce Your IT Risk
byLumension
 
PPT
The Datacenter Security Continuum
byMartin Hingley
 
PDF
ISACA Cloud Computing Risks
byMarc Vael
 
PDF
Mergers & Acquisitions security - (ISC)2 Secure Summit DACH
byEQS Group
 
PDF
SECURING THE CLOUD DATA LAKES
byHappiest Minds Technologies
 
PPT
[EB100510] Evelyn del Monte: Context-Aware and Adaptive Security
byComputerworld Philippines
 
Symantec Data Loss Prevention 11
bySymantec
 
Data Classification And Loss Prevention
byNicholas Davis
 
Lecture Data Classification And Data Loss Prevention
byNicholas Davis
 
Cloud computing security
bygangal
 
Disaster recovery
bySameeu Imad
 
Information and Identity Protection - Data Loss Prevention, Encryption, User ...
bySymantec APJ
 
Ciso executive forum 2013
byBill Burns
 
Security and privacy of cloud data: what you need to know (Interop)
byDruva
 
Cloud data governance, risk management and compliance ny metro joint cyber...
byUlf Mattsson
 
Enterprise API Security & Data Loss Prevention - Intel
byIntel - API Security & Tokenization
 
Cyber security within Organisations: A sneaky peak of current status, trends,...
byMarco Casassa Mont
 
3 Executive Strategies to Reduce Your IT Risk
byLumension
 
The Datacenter Security Continuum
byMartin Hingley
 
ISACA Cloud Computing Risks
byMarc Vael
 
Mergers & Acquisitions security - (ISC)2 Secure Summit DACH
byEQS Group
 
SECURING THE CLOUD DATA LAKES
byHappiest Minds Technologies
 
[EB100510] Evelyn del Monte: Context-Aware and Adaptive Security
byComputerworld Philippines
 

Viewers also liked

PDF
Cloud Computing - ISO/IEC 17788
byHamid Reza Qavami
 
PDF
The Latest in Cloud Computing Standards
byCA API Management
 
PPTX
Mobile jammer
byKomal Srivastava
 
PPT
bluetooth-security
byAnand Dhana
 
PPTX
IEEE 802.11 WIRELESS
byAllan Rodrigues Santiago
 
PDF
Privacy Preserving Access Control for Third Party Data Management Systems
byNabeel Yoosuf
 
Cloud Computing - ISO/IEC 17788
byHamid Reza Qavami
 
The Latest in Cloud Computing Standards
byCA API Management
 
Mobile jammer
byKomal Srivastava
 
bluetooth-security
byAnand Dhana
 
IEEE 802.11 WIRELESS
byAllan Rodrigues Santiago
 
Privacy Preserving Access Control for Third Party Data Management Systems
byNabeel Yoosuf
 

Similar to Cloud Computing - Security (BIG Data)

PDF
Cloud Security And Privacy
bytmather
 
PPTX
Enterprise Security in Hybrid Cloud ISACA-SV 2012
bySymosis Security (Previously C-Level Security)
 
PPTX
Enterprise Security in Cloud
byLenin Aboagye
 
PPTX
cloud computer security fundamentals Unit-5.pptx
bySuryaBasnet3
 
PDF
Essentials of Network and Cloud Security.pptx.pdf
byapurvar399
 
PPT
The Future of Identity in the Cloud: Requirements, Risks and Opportunities - ...
bygueste4e93e3
 
PPTX
security and compliance in the cloud
byAjay Rathi
 
PPTX
Building a Secure Cloud with Identity Management
byOracleIDM
 
PPT
Cloud Security: Trust and Transformation
byPeter Coffee
 
PPTX
2012-01 How to Secure a Cloud Identity Roadmap
byRaleigh ISSA
 
PDF
Security of,for & by cloud
byLakshmi Subramanian
 
PDF
Od webcast-cloud-fraud final
byOracleIDM
 
PDF
Cloud Webinar Neiditz Weitz Mitchell Goodman
byjonneiditz
 
PDF
Data Privacy And Security Issues In Cloud Computing.pdf
byCiente
 
DOCX
UNIT -V.docx
byRevathiparamanathan
 
PPT
Lecture31.ppt
byamanyosama21
 
PPT
Presentation to Irish ISSA Conference 12-May-11
byMichael Ofarrell
 
PDF
Cloud Computing Webinar: Legal & Regulatory Update for 2012
byitandlaw
 
PDF
Security Issues for Cloud Applications
byGuillermo Remache
 
DOCX
Is Cloud Computing Secure - Everything Need to Know.docx
byTiInfotech
 
Cloud Security And Privacy
bytmather
 
Enterprise Security in Hybrid Cloud ISACA-SV 2012
bySymosis Security (Previously C-Level Security)
 
Enterprise Security in Cloud
byLenin Aboagye
 
cloud computer security fundamentals Unit-5.pptx
bySuryaBasnet3
 
Essentials of Network and Cloud Security.pptx.pdf
byapurvar399
 
The Future of Identity in the Cloud: Requirements, Risks and Opportunities - ...
bygueste4e93e3
 
security and compliance in the cloud
byAjay Rathi
 
Building a Secure Cloud with Identity Management
byOracleIDM
 
Cloud Security: Trust and Transformation
byPeter Coffee
 
2012-01 How to Secure a Cloud Identity Roadmap
byRaleigh ISSA
 
Security of,for & by cloud
byLakshmi Subramanian
 
Od webcast-cloud-fraud final
byOracleIDM
 
Cloud Webinar Neiditz Weitz Mitchell Goodman
byjonneiditz
 
Data Privacy And Security Issues In Cloud Computing.pdf
byCiente
 
UNIT -V.docx
byRevathiparamanathan
 
Lecture31.ppt
byamanyosama21
 
Presentation to Irish ISSA Conference 12-May-11
byMichael Ofarrell
 
Cloud Computing Webinar: Legal & Regulatory Update for 2012
byitandlaw
 
Security Issues for Cloud Applications
byGuillermo Remache
 
Is Cloud Computing Secure - Everything Need to Know.docx
byTiInfotech
 

Recently uploaded

PPTX
Cybersecurity Basics: Understanding Threats, Protection Methods, and Safe Dig...
byDhruvManiar3
 
PDF
Strengthening cybern resilience for a leading indian Financial Services group
bypandeydevika621
 
PDF
Artificial Intelligence(AI) full Book.pdf
bydeyanimesh299
 
PDF
Azure Identity, Governance, and Monitoring solutions
byVICTOR MAESTRE RAMIREZ
 
PDF
How to Connect HP LaserJet MFP M234dwe to WiFi
byPrinter Tales
 
PDF
Industrial RFID Landscape for 2025 - Readers, Tags, Antennas, Printers, etc
byRich Rogers
 
PDF
The map to conquer linear algebra for IT engineer
byakipii ogaoga
 
PPTX
Search Engine Responses to Conspiratorial Search Practices AANZCA 2025 Presen...
bykkasianenko
 
PDF
Unit 1.2 Components of a Computer System.pdf
bySanieBautista
 
PDF
Digital Marketing Trends in 2026: AI, Data, Content & Future Growth
byConacent Consulting
 
PDF
AI Driven & AI Native Development AI native development
byZainKarim7
 
PDF
“Lessons from Yesterday's Tomorrowland” by Scott M. Graffius
byScott M. Graffius
 
PPTX
Compare and contrast types of attacks.pptx
bysyednaqihassan14
 
PPTX
Document Reconstruction using AI & Deep Learning
bysonjuktaweb
 
PDF
Small Business Automation: A Comprehensive Cost and ROI Guide
byAmelia Swank
 
PDF
MAD (1).pdf Mobile application develipment
byprathiT1
 
PDF
Regenerative Agriculture Finance : Environmental impact
byrose mason
 
PDF
IAI-Unit1-notes useful.............................
bydinesh620610
 
PPTX
Salesforce Spring 26 Release Key .pptx
byMehediHasan939830
 
PPTX
Cesium formate brine - A brief history - prepared by John Downs in May 2011
byJohn Downs
 
Cybersecurity Basics: Understanding Threats, Protection Methods, and Safe Dig...
byDhruvManiar3
 
Strengthening cybern resilience for a leading indian Financial Services group
bypandeydevika621
 
Artificial Intelligence(AI) full Book.pdf
bydeyanimesh299
 
Azure Identity, Governance, and Monitoring solutions
byVICTOR MAESTRE RAMIREZ
 
How to Connect HP LaserJet MFP M234dwe to WiFi
byPrinter Tales
 
Industrial RFID Landscape for 2025 - Readers, Tags, Antennas, Printers, etc
byRich Rogers
 
The map to conquer linear algebra for IT engineer
byakipii ogaoga
 
Search Engine Responses to Conspiratorial Search Practices AANZCA 2025 Presen...
bykkasianenko
 
Unit 1.2 Components of a Computer System.pdf
bySanieBautista
 
Digital Marketing Trends in 2026: AI, Data, Content & Future Growth
byConacent Consulting
 
AI Driven & AI Native Development AI native development
byZainKarim7
 
“Lessons from Yesterday's Tomorrowland” by Scott M. Graffius
byScott M. Graffius
 
Compare and contrast types of attacks.pptx
bysyednaqihassan14
 
Document Reconstruction using AI & Deep Learning
bysonjuktaweb
 
Small Business Automation: A Comprehensive Cost and ROI Guide
byAmelia Swank
 
MAD (1).pdf Mobile application develipment
byprathiT1
 
Regenerative Agriculture Finance : Environmental impact
byrose mason
 
IAI-Unit1-notes useful.............................
bydinesh620610
 
Salesforce Spring 26 Release Key .pptx
byMehediHasan939830
 
Cesium formate brine - A brief history - prepared by John Downs in May 2011
byJohn Downs
 

Cloud Computing - Security (BIG Data)

  • 1.
    Cloud Computing Security –The BIG Data Vasanth Ganesan MS Telecommunications & Business University of Maryland, College Park
  • 2.
    What is CloudComputing? Its all about “Sharing”
  • 3.
    Like with anythingnew, the primary concern is security RISKS are ALWAYS there!
  • 4.
    Low Cloud Security Concerns High SaaS PaaS IaaS The Stack Operational Efficiency Low High
  • 5.
    Security Risks & Potential Opportunities
  • 6.
    What are yourmain concerns in your approach to Cloud Computing? Source: ENISA – An SME Perspective on Cloud, 2009
  • 7.
    Security Snap Copy Mount Yesterday Today
  • 8.
    In Brief –“Data” • Trust Boundary • Data Security • Identity and Access Management (IAM) • Privacy Considerations Information Assurance Concerns CSA Security Guidance v2.1
  • 9.
    Trust Boundary • Trust Boundaries have changed with cloud computing • Note: Different cloud providers might have different trust boundaries • Data barriers • Need for transparency Governance Enterprise Risk Management Compliance and Audit Source: Cloud Security and Privacy – Tim Mather
  • 10.
    Data Security • Provider’s data collection efforts and monitoring of such • Use of encryption – Data in Transit – Data at Rest – Key management is a significant issue • Data lineage • Data provenance • Data remanence Information Lifecycle Management Encryption and Key Management Compliance and Audit Source: Cloud Security and Privacy – Tim Mather
  • 11.
    Identity and AccessManagement • One of the biggest challenges today • Currently inadequate for Enterprises • Access Control tool Identity and Access Management Traditional security Compliance and Audit Source: Cloud Security and Privacy – Tim Mather
  • 12.
    Privacy Considerations • Data is no longer static • Transborder data issues may be exacerbated – Privacy laws (inconsistent among different jurisdictions) • Data governance is weak – Encryption is not pervasive – Cloud Providers absolve themselves – Data remanence still is a “?” Information Lifecycle Management Traditional security Compliance and Audit Source: Cloud Security and Privacy – Tim Mather
  • 13.
    Then why theCloud? Lowers Time to TCO Market Focus on Core Scalability Business Flexibility
  • 14.
    Potential Questions fromthe Clients • Does the provider hold certifications such as ISO 27001/2, SAS 70? If yes, what is the scope of the certifications? • Does the provider share with the physical location of the servers? • To what extent are storage, memory and other data traces erased from the machines before being reallocated to a different customer? i.e. Data remanence • Does the provider support the data classification scheme used? • How does the provider guarantee isolation of resources from other customers? • Learn from the Cloud service provider (CSP) about key management. Who handles and manages the key? • How does the CSP report on its security management? • Does the CSP have an analytics tool to monitor your cloud? • What are the CSP’s control monitoring processes? • Is your data bound by local jurisdiction?

Editor's Notes

  • #3 Notes: Cloud Computing is not a technology. Its all about “sharing”. For a more elaborative definition, please refer to your white paper. :D
  • #5 Compare it to an OSI modelOperational efficiency increases as you go down the stack/Decreasing CSP’s responsibility as you go down the stackSecurity concerns increase as you go up the stack/Increasing CSP responsibility as you go down the stack
  • #8 Remember the email server or payroll system that you virtualized? Someone with administrator access to your virtual environment could easily swipe it and all the data without anybody knowing. Stealing a physical server out of a data center is very difficult and is sure to be noticed, stealing a virtual machine (VM), however, can be done from anywhere on your network, and someone could easily walk out with it on a flash drive in their pocket. Virtualization offers many benefits over physical servers, but there are some pitfalls you should be aware of and protect against to avoid losing sensitive data. Because a virtual machine is encapsulated into a single virtual disk file that resides on a virtual host server it is not all that difficult for someone with the appropriate access to make a copy of that disk file and access any of the data on it.
  • #10 In cloud computing, there are no more data barriers. Separation of data is all logical. How does the CSO assure the consumer that the security is being taken care of, the way it was promised. What is the consumer responsible for?How do the CSPs report on security? Reporting and Management.
  • #11 NotesThere is no physical separation between data sets of different customers.Point to multi point data in transit is an issue Data at rest possibly not encrypted Key Management – who handles and manages the key? Where is it stored? Data Lineage – Where does the data come from? How does it traverse? Where is it processed? Data Provenance – To prove that processing was done right. If data lineage is not possible, data remanence would be much more difficult to achieve. Data Remenace – To make sure that the data is gone from the cloud. The challenge is in a enterprise environment where 20% of the hard disks crash. How do make sure this data is wiped? How do you prove it to your auditors (who follow NIST) that you have
  • #12 Does the Cloud Provider have an analytical tool? (e.g. Amazon Cloudwatch)Major IAM functionsIdentity provisioning/deprovisioningAuthenticationFederation (using IdP)AuthorizationIdentity provisioning – onboarding and offboarding users onto the cloud
  • #15 Reference: Cloud security guidelines CSA