Data security in the cloud is important to protect business environments, identities, transactions, and data from breaches or attacks. Basic questions around who has access, where data is placed, and what encryption is used must be addressed. While protecting cloud data does not require new techniques, authentication and identity management, data categorization, and encryption are key methods. Authentication confirms user access, categorization helps determine sensitive data needing extra protection, and encryption scrambles data to prevent unauthorized viewing. Different encryption options exist like full disk, directory level, and file level approaches.
3. Basic Questions should be concern for data
security:
-who have access to my data?
-where to place data?
-which encryption should use for data?
4. Why we need data security?
-secure business environment
-to secure identity of the
individual.
-to provide secure transaction.
-to secure data from being
breaching or attack.
5. The Big Data Breaches
February 2014
140,000,000 login credentials
April 2014
2,400,000 user information compromised
September 2014
5,000,000 usernames and password published on Russian
forum
6. Techniques for protecting data in the
clouds
-Protection data on clouds not required new
technique.
-Protecting data in the cloud can be similar to
protecting data within traditional data center.
-Main method for data security on cloud:
• Authentication and Identity
• Data catogrization
• Encryption to data
7. Data security method: Authentication &
Identity
-Authentication and identity helps in
maintaining confidentiality, integrity,
availability and data security.
-This method implement access control and
authentication of user (individual or
community)
-Authentication is done by user name,
password and security questions.
-Stronger Authentication can be done by
giving two level of authentication example
password and finger print.
8. Data security method: Data Categorization
-It is very important to understand the
nature of the information that means how
much data is sensitive or otherwise
valuable.
-categorization of data labelling such as
unclassified data, confidential secret data
and top secret data.
-Categorization helps in giving file
permission, encryption etc.
9. Data Security Method : Encryption
-Encryption is the key component to protect
data.
-Stronger Encryption needed to protect data
from the third parties (hacker).
-If third party get the data then also they
should not be able to crack it.
-different algorithms for encryption are :
• RSA
• DES
• Deffie Helmen
• SHA
10. Continue….
Different method of Encryption :
• Full Disk:
-Encryption of data at disk level.
-All data and application in the disk are encrypted.
-It can reduce the performance of the server
• Directory level:
-In this use of encryption entire data directories are
encrypted.
-this encryption is done after the categorization of
data.
• File Level:
-Rather than encrypting entire hard drive or even a
directory, it can be more efficient to encrypt individual
files.