Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.
Security 
in 
the 
Cloud 
Prabath 
Siriwardena 
Isura 
Karunaratne 
Last Updated: Nov 2014
*
Virtualiza:on
Virtualiza:on
Service 
Oriented 
Architecture
Grid 
Compu:ng
• Cassandra 
ecibrxalt(eeetx:cnp 
hIedSr 
i 
imcneagnn 
tea 
lbx) 
• fsErtxootmreen 
,ss 
eis 
Gconng 
fiugsuerre 
sdt 
ot...
Deployment 
Models 
• Private 
Cloud 
Model 
-­‐ 
Enterprise 
owned 
or 
leased 
• Public 
Cloud 
Model 
-­‐ 
Accessible 
...
• Cassandra 
• fsErtxootmreen 
,ss 
Ke r beros 
suport 
•K 
Cloud 
Service 
Models 
• SaaS 
• PaaS 
• IaaS 
ecibrxalt(eeet...
Service 
Delivery 
by 
Provider
Service 
Delivery 
by 
Provider
Service 
Delivery 
by 
Provider
Service 
Delivery 
by 
Provider
Service 
Delivery 
by 
Provider
Service 
Delivery 
by 
Deployment
Service 
Delivery 
by 
Deployment
Cloud 
Under 
AFack
AFacks 
from 
the 
Cloud
Weakest 
Link
Mul:-­‐tenancy
Mul:-­‐tenancy 
within 
an 
Organiza:on
Mul:-­‐tenancy
Data 
Isola:on 
– 
Separated 
DBs
Data 
Isola:on 
Shared 
DB/Separate 
Schema
Data 
Isola:on 
Shared 
DB/Shared 
Schema
Data 
Access 
PaFerns
Data 
Access 
PaFerns
Data 
Access 
PaFerns
Data 
Access 
PaFerns
Data 
Access 
PaFerns
Data 
Security
Data 
Security
Homomorphic 
Encryp:on
Cloud 
Security 
Requirements
Top 
Threats 
to 
Cloud 
Compu:ng 
• Data 
Breaches 
• Data 
Loss 
• Account 
Hijacking 
• Insecure 
APIs 
• DoS 
• Malici...
Contact 
us 
!
Upcoming SlideShare
Loading in …5
×

Cloud security

  • Be the first to comment

Cloud security

  1. 1. Security in the Cloud Prabath Siriwardena Isura Karunaratne Last Updated: Nov 2014
  2. 2. *
  3. 3. Virtualiza:on
  4. 4. Virtualiza:on
  5. 5. Service Oriented Architecture
  6. 6. Grid Compu:ng
  7. 7. • Cassandra ecibrxalt(eeetx:cnp hIedSr i imcneagnn tea lbx) • fsErtxootmreen ,ss eis Gconng fiugsuerre sdt otroe lse over riamgpel eamnye unsGenrg Ke r beros suport •K Infrastructure • Hypervisor • Management So3ware • Deployment So3ware • Network • Server • Storage
  8. 8. Deployment Models • Private Cloud Model -­‐ Enterprise owned or leased • Public Cloud Model -­‐ Accessible to general public • Hybrid Cloud Model -­‐ Composi6on of private and public cloud • Community Cloud Model -­‐ Shared infrastructure for specific community
  9. 9. • Cassandra • fsErtxootmreen ,ss Ke r beros suport •K Cloud Service Models • SaaS • PaaS • IaaS ecibrxalt(eeetx:cnp hIedSr i imcneagnn tea lbx) eis Gconng fiugsuerre sdt otroe lse over riamgpel eamnye unsGenrg
  10. 10. Service Delivery by Provider
  11. 11. Service Delivery by Provider
  12. 12. Service Delivery by Provider
  13. 13. Service Delivery by Provider
  14. 14. Service Delivery by Provider
  15. 15. Service Delivery by Deployment
  16. 16. Service Delivery by Deployment
  17. 17. Cloud Under AFack
  18. 18. AFacks from the Cloud
  19. 19. Weakest Link
  20. 20. Mul:-­‐tenancy
  21. 21. Mul:-­‐tenancy within an Organiza:on
  22. 22. Mul:-­‐tenancy
  23. 23. Data Isola:on – Separated DBs
  24. 24. Data Isola:on Shared DB/Separate Schema
  25. 25. Data Isola:on Shared DB/Shared Schema
  26. 26. Data Access PaFerns
  27. 27. Data Access PaFerns
  28. 28. Data Access PaFerns
  29. 29. Data Access PaFerns
  30. 30. Data Access PaFerns
  31. 31. Data Security
  32. 32. Data Security
  33. 33. Homomorphic Encryp:on
  34. 34. Cloud Security Requirements
  35. 35. Top Threats to Cloud Compu:ng • Data Breaches • Data Loss • Account Hijacking • Insecure APIs • DoS • Malicious Insiders • Abuse of Cloud Service • Insufficient Due Diligence • Shared Technology Issues
  36. 36. Contact us !

×