An overview of insider attacks in cloud computing

Duncan, Adrian; Creese, Sadie; Goldsmith, Michael

doi:10.1002/cpe.3243

Cited by 34 publications

(20 citation statements)

References 5 publications

(8 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Notwithstanding, the literature also reveals that obstacles and difficulties exist in organizations' adoption of cloud computing, such as reticence regarding information security and protection against nonauthorized access [14,15], the absence of knowledge on the privacy capabilities of service providers [16], a lack of understanding between the organization and the cloud provider as to service scope and 2 Mobile Information Systems implementation [17], technical barriers [18], and financing problems that companies in certain sectors might have to address the required investment in technology and qualified IT personnel, especially in the case of small and medium enterprises [11,19].…”

Section: Introductionmentioning

confidence: 99%

Cloud Computing (SaaS) Adoption as a Strategic Technology: Results of an Empirical Study

Palos-Sánchez

Arenas‐Márquez

Aguayo-Camacho

2017

Mobile Information Systems

View full text Add to dashboard Cite

The present study empirically analyzes the factors that determine the adoption of cloud computing (SaaS model) in firms where this strategy is considered strategic for executing their activity. A research model has been developed to evaluate the factors that influence the intention of using cloud computing that combines the variables found in the technology acceptance model (TAM) with other external variables such as top management support, training, communication, organization size, and technological complexity. Data compiled from 150 companies in Andalusia (Spain) are used to test the formulated hypotheses. The results of this study reflect what critical factors should be considered and how they are interrelated. They also show the organizational demands that must be considered by those companies wishing to implement a real management model adopted to the digital economy, especially those related to cloud computing.

show abstract

Section: Introductionmentioning

confidence: 99%

Cloud Computing (SaaS) Adoption as a Strategic Technology: Results of an Empirical Study

Palos-Sánchez

Arenas‐Márquez

Aguayo-Camacho

2017

Mobile Information Systems

View full text Add to dashboard Cite

show abstract

“…If the responsibility of providing these services to the user is one task, the other important task is to ensure that these services are being provided while also ensuring the important features of privacy and security. As shown in [13,14], insider threats potentially pose the most significant source of risk and it is the major threat to cloud user's privacy and security.…”

Section: Related Workmentioning

confidence: 99%

A Novel Method to Detect Encrypted Data Exfiltration

He¹,

Zhang²,

Ma³

et al. 2014

2014 Second International Conference on Advanced Cloud and Big Data

View full text Add to dashboard Cite

Cloud computing's distributed architecture helps ensure service resilience and robustness. Meanwhile, the big data stored in the cloud are valuable and sensitive and they are becoming attractive targets of attackers. In real life, attackers can carry out attacks such as Advanced Persistent Threat (APT) to invade cloud infrastructure and steal cloud users' confidential data through encrypted transmission. Unfortunately, the most commonly used methods, e.g., Deep Packet Inspection (DPI), cannot detect encrypted data leakage efficiently. In this paper, we propose a novel method to detect encrypted data exfiltration for cloud. Generally speaking, the proposed method is composed of two steps. First, cloud providers analyze all outgoing network traffic and find out encrypted traffic. Second, cloud providers determine whether the encrypted traffic is launched by cloud users expectedly. If not, the encrypted traffic will be considered as data exfiltration. Specially, in the first step, DPI and entropy technology are used together to find out encrypted traffic efficiently and in the second step, we determine whether the encryption is expected or not through building cloud users' network behavior profile. We have carried out extensive experiments in real-world network environment and the experimental results validate the feasibility and effectiveness of our method.

show abstract

“…An insider attack with the cloud is easier to perform as whole image is stored on cloud [15], [14] and has far greater impact than an attack in a traditionalinfrastructure [17]. A method that provides image compression along with image security uses a combination of EZW for authentication& chaos for security proposed in [19].…”

Section: Introductionmentioning

confidence: 99%

Authentication, Tamper Localization and Rectification Algorithm With Privacy Preservation of Image for the Cloud Using Hmac

Sultana¹,

Shubhangi²

2017

IJIVP

View full text Add to dashboard Cite

Digital images like military, medical and quality control images are increasingly stored over cloud server. These images need protection against attempts to manipulate them since manipulations could tamper the decisions based on these images, many approaches have been proposed to protect the privacy of multimedia images over cloud through cryptography, these cryptographic approaches prevent the visibility of image contents but it does not identify if any changes are made on encrypted data by insider attack and cipher-text only attack. In this paper, we proposed to provide authentication, tamper localization, rectification along with privacy preservation of the image using padding extra bit plane for tamper localization, Hash message authentication code (HMAC) algorithm to authentication image, tamper rectification. The proposed algorithm will provide privacy to the image through hiding bit planes.

show abstract

An overview of insider attacks in cloud computing

Cited by 34 publications

References 5 publications

Cloud Computing (SaaS) Adoption as a Strategic Technology: Results of an Empirical Study

Cloud Computing (SaaS) Adoption as a Strategic Technology: Results of an Empirical Study

A Novel Method to Detect Encrypted Data Exfiltration

Authentication, Tamper Localization and Rectification Algorithm With Privacy Preservation of Image for the Cloud Using Hmac

Contact Info

Product

Resources

About