Cloud Computing Security: A Survey

Khalil, Issa; Khreishah, Abdallah; Azeem, Muhammad

doi:10.3390/computers3010001

Cited by 211 publications

(83 citation statements)

References 82 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…The fact that multiple virtual machines share the same hardware side channel attack makes it relatively easy to achieve. Without implementation of the safety device in the hardware, equipment sharing is dangerous [2].…”

Section: E Side Channel Attacksmentioning

confidence: 99%

See 1 more Smart Citation

Securing Cloud Computing from Different Attacks Using Intrusion Detection Systems

Achbarou¹,

Kiram²,

Bouanani³

2017

IJIMAI

View full text Add to dashboard Cite

-Cloud computing is a new way of integrating a set of old technologies to implement a new paradigm that creates an avenue for users to have access to shared and configurable resources through internet on-demand. This system has many common characteristics with distributed systems, hence, the cloud computing also uses the features of networking. Thus the security is the biggest issue of this system, because the services of cloud computing is based on the sharing. Thus, a cloud computing environment requires some intrusion detection systems (IDSs) for protecting each machine against attacks. The aim of this work is to present a classification of attacks threatening the availability, confidentiality and integrity of cloud resources and services. Furthermore, we provide literature review of attacks related to the identified categories. Additionally, this paper also introduces related intrusion detection models to identify and prevent these types of attacks.

show abstract

Section: E Side Channel Attacksmentioning

confidence: 99%

“…We briefly explain each attack and accompanied by a brief discussion of the consequences of the attacks in the cloud environment. Table 2 presents a summary of attack names and attack category [2] [7] [9].…”

Section: Attacks Related To the Cloud Security Categoriesmentioning

confidence: 99%

Securing Cloud Computing from Different Attacks Using Intrusion Detection Systems

Achbarou¹,

Kiram²,

Bouanani³

2017

IJIMAI

View full text Add to dashboard Cite

show abstract

“…The main difference is that the cache is used instead of the main memory to transfer data [18] [21]. This attack aims to measure the delay incurred when the CPU loads the selected data from the main memory to the cache.…”

Section: Side Channel Attacksmentioning

confidence: 99%

“…For instance, multi-tenancy promotes resource sharing among multiple users or tenants. These potentially untrusted tenants could perform side channel attacks and leak sensitive information pertaining to the cloud service provider (CSP) or the hypervisor hosting the targeted virtual machine [17] [18].…”

Section: Issues With Access Control In Cloudmentioning

confidence: 99%

A New Access Control Scheme for Protecting Distributed Cloud Services and Resources

Rizvi

Mitchell

2016

STCC

View full text Add to dashboard Cite

Cloud computing is clearly one of today's most dominant paradigms in the Information Technology (IT) industry due to its scalable, flexible, and cost-efficient access to infrastructure and application services. Despite these promising facilities and benefits, cloud users have serious concerns about the data security and privacy. Among all security challenges, access control is of vital importance, since it provides security mechanisms to protect customer's data, cloud services, applications, resources against unauthorized access, and misuse of privileges. Several access control systems have been proposed in literature lately but most of them are designed to work with one specific access control policy. In this paper, we present a novel generic access control scheme, capable to work with most of the available access control policies using a global resource management system (GRMS) to effectively handle both local and remote authentication requests. The introduction of GRMS makes our proposed architecture semi-distributed at the expense of minimal request-response time. We have shown the applicability of our proposed architecture using a case study for three different scenarios.

show abstract

“…However, there are some risks involved in cloud computing [4,5]. One of the major risk issues is cloud computing security followed by application readiness and cost.…”

Section: Introductionmentioning

confidence: 99%

An Application of Partial Homomorphic Encryption in Computer System with Limited Resources

et al. 2018

View full text Add to dashboard Cite

Mathematical calculation over ciphertext during homomorphic encryption makes result of the calculation in a form of ciphertext. Obtained result can be decrypted with an appropriate key for further usage. In the era of cloud computing, this feature can be used to solve problems of storing and processing sensitive data in the cloud. Also, use of homomorphic encryption keeps both, data and results of processing, highly secured at the same time. Considering the overwhelming presence of computers with limited resources, the presence of the Internet and the ultimate practical need for use of cloud and its resources, in this paper we explored and presented the characteristics of a practical use of partial homomorphic encryption and its processing of ciphertext in the cloud on computer system with limited resources.

show abstract

Cloud Computing Security: A Survey

Cited by 211 publications

References 82 publications

Securing Cloud Computing from Different Attacks Using Intrusion Detection Systems

Securing Cloud Computing from Different Attacks Using Intrusion Detection Systems

A New Access Control Scheme for Protecting Distributed Cloud Services and Resources

An Application of Partial Homomorphic Encryption in Computer System with Limited Resources

Contact Info

Product

Resources

About