SlideShare a Scribd company logo

Cloud computing security and privacy christian goire

Download as PPT, PDF
G
goire

The document discusses cloud computing security and privacy challenges. It defines cloud computing and outlines essential characteristics, service models, and deployment models. It then discusses technical, policy, organizational, legal, and economic risks to security and privacy in cloud computing. The document concludes by recommending certification processes and standards, and discussing the need for technology solutions, compliance, and transparency to build trust in cloud computing.

1 of 18
Downloaded 24 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
Cloud Computing Security and Privacy to gain Trust SMARTEVENT 2010 September 23 Sophia Antipolis Christian GOIRE
Cloud Computing Definition(s) 06/01/11 Cloud computing is a model for enabling convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction . This cloud model promotes availability and is composed of five essential characteristics, three service models , and four deployment models . NIST Definition Built on compute and storage virtualization , provides scalable , network-centric, abstracted IT infrastructure , platforms , and applications as on-demand services that are billed by consumption . Gartner’s definition : "a style of computing where scalable and elastic IT-related capabilities are provided 'as a service' to external customers using Internet technologies."
The NIST Cloud Definition Framework 06/01/11 Deployment Models Service Models Essential Character-istics Common Character-istics Homogeneity Massive Scale Resilient Computing Geographic Distribution Community Cloud Private Cloud Public Cloud Hybrid Clouds Software as a Service (SaaS) Platform as a Service (PaaS) Infrastructure as a Service (IaaS) Resource Pooling Broad Network Access Rapid Elasticity Measured Service On Demand Self-Service Low Cost Software Virtualization Service Orientation Advanced Security
3 main Services Models 06/01/11
Cloud Providers – A Birds Eye View 06/01/11 Infrastructure as a Service Platform as a Service Software as a Service
Main aspects forming a cloud system 06/01/11
Expert group report (Excerpts) Non- functional aspects Elasticity Reliability Quality of Service Agility and adaptability Availability 06/01/11
Continued (2) Economic aspects Cost reduction Pay per use Improved time to market Return of investment Turning CAPEX into OPEX Going Green 06/01/11
Continued (3) Technological Aspects Virtualisation Multi- tenancy Security, Privacy and compliance Data Management API’s and / or Programming Enhancements Metering Tools 06/01/11
Research time line (in year) of the individual topics 06/01/11
Security and Privacy Challenges The massive concentrations of resources and data present a more attractive target to attackers The challenges are not new but Cloud computing intensifies them 06/01/11
Technical risks Resource exhaustion Isolation failure Cloud provider malicious insider, abuse of high privilege Management interface compromise Intercepting data in transit Data leakage on up /download, intra- cloud Insecure or ineffective deletion of data Distributed Denial of service DDoS Economic denial of service EDOS Loss of encryption keys Undertaking malicious probes and scans Compromise service engine Conflicts between customer procedures and cloud 06/01/11
Policy and organizational risks Lock -in Loss of governance Compliance challenges Loss of business reputation due to co -tenant activities Cloud service termination or failure Cloud provider acquisition Supply chain failure 06/01/11
Legal risk Subpoena and e- discovery Risk from change of jurisdiction Data protection risk Licensing risks 06/01/11
Research recommendations Certification processes and standards for the Cloud 06/01/11
Research recommendations Metrics for security in cloud computing Return on security investments Effects of different forms reporting breaches on security Techniques for increasing transparency /level of security Location tagging, data type tagging, policy tagging Privacy (data provenance) tracing data end to end End to end data confidentiality in the cloud and beyond: Encrypted search (long term) Encrypted processing schemes (long term) Encryption and confidentiality tools for social applications in the cloud Trusted computing in clouds, trusted boot sequence for virtual machine stack Standardization etc. 06/01/11
Legal recommendations Legal issues to be resolved during the evaluation of the contracts (ULA User Licensing Agreement, SLA Service Level Agreement) Data protection Data security Data Transfer Law enforcement access Confidentiality and non disclosure Intellectual property Risk allocation and limitation of liability Change of control 06/01/11
Conclusion Technology solutions ; privacy by design Compliance with transparency provisions vis-à-vis individuals Ensure that customers know about the location of their data Ensure that they properly understand the risks so that they make informed choices Current review process of the existing Data Protection Directive 06/01/11

More Related Content

PDF
Managing sensitive applications in the public cloud
ieeepondy
 
ODP
OUGF - OSAmI - OSGi Ubiquity
OSGi User Group France
 
PDF
Atmosphere: project objctives
EOSC-hub project
 
PPTX
EOSC-hub Week - Cloud Lightning Talks: Atmosphere
ATMOSPHERE .
 
PPT
Data Intensive Services
mbasti2
 
PPT
Design Principles for a Service-Aware Future Internet
mbasti2
 
PDF
Cloud computing 4
Damian Blackburn
 
PPTX
Cloud computing
Vivekananda college
 
Managing sensitive applications in the public cloud
ieeepondy
 
OUGF - OSAmI - OSGi Ubiquity
OSGi User Group France
 
Atmosphere: project objctives
EOSC-hub project
 
EOSC-hub Week - Cloud Lightning Talks: Atmosphere
ATMOSPHERE .
 
Data Intensive Services
mbasti2
 
Design Principles for a Service-Aware Future Internet
mbasti2
 
Cloud computing 4
Damian Blackburn
 
Cloud computing
Vivekananda college
 

What's hot (20)

PPTX
ATMOSPHERE Objectives of the Project (ICT Week Brasilia - Brazil)
ATMOSPHERE .
 
PPT
Addressing and routing services
mbasti2
 
PDF
2016 02-04-gingell-iot
gingell
 
PPTX
Cloud computing
Shiv Ram Choudhury
 
PDF
CSA v4 Topology
Jason Rusch - CISSP CGEIT CISM CISA GNSA
 
PPT
Privacy Preserving Public Auditing for Data Storage Security in Cloud.ppt
Girish Chandra
 
PDF
Workshop summary software assurance and trust
fcleary
 
PDF
Effect splus systems-and-network-cluster-results-draft-v1
fcleary
 
DOC
Integrity for join queries in the cloud
Papitha Velumani
 
PDF
PaaSword's main idea, technical architecture and scientific challenges
PaaSword EU Project
 
PPTX
Kaseya Connect 2013: Kaseya Keynote
Kaseya
 
PPTX
Cloud security
Alexandra Instituttet
 
PPT
eChallenges_e2011_JS
Jonathan Sinclair
 
DOCX
Design and operation of secure cyber physical systems
I3E Technologies
 
PPTX
Cloud computing
Mohd Masood
 
PDF
ICSOC 2015 Panel: Service Engineering Analytics in the IoT Cloud Systems
Hong-Linh Truong
 
DOCX
6
IMPULSE_TECHNOLOGY
 
PDF
Protect customer's personal information eng 191018
sang yoo
 
PDF
Cloud Solutions Collateral
Steve Clem
 
PPT
Cloud computing
Infosys
 
ATMOSPHERE Objectives of the Project (ICT Week Brasilia - Brazil)
ATMOSPHERE .
 
Addressing and routing services
mbasti2
 
2016 02-04-gingell-iot
gingell
 
Cloud computing
Shiv Ram Choudhury
 
CSA v4 Topology
Jason Rusch - CISSP CGEIT CISM CISA GNSA
 
Privacy Preserving Public Auditing for Data Storage Security in Cloud.ppt
Girish Chandra
 
Workshop summary software assurance and trust
fcleary
 
Effect splus systems-and-network-cluster-results-draft-v1
fcleary
 
Integrity for join queries in the cloud
Papitha Velumani
 
PaaSword's main idea, technical architecture and scientific challenges
PaaSword EU Project
 
Kaseya Connect 2013: Kaseya Keynote
Kaseya
 
Cloud security
Alexandra Instituttet
 
eChallenges_e2011_JS
Jonathan Sinclair
 
Design and operation of secure cyber physical systems
I3E Technologies
 
Cloud computing
Mohd Masood
 
ICSOC 2015 Panel: Service Engineering Analytics in the IoT Cloud Systems
Hong-Linh Truong
 
6
IMPULSE_TECHNOLOGY
 
Protect customer's personal information eng 191018
sang yoo
 
Cloud Solutions Collateral
Steve Clem
 
Cloud computing
Infosys
 
Ad

Viewers also liked (7)

PDF
EduFester
Arjun Subburaj
 
PPT
Supporting clinicians and helping to feed the beast
thorley1
 
PDF
Cloud congress 2012_herbert_wanner_cisco_v3
Herbert Wanner
 
PPT
Assistive technology webquest
Lana1522
 
DOC
Using web technologies for the lactation professional
Denise Breheny
 
DOC
LIBROS
cristhian
 
PPT
pengenalan Tapak Suci
farhan89
 
EduFester
Arjun Subburaj
 
Supporting clinicians and helping to feed the beast
thorley1
 
Cloud congress 2012_herbert_wanner_cisco_v3
Herbert Wanner
 
Assistive technology webquest
Lana1522
 
Using web technologies for the lactation professional
Denise Breheny
 
LIBROS
cristhian
 
pengenalan Tapak Suci
farhan89
 
Ad

Similar to Cloud computing security and privacy christian goire (20)

PPT
Presentation On Effectively And Securely Using The Cloud Computing Paradigm V26
TT L
 
PPT
Presentation on Effectively and Securely Using the Cloud Computing Paradigm v26
Bill Annibell
 
PDF
SECURITY CONCERN ON CLOUD BASED ON ATTRIBUTES: AN SURVEY
Editor Jacotech
 
PDF
1376843836 94879193
Editor Jacotech
 
PDF
1376843836 94879193
Editor Jacotech
 
PPT
Effectively and Securely Using the Cloud Computing Paradigm
fanc1985
 
PPT
Exploring Cloud Computing Technologies For GIS (Location Based) Applications
Christopher Blough
 
PDF
YURY_CHEMERKIN__ITA_2013_Proceedings.pdf
Yury Chemerkin
 
PPT
Software Association of Oregon Cloud Computing Presentation
ddcarr
 
PDF
(Pdf) yury chemerkin _ita_2013 proceedings
STO STRATEGY
 
PDF
SECURITY AND PRIVACY SOLUTIONS IN CLOUD COMPUTING AT OPENSTACK TO SUSTAIN USE...
Zac Darcy
 
PDF
Security and Privacy Solutions in Cloud Computing at Openstack to Sustain Use...
Zac Darcy
 
PPSX
Cloud Computing - A Primer
brownmestizo
 
PPT
Ahearn Cloud Presentation
johnjamesahearn
 
PPT
Cloud Ecosystems A Perspective
jmcdaniel650
 
PDF
Why CCSK with InfosecTrain (1).pdf
infosec train
 
PPT
Cloud Computing & Security Concerns
University of San Francisco
 
PPT
08 message and_queues_dieter_gawlick
ashish61_scs
 
PDF
Security of Data in Cloud Environment Using DPaaS
IJMER
 
PPT
cloud
Munkhbat Chonos
 
Presentation On Effectively And Securely Using The Cloud Computing Paradigm V26
TT L
 
Presentation on Effectively and Securely Using the Cloud Computing Paradigm v26
Bill Annibell
 
SECURITY CONCERN ON CLOUD BASED ON ATTRIBUTES: AN SURVEY
Editor Jacotech
 
1376843836 94879193
Editor Jacotech
 
1376843836 94879193
Editor Jacotech
 
Effectively and Securely Using the Cloud Computing Paradigm
fanc1985
 
Exploring Cloud Computing Technologies For GIS (Location Based) Applications
Christopher Blough
 
YURY_CHEMERKIN__ITA_2013_Proceedings.pdf
Yury Chemerkin
 
Software Association of Oregon Cloud Computing Presentation
ddcarr
 
(Pdf) yury chemerkin _ita_2013 proceedings
STO STRATEGY
 
SECURITY AND PRIVACY SOLUTIONS IN CLOUD COMPUTING AT OPENSTACK TO SUSTAIN USE...
Zac Darcy
 
Security and Privacy Solutions in Cloud Computing at Openstack to Sustain Use...
Zac Darcy
 
Cloud Computing - A Primer
brownmestizo
 
Ahearn Cloud Presentation
johnjamesahearn
 
Cloud Ecosystems A Perspective
jmcdaniel650
 
Why CCSK with InfosecTrain (1).pdf
infosec train
 
Cloud Computing & Security Concerns
University of San Francisco
 
08 message and_queues_dieter_gawlick
ashish61_scs
 
Security of Data in Cloud Environment Using DPaaS
IJMER
 
cloud
Munkhbat Chonos
 

Cloud computing security and privacy christian goire

  • 1. Cloud Computing Security and Privacy to gain Trust SMARTEVENT 2010 September 23 Sophia Antipolis Christian GOIRE
  • 2. Cloud Computing Definition(s) 06/01/11 Cloud computing is a model for enabling convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction . This cloud model promotes availability and is composed of five essential characteristics, three service models , and four deployment models . NIST Definition Built on compute and storage virtualization , provides scalable , network-centric, abstracted IT infrastructure , platforms , and applications as on-demand services that are billed by consumption . Gartner’s definition : "a style of computing where scalable and elastic IT-related capabilities are provided 'as a service' to external customers using Internet technologies."
  • 3. The NIST Cloud Definition Framework 06/01/11 Deployment Models Service Models Essential Character-istics Common Character-istics Homogeneity Massive Scale Resilient Computing Geographic Distribution Community Cloud Private Cloud Public Cloud Hybrid Clouds Software as a Service (SaaS) Platform as a Service (PaaS) Infrastructure as a Service (IaaS) Resource Pooling Broad Network Access Rapid Elasticity Measured Service On Demand Self-Service Low Cost Software Virtualization Service Orientation Advanced Security
  • 4. 3 main Services Models 06/01/11
  • 5. Cloud Providers – A Birds Eye View 06/01/11 Infrastructure as a Service Platform as a Service Software as a Service
  • 6. Main aspects forming a cloud system 06/01/11
  • 7. Expert group report (Excerpts) Non- functional aspects Elasticity Reliability Quality of Service Agility and adaptability Availability 06/01/11
  • 8. Continued (2) Economic aspects Cost reduction Pay per use Improved time to market Return of investment Turning CAPEX into OPEX Going Green 06/01/11
  • 9. Continued (3) Technological Aspects Virtualisation Multi- tenancy Security, Privacy and compliance Data Management API’s and / or Programming Enhancements Metering Tools 06/01/11
  • 10. Research time line (in year) of the individual topics 06/01/11
  • 11. Security and Privacy Challenges The massive concentrations of resources and data present a more attractive target to attackers The challenges are not new but Cloud computing intensifies them 06/01/11
  • 12. Technical risks Resource exhaustion Isolation failure Cloud provider malicious insider, abuse of high privilege Management interface compromise Intercepting data in transit Data leakage on up /download, intra- cloud Insecure or ineffective deletion of data Distributed Denial of service DDoS Economic denial of service EDOS Loss of encryption keys Undertaking malicious probes and scans Compromise service engine Conflicts between customer procedures and cloud 06/01/11
  • 13. Policy and organizational risks Lock -in Loss of governance Compliance challenges Loss of business reputation due to co -tenant activities Cloud service termination or failure Cloud provider acquisition Supply chain failure 06/01/11
  • 14. Legal risk Subpoena and e- discovery Risk from change of jurisdiction Data protection risk Licensing risks 06/01/11
  • 15. Research recommendations Certification processes and standards for the Cloud 06/01/11
  • 16. Research recommendations Metrics for security in cloud computing Return on security investments Effects of different forms reporting breaches on security Techniques for increasing transparency /level of security Location tagging, data type tagging, policy tagging Privacy (data provenance) tracing data end to end End to end data confidentiality in the cloud and beyond: Encrypted search (long term) Encrypted processing schemes (long term) Encryption and confidentiality tools for social applications in the cloud Trusted computing in clouds, trusted boot sequence for virtual machine stack Standardization etc. 06/01/11
  • 17. Legal recommendations Legal issues to be resolved during the evaluation of the contracts (ULA User Licensing Agreement, SLA Service Level Agreement) Data protection Data security Data Transfer Law enforcement access Confidentiality and non disclosure Intellectual property Risk allocation and limitation of liability Change of control 06/01/11
  • 18. Conclusion Technology solutions ; privacy by design Compliance with transparency provisions vis-à-vis individuals Ensure that customers know about the location of their data Ensure that they properly understand the risks so that they make informed choices Current review process of the existing Data Protection Directive 06/01/11