SlideShare a Scribd company logo

Cloud Security Introduction

GLC Networks, profile picture
GLC Networks

The document provides an introduction to cloud security, covering key aspects of cybersecurity such as types of security, goals of information security, and access control. It discusses vulnerabilities, threats, and risk analysis while emphasizing the importance of securing customer data and using cloud computing. The document concludes with best practices for cloud security, including using HTTPS, DNS filter, and multi-factor authentication.

Technology
Related topics:
Cloud Computing InsightsOverview of Operating Systems
1 of 34
Downloaded 10 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
Cloud security Introduction Achmad Mardiansyah
Agenda ● Cyber security ● Security incidents ● Cloud Computing ● Cloud Security ● Q & A 2
Cyber Security introduction 3
What is Cyber security Cybersecurity is the art of protecting networks, devices, and data from unauthorized access or criminal use and the practice of ensuring confidentiality, integrity, and availability of information. Security is a very subjective terms. Every person has their own definition of security, that’s why there are many standards in security 4
Types of Security ● Computer Security - generic name for the collection of tools designed to protect data and to thwart hackers ● Network Security - measures to protect data during their transmission ● Internet Security - measures to protect data during their transmission over a collec)on of interconnected networks 5
Goals of Information Security (CIA) ● Confidentiality. prevents unauthorized use or disclosure of information ● Integrity. safeguards the accuracy and completeness of information ● Availability. authorized users have reliable and timely access to information 6
Access Control ● Ability to permit or deny the use of an object by a subject. ● It provides 3 essential services (AAA): ○ Authentication and Identification (who can login) ■ What you know ■ What you have ■ What you are ○ Authorization (what authorized users can do) ○ Accountability (keep track what a user did) 7
Vulnerability A weakness in security procedures, network design, or implementation that can be exploited to violate a corporate security policy ● Software bugs ● Configuration mistakes ● Network design flaw Exploit ● Taking advantage of a vulnerability CVE: Common Vulnerability and Exposure (https://cve.mitre.org) 8
Threat Any circumstance or event with the potential to cause harm to a networked system ● Denial of service (DOS): make computer resources (e.g., bandwidth, disk space, or CPU ) unavailable to its intended users ● Unauthorised access: Access without of permission issued by a rightul owner of devices or networks ● Impersonation ○ Identity theft ● Worms ● Viruses ● Malware 9
The possibility that a particular vulnerability will be exploited Risk analysis is the process of identifying: ● security risks ● determining their impact ● and identifying areas require protection Risk 10
Security incidents 11
Customer data security breach ● https://en.wikipedia.org/wiki/Data_breach ● Is your account safe? 12
CIA espionage (vault7) ● https://wikileaks.org/ciav7p1/cms/index.html ● https://techcrunch.com/2017/03/09/names-and-d efinitions-of-leaked-cia-hacking-tools/ ● https://wikileaks.org/ciav7p1/cms/files/2014%20 10%2023%20--%20EDG%20Testing%20White %20Paper%20--%20Rev%20Draft%20B.docx ● 13
Telkom as ads injector ● Telkom injects ads on every http request from customer ● Around 2013 - ? ● script 14
Cloud computing 15
Can you live without them? 16
So, everything is connected? 17
New paradigm: human netwwork From computer network -> human network 18
Cloud computing (CC) is... A concept of using the internet/network to provide Everything as a service (EaaS) ● New paradigm: sell services instead of products ● IaaS, Infrastructure as a Service (RAM, CPU, Storage) ● PaaS, Platform as a Service (frameworks) ● SaaS, Software as a Service (eg. Text editor, cpu, storage) 19
How to achieve cloud computing ● Distributed computing ● Grid computing ● virtualisation 20
Cloud computing type 21
CC in short... ● If want you need is a milk, why do you buy a cow? ● There is no cloud, it’s just someone else’s computer 22
Cloud Security 23
Put security on your cloud ● See previous slide… ● 24
Some examples 25
Use HTTPS ● Dont use HTTP based website ● Always use https when accessing website ● HTTPS will encrypt traffic from browser to web server ● 26
Use DNS redirector/filter ● Nawala (www.nawala.org) ● Opendns (https://www.opendns.com) ● Local DNS filter: ○ Can be embeded onto your network devices ○ Can be external: example: pi hole (https://pi-hole.net) 27
Use script blocker (more control) ● This plugin will block scripts until you allow it to be executed ● More control 28
Activate Multi Factor authentication (MFA / 2FA) ● Similar to math: ○ What is the factor of 18? ■ 1 and 18 ■ 2 and 9 ■ 3 and 6 ● How many factors to authenticate yourself to website? 29 Single factor 2 factor
Check if your account has been breached 30
Vendor support ● Security incident ● Security updates ● Always communicate with vendor to make sure always get support for security ● 31
summary ● The strength of security depends on the weakest link of the chains ● Always upgrade skill and knowledge ● Be humble when speak about security. Do not attract attention 32
QA 33
End of slides ● Thank you for your attention ● 34

More Related Content

PDF
Microsoft Azure Security Infographic
Microsoft Azure
 
PPTX
Cloud security
Jhanvi Dattani
 
PPTX
Security for cloud native workloads
Runcy Oommen
 
PPTX
The Top Cloud Security Issues
HTS Hosting
 
PPT
Cloud security
Tushar Kayande
 
PDF
Cloud Native Security: New Approach for a New Reality
Carlos Andrés García
 
PPTX
Data Security Essentials for Cloud Computing - JavaOne 2013
javagroup2006
 
PPTX
Cloud security (domain11 14)
Maganathin Veeraragaloo
 
Microsoft Azure Security Infographic
Microsoft Azure
 
Cloud security
Jhanvi Dattani
 
Security for cloud native workloads
Runcy Oommen
 
The Top Cloud Security Issues
HTS Hosting
 
Cloud security
Tushar Kayande
 
Cloud Native Security: New Approach for a New Reality
Carlos Andrés García
 
Data Security Essentials for Cloud Computing - JavaOne 2013
javagroup2006
 
Cloud security (domain11 14)
Maganathin Veeraragaloo
 

What's hot (19)

PDF
Tour to Azure Security Center
Lalit Rawat
 
PDF
Cloud Security & Cloud Encryption Explained
Porticor - The Cloud Security Experts
 
PDF
Microsoft Windows Azure - Security Best Practices for Developing Windows Azur...
Microsoft Private Cloud
 
PDF
Cyber Security and Cloud Computing
Keet Sugathadasa
 
PPTX
multiple encryption in clouud computing
Rauf Wani
 
PDF
Cloud Security - Emerging Facets and Frontiers
Gokul Alex
 
PPTX
cloud security ppt
Devyani Vaidya
 
PPTX
Security on Cloud Computing
Reza Pahlava
 
PDF
Challenges with Cloud Security by Ken Y Chan
Ken Chan
 
PDF
Getting Started with Azure Security Center
Cheah Eng Soon
 
PDF
Govern Your Cloud: The Foundation for Success
Alert Logic
 
PPTX
Analysis-of-Security-Algorithms-in-Cloud-Computing [Autosaved]
Mahmuda Rahman
 
PDF
The Share Responsibility Model of Cloud Computing - ILTA NYC
Patrick Sklodowski
 
PDF
Protecting Against Web Attacks
Alert Logic
 
PDF
Cloud Security Engineering - Tools and Techniques
Gokul Alex
 
PDF
Applying a Security Kernel Framework to Smart Meter Gateways
Marcel Winandy
 
PPTX
(ISC)2 CCSP - Certified Cloud Security Professional
Hatem ElSahhar
 
PDF
Security issue in Cloud computing
Seema Kumari
 
PDF
Css sf azure_8-9-17-microsoft_azure_security_overview_babak suzani_msft
Alert Logic
 
Tour to Azure Security Center
Lalit Rawat
 
Cloud Security & Cloud Encryption Explained
Porticor - The Cloud Security Experts
 
Microsoft Windows Azure - Security Best Practices for Developing Windows Azur...
Microsoft Private Cloud
 
Cyber Security and Cloud Computing
Keet Sugathadasa
 
multiple encryption in clouud computing
Rauf Wani
 
Cloud Security - Emerging Facets and Frontiers
Gokul Alex
 
cloud security ppt
Devyani Vaidya
 
Security on Cloud Computing
Reza Pahlava
 
Challenges with Cloud Security by Ken Y Chan
Ken Chan
 
Getting Started with Azure Security Center
Cheah Eng Soon
 
Govern Your Cloud: The Foundation for Success
Alert Logic
 
Analysis-of-Security-Algorithms-in-Cloud-Computing [Autosaved]
Mahmuda Rahman
 
The Share Responsibility Model of Cloud Computing - ILTA NYC
Patrick Sklodowski
 
Protecting Against Web Attacks
Alert Logic
 
Cloud Security Engineering - Tools and Techniques
Gokul Alex
 
Applying a Security Kernel Framework to Smart Meter Gateways
Marcel Winandy
 
(ISC)2 CCSP - Certified Cloud Security Professional
Hatem ElSahhar
 
Security issue in Cloud computing
Seema Kumari
 
Css sf azure_8-9-17-microsoft_azure_security_overview_babak suzani_msft
Alert Logic
 
Ad

Similar to Cloud Security Introduction (20)

PPTX
Unit -3.pptx cloud Security unit -3 notes
Ramya Nellutla
 
PDF
Cloud Computing and Security - ISACA Hyderabad Chapter Presentation
Venkateswar Reddy Melachervu
 
PPTX
chapitre1-cloud security basics-23 (1).pptx
GhofraneFerchichi2
 
PDF
Presd1 10
Niels Groeneveld
 
PDF
CLOUD & ETHICAL HACKING INTRODUCTION PDF
ArunIsaac5
 
PPT
Cloud computing final show
ahmad abdelhafeez
 
PPT
28_Security-Privacy-in_Cloud_AND_real.ppt
kyogesh5
 
PPT
28_Security-Privacy-inxssudusd_Cloud.ppt
ajinkyajagtap23
 
PPTX
Cloud security
Niharika Varshney
 
PPTX
Cloud computing
Ganesh Pasnurwar
 
PPTX
security_and_privacy_in_cloud_computing (1).pptx
thumilvannan
 
ODP
Securing The Cloud
george.james
 
PPTX
Cloud Security.pptx
Binod Rimal
 
PPTX
Myppt1.pptx on ics subject for 6th semester
MayuraD1
 
PDF
Cloud_security_v2_chpater_9_s_version.pdf
alkabarala01
 
PDF
Lecture27 cc-security2
Ankit Gupta
 
PPTX
3-UnitV_security.pptx
SubhadipDutta36
 
PPT
Presentation copy
Adel Zalok
 
PDF
Cloud Computing Security
Arunvignesh Venkatesh
 
PDF
Iaetsd cloud computing and security challenges
Iaetsd Iaetsd
 
Unit -3.pptx cloud Security unit -3 notes
Ramya Nellutla
 
Cloud Computing and Security - ISACA Hyderabad Chapter Presentation
Venkateswar Reddy Melachervu
 
chapitre1-cloud security basics-23 (1).pptx
GhofraneFerchichi2
 
Presd1 10
Niels Groeneveld
 
CLOUD & ETHICAL HACKING INTRODUCTION PDF
ArunIsaac5
 
Cloud computing final show
ahmad abdelhafeez
 
28_Security-Privacy-in_Cloud_AND_real.ppt
kyogesh5
 
28_Security-Privacy-inxssudusd_Cloud.ppt
ajinkyajagtap23
 
Cloud security
Niharika Varshney
 
Cloud computing
Ganesh Pasnurwar
 
security_and_privacy_in_cloud_computing (1).pptx
thumilvannan
 
Securing The Cloud
george.james
 
Cloud Security.pptx
Binod Rimal
 
Myppt1.pptx on ics subject for 6th semester
MayuraD1
 
Cloud_security_v2_chpater_9_s_version.pdf
alkabarala01
 
Lecture27 cc-security2
Ankit Gupta
 
3-UnitV_security.pptx
SubhadipDutta36
 
Presentation copy
Adel Zalok
 
Cloud Computing Security
Arunvignesh Venkatesh
 
Iaetsd cloud computing and security challenges
Iaetsd Iaetsd
 
Ad

More from GLC Networks (20)

PDF
Firewall mangle PBR: steering outbound path similar to inbound
GLC Networks
 
PDF
Internal BGP tuning: Mesh peering to avoid loop
GLC Networks
 
PDF
BGP tuning: Peer with loopback
GLC Networks
 
PDF
BGP security tuning: pull-up route
GLC Networks
 
PDF
BGP troubleshooting: route origin
GLC Networks
 
PDF
Steering traffic in OSPF: Interface cost
GLC Networks
 
PDF
Tuning OSPF: Bidirectional Forwarding Detection (BFD)
GLC Networks
 
PDF
Tuning OSPF: Prefix Aggregate
GLC Networks
 
PDF
Tuning OSPF: area hierarchy, LSA, and area type
GLC Networks
 
PDF
Stable OSPF: choosing network type.pdf
GLC Networks
 
PDF
Controlling Access Between Devices in the same Layer 2 Segment
GLC Networks
 
PDF
GIT as Mikrotik Configuration Management
GLC Networks
 
PDF
RouterOS Migration From v6 to v7
GLC Networks
 
PDF
Building a Web Server with NGINX
GLC Networks
 
PDF
Best Current Practice (BCP) 38 Ingress Filtering for Security
GLC Networks
 
PDF
EOIP Deep Dive
GLC Networks
 
PDF
Policy Based Routing with Indirect BGP - Part 2
GLC Networks
 
PDF
Policy Based Routing with Indirect BGP - Part 1
GLC Networks
 
PDF
Internet Protocol Deep-Dive
GLC Networks
 
PDF
Network Monitoring with The Dude and Whatsapp
GLC Networks
 
Firewall mangle PBR: steering outbound path similar to inbound
GLC Networks
 
Internal BGP tuning: Mesh peering to avoid loop
GLC Networks
 
BGP tuning: Peer with loopback
GLC Networks
 
BGP security tuning: pull-up route
GLC Networks
 
BGP troubleshooting: route origin
GLC Networks
 
Steering traffic in OSPF: Interface cost
GLC Networks
 
Tuning OSPF: Bidirectional Forwarding Detection (BFD)
GLC Networks
 
Tuning OSPF: Prefix Aggregate
GLC Networks
 
Tuning OSPF: area hierarchy, LSA, and area type
GLC Networks
 
Stable OSPF: choosing network type.pdf
GLC Networks
 
Controlling Access Between Devices in the same Layer 2 Segment
GLC Networks
 
GIT as Mikrotik Configuration Management
GLC Networks
 
RouterOS Migration From v6 to v7
GLC Networks
 
Building a Web Server with NGINX
GLC Networks
 
Best Current Practice (BCP) 38 Ingress Filtering for Security
GLC Networks
 
EOIP Deep Dive
GLC Networks
 
Policy Based Routing with Indirect BGP - Part 2
GLC Networks
 
Policy Based Routing with Indirect BGP - Part 1
GLC Networks
 
Internet Protocol Deep-Dive
GLC Networks
 
Network Monitoring with The Dude and Whatsapp
GLC Networks
 

Recently uploaded (20)

PDF
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
PDF
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
PDF
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
PDF
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
PDF
Approach and Philosophy of On baking technology
30anthuong17
 
PPTX
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
PDF
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
PDF
NewMind AI Monthly Chronicles - July 2025
NewMind AI
 
PDF
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
PDF
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
PPTX
PA Analog/Digital System: The Backbone of Modern Surveillance and Communication
AVTRON Technologies LLC
 
PDF
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
PDF
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
PPTX
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
PDF
Modernizing your data center with Dell and AMD
Principled Technologies
 
PDF
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
PPT
Teaching material agriculture food technology
LiaRayya
 
PDF
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
PDF
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
PPTX
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
Approach and Philosophy of On baking technology
30anthuong17
 
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
NewMind AI Monthly Chronicles - July 2025
NewMind AI
 
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
PA Analog/Digital System: The Backbone of Modern Surveillance and Communication
AVTRON Technologies LLC
 
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
Modernizing your data center with Dell and AMD
Principled Technologies
 
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
Teaching material agriculture food technology
LiaRayya
 
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 

Cloud Security Introduction

  • 2. Agenda ● Cyber security ● Security incidents ● Cloud Computing ● Cloud Security ● Q & A 2
  • 4. What is Cyber security Cybersecurity is the art of protecting networks, devices, and data from unauthorized access or criminal use and the practice of ensuring confidentiality, integrity, and availability of information. Security is a very subjective terms. Every person has their own definition of security, that’s why there are many standards in security 4
  • 5. Types of Security ● Computer Security - generic name for the collection of tools designed to protect data and to thwart hackers ● Network Security - measures to protect data during their transmission ● Internet Security - measures to protect data during their transmission over a collec)on of interconnected networks 5
  • 6. Goals of Information Security (CIA) ● Confidentiality. prevents unauthorized use or disclosure of information ● Integrity. safeguards the accuracy and completeness of information ● Availability. authorized users have reliable and timely access to information 6
  • 7. Access Control ● Ability to permit or deny the use of an object by a subject. ● It provides 3 essential services (AAA): ○ Authentication and Identification (who can login) ■ What you know ■ What you have ■ What you are ○ Authorization (what authorized users can do) ○ Accountability (keep track what a user did) 7
  • 8. Vulnerability A weakness in security procedures, network design, or implementation that can be exploited to violate a corporate security policy ● Software bugs ● Configuration mistakes ● Network design flaw Exploit ● Taking advantage of a vulnerability CVE: Common Vulnerability and Exposure (https://cve.mitre.org) 8
  • 9. Threat Any circumstance or event with the potential to cause harm to a networked system ● Denial of service (DOS): make computer resources (e.g., bandwidth, disk space, or CPU ) unavailable to its intended users ● Unauthorised access: Access without of permission issued by a rightul owner of devices or networks ● Impersonation ○ Identity theft ● Worms ● Viruses ● Malware 9
  • 10. The possibility that a particular vulnerability will be exploited Risk analysis is the process of identifying: ● security risks ● determining their impact ● and identifying areas require protection Risk 10
  • 12. Customer data security breach ● https://en.wikipedia.org/wiki/Data_breach ● Is your account safe? 12
  • 13. CIA espionage (vault7) ● https://wikileaks.org/ciav7p1/cms/index.html ● https://techcrunch.com/2017/03/09/names-and-d efinitions-of-leaked-cia-hacking-tools/ ● https://wikileaks.org/ciav7p1/cms/files/2014%20 10%2023%20--%20EDG%20Testing%20White %20Paper%20--%20Rev%20Draft%20B.docx ● 13
  • 14. Telkom as ads injector ● Telkom injects ads on every http request from customer ● Around 2013 - ? ● script 14
  • 16. Can you live without them? 16
  • 17. So, everything is connected? 17
  • 18. New paradigm: human netwwork From computer network -> human network 18
  • 19. Cloud computing (CC) is... A concept of using the internet/network to provide Everything as a service (EaaS) ● New paradigm: sell services instead of products ● IaaS, Infrastructure as a Service (RAM, CPU, Storage) ● PaaS, Platform as a Service (frameworks) ● SaaS, Software as a Service (eg. Text editor, cpu, storage) 19
  • 20. How to achieve cloud computing ● Distributed computing ● Grid computing ● virtualisation 20
  • 22. CC in short... ● If want you need is a milk, why do you buy a cow? ● There is no cloud, it’s just someone else’s computer 22
  • 24. Put security on your cloud ● See previous slide… ● 24
  • 26. Use HTTPS ● Dont use HTTP based website ● Always use https when accessing website ● HTTPS will encrypt traffic from browser to web server ● 26
  • 27. Use DNS redirector/filter ● Nawala (www.nawala.org) ● Opendns (https://www.opendns.com) ● Local DNS filter: ○ Can be embeded onto your network devices ○ Can be external: example: pi hole (https://pi-hole.net) 27
  • 28. Use script blocker (more control) ● This plugin will block scripts until you allow it to be executed ● More control 28
  • 29. Activate Multi Factor authentication (MFA / 2FA) ● Similar to math: ○ What is the factor of 18? ■ 1 and 18 ■ 2 and 9 ■ 3 and 6 ● How many factors to authenticate yourself to website? 29 Single factor 2 factor
  • 30. Check if your account has been breached 30
  • 31. Vendor support ● Security incident ● Security updates ● Always communicate with vendor to make sure always get support for security ● 31
  • 32. summary ● The strength of security depends on the weakest link of the chains ● Always upgrade skill and knowledge ● Be humble when speak about security. Do not attract attention 32
  • 33. QA 33
  • 34. End of slides ● Thank you for your attention ● 34