SlideShare a Scribd company logo

project 11

K
K L University

The document proposes a system to secure data in the cloud using decoy technology. It involves monitoring data access patterns and detecting abnormal behavior. When abnormal behavior is detected, the system launches a disinformation attack by providing the attacker with large amounts of fake decoy information. This is intended to protect users' real data by confusing attackers and preventing them from distinguishing real data from decoys.

Education
1 of 17
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
project 11
 Introduction  Existing System  Proposed System  H/W system Config.  S/W system Config.  Conclusion
Cloud computing promises to significantly change the way we use computers and access and store our personal and business information. With these new computing and communications paradigms arise new data security challenges. Existing data protection mechanisms such as encryption have failed in preventing data theft attacks, especially those perpetrated by an insider to the cloud provider. We propose a completely different approach to securing the cloud using decoy information technology, that we have come to call Fog computing. We use this technology to launch disinformation attacks against malicious insiders, preventing them from distinguishing the real sensitive customer data from fake worthless data.
Existing data protection mechanisms such as encryption have failed in preventing data theft attacks, especially those perpetrated by an insider to the cloud provider. Much research in Cloud computing security has focused on ways of preventing unauthorized and illegitimate access to data by developing sophisticated access control and encryption mechanisms. However these mechanisms have not been able to prevent data compromise.
The decoys, serve two purposes: (1) validating whether data access is authorized when abnormal information access is detected, and (2) confusing the attacker with bogus information. MODULE DESCRIPTION: (1)Cloud computing (2)User behavior profiling (3)Decoy documents
 Cloud computing is a model for enabling convenient, ondemand network access to a shared pool of configurable computing resources (for example, networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or serviceprovider interaction. It divide into three type 1.Application as a service. 2.Infrastructure as a service. 3.Platform as a service.
1)Agility 2)Cost 3)Virtualization 4)Multi tenancy
 5)Centralization  6)Utilization and efficiency  7)Reliability  8)Performance  9)Security
User profiling is a well known Technique that can be applied here to model how, when, and how much a user accesses their information in the Cloud. Such ‘normal user’ behavior can be continuously checked to determine whether abnormal access to a user’s information is occurring. This method of behavior-based security is commonly used in fraud detection applications. We monitor for abnormal search behaviors that exhibit deviations from the user baseline the correlation of search behavior anomaly detection with trap-based decoy files should provide stronger evidence of malfeasance, and therefore improve a detector’s accuracy.
The approach here is for securing data in the cloud using offensive decoy technology. We monitor data access in the cloud and detect abnormal data access patterns. we launch a disinformation attack by returning large amounts of decoy information to the attacker. This protects against the misuse of the user’s real data.
 The correlation of search behavior anomaly detection with trap-based decoy files should provide stronger evidence of malfeasance, and therefore improve a detector’s accuracy.  We hypothesize that detecting abnormal search operations performed prior to an unsuspecting user opening a decoy file will corroborate the suspicion that the user is indeed impersonating another victim user
 This scenario covers the threat model of illegitimate access to Cloud data.  Furthermore, an accidental opening of a decoy file by a legitimate user might be recognized as an accident if the search behavior is not deemed abnormal.  In other words, detecting abnormal search and decoy traps together may make a very effective masquerade detection System.  Combining the two techniques improves detection accuracy.
project 11
 Processor - Pentium –III  Speed - 1.1 Ghz  RAM - 256 MB(min)  Hard Disk - 20 GB  Floppy Drive - 1.44 MB  Key Board - Standard Windows Keyboard  Mouse - Two or Three Button Mouse  Monitor - SVGA
 Operating System : Windows95/98/2000/XP  Application Server : Tomcat5.0/6.X  Front End : HTML, Java, Jsp  Scripts : JavaScript.  Server side Script : Java Server Pages.  Database : My sql  Database Connectivity : JDBC.
 We had present our project approach to securing personal and business data in the Cloud.  We propose monitoring data access patterns by profiling user behavior to determine if and when a malicious insider illegitimately accesses someone’s documents in a Cloud service.  We inundate the malicious insider with bogus information in order to dilute the user’s real data, Such preventive attacks that rely on disinformation technology , could provide unprecedented levels of security in the Cloud and in social networks model.
project 11

More Related Content

PDF
Ijaiem 2014-11-30-122
Sathya Madhesh
 
DOCX
JPJ1449 Efficient Authentication for Mobile and Pervasive Computing
chennaijp
 
PPTX
HTTP vs HTTPS Difference
Real Estate
 
PDF
Privacy preserving ciphertext multi-sharing control for big data storage
LeMeniz Infotech
 
PDF
Privacy preserving ciphertext multi-sharing control for big data storage
LeMeniz Infotech
 
DOCX
PRIVACY-PRESERVING CIPHERTEXT MULTI-SHARING CONTROL FOR BIG DATA STORAGE
I3E Technologies
 
PDF
A Review on Key-Aggregate Cryptosystem for Climbable Knowledge Sharing in Clo...
Editor IJCATR
 
PDF
Hybrid cryptographic technique using rsa algorithm and scheduling concepts
IJNSA Journal
 
Ijaiem 2014-11-30-122
Sathya Madhesh
 
JPJ1449 Efficient Authentication for Mobile and Pervasive Computing
chennaijp
 
HTTP vs HTTPS Difference
Real Estate
 
Privacy preserving ciphertext multi-sharing control for big data storage
LeMeniz Infotech
 
Privacy preserving ciphertext multi-sharing control for big data storage
LeMeniz Infotech
 
PRIVACY-PRESERVING CIPHERTEXT MULTI-SHARING CONTROL FOR BIG DATA STORAGE
I3E Technologies
 
A Review on Key-Aggregate Cryptosystem for Climbable Knowledge Sharing in Clo...
Editor IJCATR
 
Hybrid cryptographic technique using rsa algorithm and scheduling concepts
IJNSA Journal
 

What's hot (20)

PDF
SECURE SENSITIVE DATA SHARING ON BIG DATA PLATFORM
AM Publications
 
PPT
Cryptography
Sajal Agarwal
 
PDF
A novel approach to information security using safe
eSAT Publishing House
 
PDF
A novel approach to information security using safe exchange of encrypted dat...
eSAT Journals
 
PDF
Jdbc 6
Tuan Ngo
 
PPTX
603535ransomware
Alexander Constantinou
 
PDF
cryptography
Balaji Ravi
 
PPTX
Model pretnji za image pass - zoss
Milan Lukic
 
PPTX
Russian technology in indian banking system 1
Rajkiran Mummadi
 
PDF
US Patriot Act OSCON2012 David Mertz
OSCON Byrum
 
PDF
Report dna
DrAliKMattar
 
PDF
Attribute-Based Data Sharing
IJERA Editor
 
PDF
Week 12 slide
Haruki0428
 
PDF
Secure Medical Data Computation using Virtual_ID Authentication and File Swap...
IJASRD Journal
 
PDF
Multi-part Dynamic Key Generation For Secure Data Encryption
CSCJournals
 
PPTX
Encrytion ppt
Raj Sampat
 
PPT
Chapter 08
cclay3
 
PDF
Achieving data integrity by forming the digital signature using RSA and SHA-1...
IOSR Journals
 
PDF
Security Basics
ArchitecTerra Ltd.
 
PPTX
SmartLock
masa-pay
 
SECURE SENSITIVE DATA SHARING ON BIG DATA PLATFORM
AM Publications
 
Cryptography
Sajal Agarwal
 
A novel approach to information security using safe
eSAT Publishing House
 
A novel approach to information security using safe exchange of encrypted dat...
eSAT Journals
 
Jdbc 6
Tuan Ngo
 
603535ransomware
Alexander Constantinou
 
cryptography
Balaji Ravi
 
Model pretnji za image pass - zoss
Milan Lukic
 
Russian technology in indian banking system 1
Rajkiran Mummadi
 
US Patriot Act OSCON2012 David Mertz
OSCON Byrum
 
Report dna
DrAliKMattar
 
Attribute-Based Data Sharing
IJERA Editor
 
Week 12 slide
Haruki0428
 
Secure Medical Data Computation using Virtual_ID Authentication and File Swap...
IJASRD Journal
 
Multi-part Dynamic Key Generation For Secure Data Encryption
CSCJournals
 
Encrytion ppt
Raj Sampat
 
Chapter 08
cclay3
 
Achieving data integrity by forming the digital signature using RSA and SHA-1...
IOSR Journals
 
Security Basics
ArchitecTerra Ltd.
 
SmartLock
masa-pay
 
Ad

Similar to project 11 (20)

PDF
Hindering data theft attack through fog computing
eSAT Publishing House
 
PDF
FOGCOMPUTING
Anvesh Kolluri
 
PDF
Securing Cloud Using Fog: A Review
IRJET Journal
 
PDF
IRJET- Medical Big Data Protection using Fog Computing and Decoy Technique
IRJET Journal
 
PPT
Fog computing provide security to data in cloud ppt
priyanka reddy
 
PDF
Fog Computing:The Justifying Insider Data Stealing Attacks in the Cloud
IJSRD
 
PDF
IRJET - Security Model for Preserving the Privacy of Medical Big Data in ...
IRJET Journal
 
PDF
Fog computing a new concept to minimize the attacks and to provide security i...
eSAT Publishing House
 
PPTX
Presentation1
Kollipara Kiranmai
 
PPTX
Cloud security From Infrastructure to People-ware
Tzar Umang
 
PDF
IRJET- Providing Privacy in Healthcare Cloud for Medical Data using Fog Compu...
IRJET Journal
 
PDF
Computing security
seung hyun Seo
 
PDF
Taking Account of Privacy When Designing Cloud Computing Services
white paper
 
PPTX
Oruta ppt
Manasa Chowdary
 
PPTX
LDSS for mobile cloud
sreelekshmi kishna
 
PPT
Cloud Monitoring And Forensic Using Security Metrics
Sandeep Saxena
 
PPTX
Cloud computing security policy framework for mitigating denial of service at...
Venkatesh Prabhu
 
PPTX
cloud security using Fog Computing
archana lisbon
 
PPTX
Fog computing
Ankit_ap
 
PDF
A SECURED AUDITING PROTOCOL FOR TRANSFERRING DATA AND PROTECTED DISTRIBUTED S...
IRJET Journal
 
Hindering data theft attack through fog computing
eSAT Publishing House
 
FOGCOMPUTING
Anvesh Kolluri
 
Securing Cloud Using Fog: A Review
IRJET Journal
 
IRJET- Medical Big Data Protection using Fog Computing and Decoy Technique
IRJET Journal
 
Fog computing provide security to data in cloud ppt
priyanka reddy
 
Fog Computing:The Justifying Insider Data Stealing Attacks in the Cloud
IJSRD
 
IRJET - Security Model for Preserving the Privacy of Medical Big Data in ...
IRJET Journal
 
Fog computing a new concept to minimize the attacks and to provide security i...
eSAT Publishing House
 
Presentation1
Kollipara Kiranmai
 
Cloud security From Infrastructure to People-ware
Tzar Umang
 
IRJET- Providing Privacy in Healthcare Cloud for Medical Data using Fog Compu...
IRJET Journal
 
Computing security
seung hyun Seo
 
Taking Account of Privacy When Designing Cloud Computing Services
white paper
 
Oruta ppt
Manasa Chowdary
 
LDSS for mobile cloud
sreelekshmi kishna
 
Cloud Monitoring And Forensic Using Security Metrics
Sandeep Saxena
 
Cloud computing security policy framework for mitigating denial of service at...
Venkatesh Prabhu
 
cloud security using Fog Computing
archana lisbon
 
Fog computing
Ankit_ap
 
A SECURED AUDITING PROTOCOL FOR TRANSFERRING DATA AND PROTECTED DISTRIBUTED S...
IRJET Journal
 
Ad

Recently uploaded (20)

PDF
RMMM.pdf make it easy to upload and study
sajedul2
 
PPTX
Cell Types and Its function , kingdom of life
ClaireMangundayao1
 
PPTX
Renaissance Architecture: A Journey from Faith to Humanism
DrMonicaSharma
 
PDF
Origin of periodic table-Mendeleev’s Periodic-Modern Periodic table
Mithil Fal Desai
 
PDF
Supply Chain Operations Speaking Notes -ICLT Program
labyankof
 
PPTX
Week 4 Term 3 Study Techniques revisited.pptx
mansk2
 
PDF
Classroom Observation Tools for Teachers
Nicaramirez
 
PDF
Physiotherapy_for_Respiratory_and_Cardiac_Problems WEBBER.pdf
DrMONISHAphysio
 
PPTX
Final Presentation General Medicine 03-08-2024.pptx
ZaheerAhmad228692
 
PPTX
master seminar digital applications in india
ananyaray35
 
PPTX
BOWEL ELIMINATION FACTORS AFFECTING AND TYPES
PreetiSawant10
 
PDF
TR - Agricultural Crops Production NC III.pdf
avgilmegino3
 
PPTX
Institutional Correction lecture only . . .
limvtheghins
 
PPTX
Pharma ospi slides which help in ospi learning
rameetkumar304
 
PPTX
The Healthy Child – Unit II | Child Health Nursing I | B.Sc Nursing 5th Semester
RAKESH SAJJAN
 
PDF
O7-L3 Supply Chain Operations - ICLT Program
labyankof
 
PPTX
PPH.pptx obstetrics and gynecology in nursing
SrideviDevaraj5
 
PDF
Complications of Minimal Access Surgery at WLH
mohitsuren827
 
PDF
Insiders guide to clinical Medicine.pdf
AbhishekPatil315128
 
PDF
FourierSeries-QuestionsWithAnswers(Part-A).pdf
Raji Murugan
 
RMMM.pdf make it easy to upload and study
sajedul2
 
Cell Types and Its function , kingdom of life
ClaireMangundayao1
 
Renaissance Architecture: A Journey from Faith to Humanism
DrMonicaSharma
 
Origin of periodic table-Mendeleev’s Periodic-Modern Periodic table
Mithil Fal Desai
 
Supply Chain Operations Speaking Notes -ICLT Program
labyankof
 
Week 4 Term 3 Study Techniques revisited.pptx
mansk2
 
Classroom Observation Tools for Teachers
Nicaramirez
 
Physiotherapy_for_Respiratory_and_Cardiac_Problems WEBBER.pdf
DrMONISHAphysio
 
Final Presentation General Medicine 03-08-2024.pptx
ZaheerAhmad228692
 
master seminar digital applications in india
ananyaray35
 
BOWEL ELIMINATION FACTORS AFFECTING AND TYPES
PreetiSawant10
 
TR - Agricultural Crops Production NC III.pdf
avgilmegino3
 
Institutional Correction lecture only . . .
limvtheghins
 
Pharma ospi slides which help in ospi learning
rameetkumar304
 
The Healthy Child – Unit II | Child Health Nursing I | B.Sc Nursing 5th Semester
RAKESH SAJJAN
 
O7-L3 Supply Chain Operations - ICLT Program
labyankof
 
PPH.pptx obstetrics and gynecology in nursing
SrideviDevaraj5
 
Complications of Minimal Access Surgery at WLH
mohitsuren827
 
Insiders guide to clinical Medicine.pdf
AbhishekPatil315128
 
FourierSeries-QuestionsWithAnswers(Part-A).pdf
Raji Murugan
 

project 11

  • 2.  Introduction  Existing System  Proposed System  H/W system Config.  S/W system Config.  Conclusion
  • 3. Cloud computing promises to significantly change the way we use computers and access and store our personal and business information. With these new computing and communications paradigms arise new data security challenges. Existing data protection mechanisms such as encryption have failed in preventing data theft attacks, especially those perpetrated by an insider to the cloud provider. We propose a completely different approach to securing the cloud using decoy information technology, that we have come to call Fog computing. We use this technology to launch disinformation attacks against malicious insiders, preventing them from distinguishing the real sensitive customer data from fake worthless data.
  • 4. Existing data protection mechanisms such as encryption have failed in preventing data theft attacks, especially those perpetrated by an insider to the cloud provider. Much research in Cloud computing security has focused on ways of preventing unauthorized and illegitimate access to data by developing sophisticated access control and encryption mechanisms. However these mechanisms have not been able to prevent data compromise.
  • 5. The decoys, serve two purposes: (1) validating whether data access is authorized when abnormal information access is detected, and (2) confusing the attacker with bogus information. MODULE DESCRIPTION: (1)Cloud computing (2)User behavior profiling (3)Decoy documents
  • 6.  Cloud computing is a model for enabling convenient, ondemand network access to a shared pool of configurable computing resources (for example, networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or serviceprovider interaction. It divide into three type 1.Application as a service. 2.Infrastructure as a service. 3.Platform as a service.
  • 8.  5)Centralization  6)Utilization and efficiency  7)Reliability  8)Performance  9)Security
  • 9. User profiling is a well known Technique that can be applied here to model how, when, and how much a user accesses their information in the Cloud. Such ‘normal user’ behavior can be continuously checked to determine whether abnormal access to a user’s information is occurring. This method of behavior-based security is commonly used in fraud detection applications. We monitor for abnormal search behaviors that exhibit deviations from the user baseline the correlation of search behavior anomaly detection with trap-based decoy files should provide stronger evidence of malfeasance, and therefore improve a detector’s accuracy.
  • 10. The approach here is for securing data in the cloud using offensive decoy technology. We monitor data access in the cloud and detect abnormal data access patterns. we launch a disinformation attack by returning large amounts of decoy information to the attacker. This protects against the misuse of the user’s real data.
  • 11.  The correlation of search behavior anomaly detection with trap-based decoy files should provide stronger evidence of malfeasance, and therefore improve a detector’s accuracy.  We hypothesize that detecting abnormal search operations performed prior to an unsuspecting user opening a decoy file will corroborate the suspicion that the user is indeed impersonating another victim user
  • 12.  This scenario covers the threat model of illegitimate access to Cloud data.  Furthermore, an accidental opening of a decoy file by a legitimate user might be recognized as an accident if the search behavior is not deemed abnormal.  In other words, detecting abnormal search and decoy traps together may make a very effective masquerade detection System.  Combining the two techniques improves detection accuracy.
  • 14.  Processor - Pentium –III  Speed - 1.1 Ghz  RAM - 256 MB(min)  Hard Disk - 20 GB  Floppy Drive - 1.44 MB  Key Board - Standard Windows Keyboard  Mouse - Two or Three Button Mouse  Monitor - SVGA
  • 15.  Operating System : Windows95/98/2000/XP  Application Server : Tomcat5.0/6.X  Front End : HTML, Java, Jsp  Scripts : JavaScript.  Server side Script : Java Server Pages.  Database : My sql  Database Connectivity : JDBC.
  • 16.  We had present our project approach to securing personal and business data in the Cloud.  We propose monitoring data access patterns by profiling user behavior to determine if and when a malicious insider illegitimately accesses someone’s documents in a Cloud service.  We inundate the malicious insider with bogus information in order to dilute the user’s real data, Such preventive attacks that rely on disinformation technology , could provide unprecedented levels of security in the Cloud and in social networks model.