Standards and Techniques to remove Data Remanence in Cloud Storage

2018 IEEE Punecon Pub Date : 2018-11-01 DOI:10.1109/PUNECON.2018.8745370

Seema B. Joshi

{"title":"Standards and Techniques to remove Data Remanence in Cloud Storage","authors":"Seema B. Joshi","doi":"10.1109/PUNECON.2018.8745370","DOIUrl":null,"url":null,"abstract":"Data security is one of the main concerns for organizations when organizations deploy cloud to store data. Particularly, data leakage is a critical issue in public clouds due to data remanence. The retentive property of storage media is observed as a major threat because it may include sensitive information such as user id, user passwords, secret keys, web URLs, etc. Healthcare records, financial records, defense records are some of the examples where data remanence has serious repercussions. Though consumers vacate cloud volumes, vendors do not securely recycle storage devices. Hence, cold boot attack, harvesting attacks, side-channel attacks are likely to occur in the cloud. It is required to ensure about data integrity and confidentiality of sensitive data within a cloud by organizations or users. It is observed that encryption and data persistence avoidance technology for different memory devices like Hard Disk Drive (HDD), Static and/or Dynamic Random-Access Memory (SDRAM) are widely used. In this paper, we discuss and provide various standards and techniques proposed in the literature to remove the data remanence in the cloud storage. Moreover, we present a comparison of parametric evaluation of overwriting standards to remove data remanence.","PeriodicalId":166677,"journal":{"name":"2018 IEEE Punecon","volume":" 17","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2018-11-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2018 IEEE Punecon","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/PUNECON.2018.8745370","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

Abstract

Data security is one of the main concerns for organizations when organizations deploy cloud to store data. Particularly, data leakage is a critical issue in public clouds due to data remanence. The retentive property of storage media is observed as a major threat because it may include sensitive information such as user id, user passwords, secret keys, web URLs, etc. Healthcare records, financial records, defense records are some of the examples where data remanence has serious repercussions. Though consumers vacate cloud volumes, vendors do not securely recycle storage devices. Hence, cold boot attack, harvesting attacks, side-channel attacks are likely to occur in the cloud. It is required to ensure about data integrity and confidentiality of sensitive data within a cloud by organizations or users. It is observed that encryption and data persistence avoidance technology for different memory devices like Hard Disk Drive (HDD), Static and/or Dynamic Random-Access Memory (SDRAM) are widely used. In this paper, we discuss and provide various standards and techniques proposed in the literature to remove the data remanence in the cloud storage. Moreover, we present a comparison of parametric evaluation of overwriting standards to remove data remanence.

查看原文本刊更多论文

消除云存储中数据残留的标准和技术

当组织部署云来存储数据时，数据安全性是组织的主要关注点之一。特别是，由于数据残留，数据泄漏是公共云中的一个关键问题。存储介质的保留属性被认为是一个主要威胁，因为它可能包含敏感信息，如用户id、用户密码、密钥、web url等。医疗记录、财务记录、防御记录是数据残留会产生严重影响的一些例子。尽管消费者清空了云卷，但供应商并没有安全地回收存储设备。因此，冷启动攻击、收集攻击、侧通道攻击很可能发生在云中。组织或用户需要确保云中的敏感数据的数据完整性和机密性。据观察，加密和数据持久化避免技术被广泛应用于不同的存储设备，如硬盘驱动器(HDD)，静态和/或动态随机存取存储器(SDRAM)。在本文中，我们讨论并提供了文献中提出的各种标准和技术来消除云存储中的数据残留。此外，我们还对覆盖标准的参数评价进行了比较，以消除数据残留。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2018 IEEE Punecon

自引率

0.00%

发文量