An encryption, compression and key(ECK) management based data security framework for infrastructure as a service in Cloud

2015 IEEE International Advance Computing Conference (IACC) Pub Date : 2015-06-12 DOI:10.1109/IADCC.2015.7154830

Sanket Salvi, H. A. Sanjay, K. Deepika, S. Rangavittala

{"title":"An encryption, compression and key(ECK) management based data security framework for infrastructure as a service in Cloud","authors":"Sanket Salvi, H. A. Sanjay, K. Deepika, S. Rangavittala","doi":"10.1109/IADCC.2015.7154830","DOIUrl":null,"url":null,"abstract":"Cloud Computing is the recent technology that is based on shared pool of resources and provides features like Ubiquitous access, multi-tenancy, flexibility, scalability and pay as you use, which makes it more resource efficient and cost effective. But Cloud-based systems open unfamiliar threats in authentication and authorization. Explicit authorization accordance must be defined at smallest level, especially in multi-tenant environments. The liaison between Cloud Service Provider & customer must also be clearly mentioned in relation like who holds administrative rights and indirect access to privileged customer information. Moreover the scenario of cloud in educational and research community is still developing and has some security concerns. This paper provides a brief review about Cloud Security concerns for adoption of cloud computing in data sensitive research and technology aided education. Also this paper proposes, ECK based framework for securing end-user data in Community Cloud. Implications and considerations for additional research are provided as well.","PeriodicalId":123908,"journal":{"name":"2015 IEEE International Advance Computing Conference (IACC)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2015-06-12","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"8","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2015 IEEE International Advance Computing Conference (IACC)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/IADCC.2015.7154830","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 8

Abstract

Cloud Computing is the recent technology that is based on shared pool of resources and provides features like Ubiquitous access, multi-tenancy, flexibility, scalability and pay as you use, which makes it more resource efficient and cost effective. But Cloud-based systems open unfamiliar threats in authentication and authorization. Explicit authorization accordance must be defined at smallest level, especially in multi-tenant environments. The liaison between Cloud Service Provider & customer must also be clearly mentioned in relation like who holds administrative rights and indirect access to privileged customer information. Moreover the scenario of cloud in educational and research community is still developing and has some security concerns. This paper provides a brief review about Cloud Security concerns for adoption of cloud computing in data sensitive research and technology aided education. Also this paper proposes, ECK based framework for securing end-user data in Community Cloud. Implications and considerations for additional research are provided as well.

查看原文本刊更多论文

一个基于加密、压缩和密钥(ECK)管理的数据安全框架，用于云中的基础设施即服务

云计算是一种基于共享资源池的最新技术，它提供了诸如无处不在的访问、多租户、灵活性、可伸缩性和按需付费等特性，使其更具资源效率和成本效益。但是基于云的系统在身份验证和授权方面带来了不熟悉的威胁。必须在最小级别定义显式授权一致性，特别是在多租户环境中。云服务提供商和客户之间的联系也必须明确提及，例如谁拥有管理权限和间接访问特权客户信息。此外，云在教育和科研领域的应用仍在发展中，存在一些安全问题。本文简要回顾了在数据敏感研究和技术辅助教育中采用云计算的云安全问题。提出了基于ECK的社区云终端用户数据安全框架。还提供了进一步研究的含义和注意事项。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2015 IEEE International Advance Computing Conference (IACC)

自引率

0.00%

发文量