ISSN: 2250-3005 - ijcer

More documents

Recommendations

Info

International Journal Of Computational Engineering Research (ijceronline.com) Vol. 2 Issue. 8The clouds have different architecture based on the services they provide. The data is stored on to centralized locationcalled data centers having a large size of data storage. The data as well as processing is somewhere on servers. So, the clientshave to trust the provider on the availability as well as data security. The SLA is the only legal agreement between the serviceprovider and client [7]. The only means the provider can gain trust of client is through the SLA, so it has to be standardize.A key part of a Service Level Agreement deals with monitoring and measuring service level performance. Essentially,every service must be capable of being measured and the results analysed and reported. The benchmarks, targets and metrics tobe utilized must be specified in the agreement itself. The service performance level must be reviewed regularly by the twoparties.Data ProtectionData stored in the cloud typically resides in a shared environment collocated with data from other customers.Organizations moving sensitive and regulated data into the cloud, therefore, must account for the means by which access to thedata is controlled and the data is kept secure.Any progress must first occur in a particular domain in our work focuses on an important class of widely usedapplications that includes e-mail, personal financial management, social networks, and business tools such as word processorsand spreadsheets. The following criteria define this class of applications:Provide services to a large number of distinct end users, as opposed to bulk data processing or workflow managementfor a single entity;Use a data model consisting mostly of sharable units, where all data objects have access control lists (ACLs) with oneor more users; and Developers could run the applications on a separate computing platform that encompasses the physicalinfrastructure, job scheduling, user authentication, and the base software environment, rather than implementing the platformthemselves.Cloud Data Protection as a ServiceCurrently, users must rely primarily on legal agreements and implied economic and reputation harm as a proxy forapplication trustworthiness. As an alternative, a cloud platform could help achieve a robust technical solution by making it easyfor developers to write maintainable applications that protect user data in the cloud, thereby providing the same economies ofscale for security and privacy as for computation and storage; and enabling independent verification token of the secure dataseeds with platform‟s operation and the runtime state of applications on it, so users can gain confidence that their data is beinghandled properly. With multiple providers and competition, users can regain control over their data. With a clear, universalapplication programming interface (API) to token for secure data seeds cloud services and the user‟s authorization, Cloud DataProtection as Service providers would be able to access and manipulate the data on another Cloud Data Protection as serviceprovider. Such an API would also enable pervasive systems to run seamlessly between providers and allow interaction betweenusers on different providers.In a cloud setting, the unit of access control is typically a sharable piece of user data for example, a document in a collaborativeeditor. Ideally, the system offers some analogous confinement of that data, restricting its visibility only to authorized users andapplications while allowing broad latitude for what operations are done on it [7]. This can make writing secure data seedssystems easier for programmers because confinement makes it more difficult for buggy code to leak data or for compromisedcode to grant unauthorized access to data.II. RELATED WORKCloud infrastructure management networks are how cloud providers access the infrastructure and manage the differentcomponents within that infrastructure. Only authorized administrators should have access to this network because control of themanagement interfaces of the individual virtualization hosts allows for complete control of all of the virtual machines on thathost. Root access on this interface is analogous to having the keys to a physical rack of servers within a data center.Administrator access to the central management console that manages all of the different virtualization hosts within the cloud isanalogous to having the keys to the datacenter and every rack within that datacenter [9]. Therefore, protection of theseinterfaces is of paramount importance, and a customer should never need direct access to any of the systems within this network.The reason for isolating this traffic is two-fold. First, both VMware VMotion and IP storage traffic need very fast datarates for optimal performance. Furthermore, traffic travels over the network in clear text and is susceptible to an attackersniffing sensitive information off the network. By fully isolating this network, an attacker would need physical access to thisnetwork to have any chance of successfully compromising this data.||Issn 2250-3005(online)|| ||December||2012|| Page 187
International Journal Of Computational Engineering Research (ijceronline.com) Vol. 2 Issue. 8With so much remote execution, cloud computing requires robust credential management that enable secure logins tomultiple cloud services from multiple devices in a seamless manner. The password schemes currently employed are a burden onusers and have practically forced users into poor practices. Generally, users can remember a small number of passwords, yeteach Web resource generally requires users to develop a unique set of credentials [10]. Services such as OpenID, which allowusers to have a single set of credentials for multiple sites, are powerful, but may be inappropriate for sensitive institutions suchas banks or government sites. Users may instead be able to use one-time-password devices, but they would need to have aunique device for each remote site to prevent one site from being able to use the credentials to authenticate to another.Even though these cloud computing components and characteristic provide compelling solutions to IT problems andmany advantages, cloud computing is not risk-free or completely secure. Management is responsible for taking care of securityrisks to protect systems and data. Governance, risk and control of cloud computing are therefore critical in the performance ofany assurance management process. Governance is enforced through the implementation of policies and procedures. Thesepolicies and procedures should be based on best practices and should be aligned between business and IT objectives. Riskidentification and analysis is important to priorities the implementation (extent and time frame) of governance and controls, aswell as to establish scope for reviewing or auditing cloud computing environments [11][12]. Based on the identification andanalysis of risks, controls should be designed and implemented to ensure that necessary actions are taken to address risks and toachieve business and IT objectives [13]. This research aims to provide some guidelines to assist management with theidentification of risks and recommendations for the mitigation of cloud computing security risks.The author presented a P2P backup scheme in which blocks of a data file are dispersed across m+k peers using an (m+k,m)-erasure code. Peers can request random blocks from their backup peers and verify the integrity using separate keyedcryptographic hashes attached on each block. Their scheme can detect data loss from free riding peers, but does not ensure alldata is unchanged.[13] proposed to verify data integrity using RSA-based hash to demonstrate uncreatable data possession inpeer-to peer file sharing networks. However, their proposal requires exponentiation over the entire data file, which is clearlyimpractical for the server whenever the file is large. [14] Author proposed allowing a TPA to keep online storage honest byfirst encrypting the data then sending a number of precomputed symmetric-keyed hashes over the encrypted data to the auditor[15].III. Implementation of Auditing and Data Scalability FrameworkWe implement the scalability framework we have defined for composite Web services. We proposed a new model–driven methodology for the security testing of cloud environments, to support batch auditing for TPA upon delegations frommulti-user. We also proposed new scheme that enables the data owner to delegate tasks of Cloud storage data file encryptionand trusted user secret key update to cloud servers without disclosing security data contents or user access privilege information.The trusted third party auditing process will bring in no new vulnerabilities towards user cloud storage data privacy. Our newmethod combined the secret key based dynamic secure authenticator with random masking to achieve the privacy-preservingpublic cloud data auditing system. We use a TPM-based trusted cloud storage SSL based third party auditing with secured keyauthenticationWith the help of the loader, our trusted hypervisor finally takes over the machine. Users can use TPM-based attestationto verify the software stack running on the physical machine. The code is divided in three main parts: (1) data unit manager thatstores the definition and information of the data units that can be accessed.During our experiments we observed a significant number of read operations on individual clouds that could not becompleted due to some error. The first thing that can be observed from the table is that the number of measurements taken fromeach location is not the same. Cloud storage concern the user does not have control over data until he has been gain access. Toprovide control over data in the cloud data-centric security is needed. Before accessing the data it should satisfy the policy rulesalready defined. So cloud should enforce this scheme by using cryptographic approaches.||Issn 2250-3005(online)|| ||December||2012|| Page 188
Page 1 and 2:
ISSN: 2250-3005VOLUME 2 December 20
Page 3 and 4:
Meisam MahdaviQualification: Phd El
Page 5 and 6:
16. Implementation Of Serial Commun
Page 7 and 8:
45 Performance Evaluation Of Energy
Page 9 and 10:
International Journal Of Computatio
Page 11 and 12:
Page 13 and 14:
Page 15 and 16:
Page 17 and 18:
Page 19 and 20:
Page 21 and 22:
01 .048International Journal Of Com
Page 23 and 24:
Page 25 and 26:
Page 27 and 28:
Page 29 and 30:
Page 31 and 32:
Page 33 and 34:
Page 35 and 36:
Page 37 and 38:
Page 39 and 40:
Page 41 and 42:
Page 43 and 44:
Page 45 and 46:
Page 48 and 49:
Page 50 and 51:
Page 52 and 53:
Page 54 and 55:
Page 56 and 57:
Page 58 and 59:
Page 60 and 61:
Page 62 and 63:
Page 64 and 65:
Page 66 and 67:
Page 68 and 69:
Page 70 and 71:
Page 72 and 73:
Page 74 and 75:
Page 76 and 77:
Page 78 and 79:
Page 80 and 81:
Page 82 and 83:
Page 84 and 85:
Page 86 and 87:
Page 88 and 89:
Page 90 and 91:
Page 92 and 93:
Page 94 and 95:
Page 96 and 97:
Page 98 and 99:
Page 100 and 101:
Page 102 and 103:
Page 104 and 105:
Page 106 and 107:
Page 108 and 109:
INTERNATIONAL JOURNAL OF COMPUTATIO
Page 110 and 111:
Page 112 and 113:
Page 114 and 115:
Page 116 and 117:
Page 118 and 119:
Page 120 and 121:
Page 122 and 123:
Page 124 and 125:
Page 126 and 127:
Page 128 and 129:
Page 130 and 131:
Page 132 and 133:
Page 134 and 135:
Page 136 and 137:
Page 138 and 139:
Page 140 and 141:
Page 142 and 143:
Page 144 and 145: International Journal Of Computatio
Page 186 and 187: Body Acceleration (m/Sec2)Dynamic T
Page 224 and 225: EigenvalueEigenvalueInternational J
Page 244 and 245:
Page 246 and 247:
Page 248 and 249:
Page 250 and 251:
Page 252 and 253:
Page 254 and 255:
Page 256 and 257:
Page 258 and 259:
Page 260 and 261:
Page 262 and 263:
Page 264 and 265:
Page 266 and 267:
Page 268 and 269:
Page 270 and 271:
Page 272 and 273:
Page 274 and 275:
Page 276 and 277:
Page 278 and 279:
Page 280 and 281:
Page 282 and 283:
Page 284 and 285:
Page 286 and 287:
Page 288 and 289:
Page 290 and 291:
Page 292 and 293:
Page 294 and 295:
Page 296 and 297:
Page 298 and 299:
Page 300 and 301:
Page 302 and 303:
Page 304 and 305:
Page 306 and 307:
Page 308 and 309:
Page 310 and 311:
Page 312 and 313:
Page 314 and 315:
Page 316 and 317:
Page 318 and 319:
Page 320 and 321:
Page 322 and 323:
Page 324 and 325:
Page 326 and 327:
Page 328 and 329:
Page 330 and 331:
Page 332 and 333:
Page 334 and 335:
Average JitterThroughputInternation
Page 336 and 337:
Energy Consumed in Received ModeEne
Page 338 and 339:
Page 340 and 341:
Page 342 and 343:
Page 344 and 345:
show all

ISSN: 2250-3005 - ijcer

Create successful ePaper yourself

Delete template?

Save as template?