Cloud Security Strategies & Stats

These include the specifics of the security of the cyber-physical system.

Uploaded by

Vartika

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

13 views25 pages

Cloud Security Strategies & Stats

These include the specifics of the security of the cyber-physical system.

Uploaded by

Vartika

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 25

Cloud Security

S.Venkatesan
Acknowledgement: The contents, example scripts and some figures are copied from various sources.
Thanks to all authors and sources made those contents public and usable for educational purpose

2
NIST reference architecture
Security Requirements
Cloud-based control approach
Statistics
• 92% Enterprises Have a Multi-Cloud Strategy in Place

• 98% of Organizations Experienced a Cloud Security Breach

in Past 18 Months

• 72% of IT Security Leaders Rank Cloud as Top Digital

Transformation Priority

• ~90% of Data Breaches Target Servers

• 96% of Web App Attack-Based Mail Server Compromises

Involve the Cloud
TPM
Google Cloud Security
• Communications over the internet to Google public cloud
services are encrypted in transit.

• To protect DoS Google Cloud Armor

• Identities, users, and services are strongly authenticated.

Access to sensitive data is protected by advanced tools like
phishing-resistant security keys (Titan Security Key).

• Data stored on Google infrastructure is automatically

encrypted at rest and distributed for availability and
reliability.
Layers of encryption
Data at Google is broken up into encrypted
chunks for storage& Key Hierarchy
Protecting Data at Rest on Amazon S3 Glacier

• Data at rest stored in Amazon S3 Glacier is

automatically server-side encrypted using 256-bit
Advanced Encryption Standard (AES-256) with
keys maintained by AWS.

• The encryption key is then encrypted itself using

AES-256 with a master key that is stored in a
secure location.

• The master key is rotated on a regular basis.

Protecting Data at Rest on Amazon RDS

• INSERT INTO Customers (CustomerFirstName,CustomerLastName) VALUES

(AES_ENCRYPT('John',@key), AES_ENCRYPT('Smith',@key);
Harden the VMs – Google Cloud
• Integrity of the VMs will be checked.

• Secure Boot

• Virtual Trust Platform Module (TPM) - Platform

integrity, Disk encryption, Password protection.

• Google Titan Chip (similar to TPM) - securely identify

and authenticate legitimate access at the hardware
level, minimizing the chances of running altered
software.
Harden Your VMs with Shielded Computing

Cloud Next '19

Integrity of the Data
• One of the problems associated with
outsourcing data to cloud service providers is
the data integrity of outsourced data.

• Data integrity encompasses the

– Completeness
– Correctness and
– Freshness
Merkle Tree

Feifei Li, Marios Hadjileftheriou, George Kollios, and Leonid Reyzin, Authenticated Index Structures for Outsourced
Databases Handbooks on Database Security
An Example
Merkle Tree
Radix Path Identifier
Merkle Hash Tree with Radix Path Identifiers
Properties
Single Authentication Table
Level Based Authentication Table
Multi-Join Query
References
• Erik Kajati, Peter Papcun, Chao Liu, Ray Y. Zhong,
Jiri Koziorek, Iveta Zolotova, Cloud based cyber-
physical systems: Network evaluation study,
Advanced Engineering Informatics, Volume 42,
2019.

• https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nists
pecialpublication500-292.pdf

• https://www.apriorit.com/dev-blog/545-
sandbox-evading-malware

Cloud Security: Best Practices & Insights
No ratings yet
Cloud Security: Best Practices & Insights
22 pages
Tci Acm PDF
No ratings yet
Tci Acm PDF
13 pages
Adnan-2019-Big Data Security in The Web-Based PDF
No ratings yet
Adnan-2019-Big Data Security in The Web-Based PDF
13 pages
Google Cloud Security Guide
No ratings yet
Google Cloud Security Guide
8 pages
Enhance AWS Security: Key Solutions
No ratings yet
Enhance AWS Security: Key Solutions
40 pages
Cloud Security Study Guide
No ratings yet
Cloud Security Study Guide
11 pages
Week 4 Preparing For PCA Module 3
No ratings yet
Week 4 Preparing For PCA Module 3
100 pages
CloudComputing Unit 5
No ratings yet
CloudComputing Unit 5
27 pages
Cloud Security Practices and Tools
No ratings yet
Cloud Security Practices and Tools
16 pages
Ensuring Security
No ratings yet
Ensuring Security
39 pages
History
No ratings yet
History
63 pages
Cloud Security
No ratings yet
Cloud Security
23 pages
Cloud Security for IT Professionals
No ratings yet
Cloud Security for IT Professionals
20 pages
Security at Scale With Cloud Computing SADA-April16
No ratings yet
Security at Scale With Cloud Computing SADA-April16
11 pages
Efficient Security Framework For Data Migration in A Cloud Computing Environment
No ratings yet
Efficient Security Framework For Data Migration in A Cloud Computing Environment
9 pages
Cloud Security Services Risks and A Case Study On
No ratings yet
Cloud Security Services Risks and A Case Study On
8 pages
Cloud Security Responsibilities Explained
No ratings yet
Cloud Security Responsibilities Explained
15 pages
Final Thesis Document 2014-1 PDF
No ratings yet
Final Thesis Document 2014-1 PDF
226 pages
Seiger 2011
No ratings yet
Seiger 2011
4 pages
Data Confidential User Aut Lity and Integrity Verif Thenticator Scheme in C Fication Using Cloud
No ratings yet
Data Confidential User Aut Lity and Integrity Verif Thenticator Scheme in C Fication Using Cloud
5 pages
Module 5
No ratings yet
Module 5
45 pages
Trusted Cloud
No ratings yet
Trusted Cloud
5 pages
Secure Cloud Computing with AES & RSA
No ratings yet
Secure Cloud Computing with AES & RSA
6 pages
CCS C1 R 005 en File 12.en
No ratings yet
CCS C1 R 005 en File 12.en
3 pages
SaaS Cloud Security Management Guide
No ratings yet
SaaS Cloud Security Management Guide
4 pages
Cloudsecurityunit1 240904164811 446432e0
No ratings yet
Cloudsecurityunit1 240904164811 446432e0
68 pages
Cloud Security Reference Guide
No ratings yet
Cloud Security Reference Guide
21 pages
Cloud Storage Security Insights
No ratings yet
Cloud Storage Security Insights
3 pages
Google Cloud Security
No ratings yet
Google Cloud Security
20 pages
Effectively and Securely Using The Cloud Computing Paradigm
No ratings yet
Effectively and Securely Using The Cloud Computing Paradigm
83 pages
Cloud Foundation Security
No ratings yet
Cloud Foundation Security
98 pages
Cloud Security Fundamentals
No ratings yet
Cloud Security Fundamentals
4 pages
Chapter 1
No ratings yet
Chapter 1
39 pages
Cloud Security
No ratings yet
Cloud Security
10 pages
Cloud Security and Security As A Service
No ratings yet
Cloud Security and Security As A Service
40 pages
Chapter 10
No ratings yet
Chapter 10
37 pages
Google Infrastructure Whitepaper Fa
No ratings yet
Google Infrastructure Whitepaper Fa
16 pages
GCP - Security Hardening Checklist
No ratings yet
GCP - Security Hardening Checklist
9 pages
Cloud Unit IV-1
No ratings yet
Cloud Unit IV-1
13 pages
BLOG-Technical and Architectural
No ratings yet
BLOG-Technical and Architectural
4 pages
Cloud Computing Security Risks Overview
No ratings yet
Cloud Computing Security Risks Overview
15 pages
Towards Trusted Cloud Computing: Pramila.S, Sabrabeebe.M
No ratings yet
Towards Trusted Cloud Computing: Pramila.S, Sabrabeebe.M
5 pages
Cloud Security Basics Guide
No ratings yet
Cloud Security Basics Guide
33 pages
Cloud Security Using Third Party Auditing and Encryption Service
No ratings yet
Cloud Security Using Third Party Auditing and Encryption Service
37 pages
Chapter1 SLM
No ratings yet
Chapter1 SLM
26 pages
Research Paper Final11
No ratings yet
Research Paper Final11
10 pages
Cloud Computing Unit-5
100% (1)
Cloud Computing Unit-5
6 pages
An Implementation of RSA Algorithm in Google Cloud Using Cloud SQL
No ratings yet
An Implementation of RSA Algorithm in Google Cloud Using Cloud SQL
6 pages
Optimizing and Operating v1.2
No ratings yet
Optimizing and Operating v1.2
101 pages
Cloud Data Security Solutions
100% (1)
Cloud Data Security Solutions
5 pages
Climent E. Cloud Security Strategies. Protecting Data in The Digital Age 2024
No ratings yet
Climent E. Cloud Security Strategies. Protecting Data in The Digital Age 2024
213 pages
Scientific Discoveries
No ratings yet
Scientific Discoveries
5 pages
Exam 4
No ratings yet
Exam 4
29 pages
Dustinrev Sumita
No ratings yet
Dustinrev Sumita
5 pages
WINSEM2024-25 BITE412L TH VL2024250502694 2025-03-27 Reference-Material-I
No ratings yet
WINSEM2024-25 BITE412L TH VL2024250502694 2025-03-27 Reference-Material-I
50 pages
Handling Data Breach, Data Loss, Account Hijacking
No ratings yet
Handling Data Breach, Data Loss, Account Hijacking
3 pages
Ch-7 .Secure Disributed Data Storage in Cloud Computing
No ratings yet
Ch-7 .Secure Disributed Data Storage in Cloud Computing
42 pages
Bhajan
No ratings yet
Bhajan
22 pages
Lecture Slides On (ME 4201) Applied Thermodynamics-II: by Md. Golam Kibria Lecturer, Dept. of ME
No ratings yet
Lecture Slides On (ME 4201) Applied Thermodynamics-II: by Md. Golam Kibria Lecturer, Dept. of ME
11 pages
Ai 3,4,5 Vtu nOTES
No ratings yet
Ai 3,4,5 Vtu nOTES
22 pages
Analysis of Clipper Circuits: Ashish Mohanka
No ratings yet
Analysis of Clipper Circuits: Ashish Mohanka
53 pages
FMD Question Bank 3141907
No ratings yet
FMD Question Bank 3141907
4 pages
Basic Ee Expt 6 Power
No ratings yet
Basic Ee Expt 6 Power
5 pages
API 650 Tank Installation Guide
No ratings yet
API 650 Tank Installation Guide
183 pages
Rock Extensometer
No ratings yet
Rock Extensometer
1 page
Peptido 25-25
No ratings yet
Peptido 25-25
1 page
AES and Proposed Encryption Algorithm
No ratings yet
AES and Proposed Encryption Algorithm
66 pages
Carbohydrate Research: Tingting Kou, Qunyu Gao
No ratings yet
Carbohydrate Research: Tingting Kou, Qunyu Gao
6 pages
K2 Connect Compatibility Matrixv
No ratings yet
K2 Connect Compatibility Matrixv
4 pages
Iec 60085 1984
No ratings yet
Iec 60085 1984
10 pages
Schemersal Omron
No ratings yet
Schemersal Omron
6 pages
Test Methods: Specifications Premium Diesel Current ASTM D 975 Issues Test Methods
No ratings yet
Test Methods: Specifications Premium Diesel Current ASTM D 975 Issues Test Methods
12 pages
F1 - Miscellaneous
No ratings yet
F1 - Miscellaneous
43 pages
Apr 2025 Statement 10
100% (1)
Apr 2025 Statement 10
6 pages
Summative 2 - WK 3
No ratings yet
Summative 2 - WK 3
2 pages
Instructions: Yrc1000 Options
No ratings yet
Instructions: Yrc1000 Options
203 pages
Mensuration PDF
No ratings yet
Mensuration PDF
10 pages
Fire Control Panel Operation Guide
No ratings yet
Fire Control Panel Operation Guide
8 pages
Frame Structure Frame Characteristic RSOH (Regenerator Section Overhead) MSOH (Multiplex Section Overhead) References
No ratings yet
Frame Structure Frame Characteristic RSOH (Regenerator Section Overhead) MSOH (Multiplex Section Overhead) References
3 pages
PPL Approved Vendor List
No ratings yet
PPL Approved Vendor List
20 pages
PhET States of Matter Basics
No ratings yet
PhET States of Matter Basics
5 pages
DLP June 11 - Monomial Factoring
67% (6)
DLP June 11 - Monomial Factoring
5 pages
HVdc Electrode Design & Materials
No ratings yet
HVdc Electrode Design & Materials
7 pages
Screw Pile 2 PDF
100% (1)
Screw Pile 2 PDF
334 pages
Xample Olid Fluid Heat Transfer Problem: January 2017 6.1 Release 18.0
No ratings yet
Xample Olid Fluid Heat Transfer Problem: January 2017 6.1 Release 18.0
5 pages
Matlab Line and Curve Fitting Methods
No ratings yet
Matlab Line and Curve Fitting Methods
5 pages
20-22 Network Layer Design Issues
No ratings yet
20-22 Network Layer Design Issues
36 pages