Abstract
Cloud computing is having the capacity to dispose off the prerequisites for setting up high-cost computing framework and promises to provide the flexible architecture which is accessible from anywhere. The data in the cloud computing resides over an arrangement of network resources which enables position of the requirements for setting up costly data centers framework and information to be acquired to via virtual machines, and these serves might be arranged in any piece of the world. The cloud computing environment is adopted by a large number of organizations so the rapid transition toward the clouds has fueled concerns about security perspective. There are numbers of risks and challenges that have emerged due to use of cloud computing. The aim of this paper is to identify security issues in cloud computing which will be helpful to both cloud service providers and users to resolve those issues. As a result, this paper will access cloud security by recognizing security requirements and attempt to present the feasible solution that can reduce these potential threats.
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsReferences
Tripathi, A., & Mishra, A. (2011). Cloud computing security considerations. In Proceedings of the 2011 IEEE International Conference on Signal Processing, Communications and Computing (ICSPCC) (pp. 1–8), Xi’an, China, 14–16 September 2011.
Mill, P., & Grace, T. (2011). The NIST definition of cloud computing, January 2011.
Wang, J.-J., & Mu, S. (2011). Security issues and countermeasures in cloud computing. In Proceedings of the 2011 IEEE International Conference on Grey Systems and Intelligent Services (GSIS) (pp. 843–846), Nanjing, China, 15–18 September 2011.
Houmansadr, A., Zonouz, S. A., & Berthier, R. (2011). A cloud-based intrusion detection and response system for mobile phones. In Proceedings of the 2011 IEEE/IFIP 41st International Conference on Dependable Systems and Networks Workshops (DSN-W) (pp. 31–32), Hong Kong, China, 27–30 June 2011.
Taifi, M., Shi, J. Y., & Khreishah, A. (2011). SpotMPI: A framework for auction-based HPC computing using amazon spot instances. In Proceedings of the International Symposium on Advances of Distributed Computing and Networking (ADCN).
Popovic, O., Jovanovic, Z., Jovanovic, N., & Popovic, R. (2011) A comparison and security analysis of the cloud computing software platforms. In Proceedings of the 2011 10th International Conference on Telecommunication in Modern Satellite Cable and Broadcasting Services (TELSIKS) (Vol. 2, pp. 632–634), Nis, Serbia, 5–8 October 2011.
Gul, I., ur Rehman, A., & Islam, M. H. (2011). Cloud computing security auditing. In Proceedings of the 2011 the 2nd International Conference on Next Generation Information Technology (ICNIT) (pp. 143–148), Gyeongju, Korea, 21–23 June 2011.
Kandukuri, B. R., Paturi, V. R., & Rakshit, A. (2009). Cloud security issues. In IEEE International Conference on Services Computing, 2009. SCC’09 (pp. 517–520).
Chen, Z., & Yoon, J. (2010). IT auditing to assure a secure cloud computing. In 2010 6th World Congress on Services (SERVICES-1) (pp. 253–259).
Kandukuri, B. R., Paturi, V. R., & Rakshit, A. (2009). Cloud security issues. In Proceedings of the IEEE International Conference on Services Computing, 2009 (SCC’09) (pp. 517–520), Bangalore, India, 21–25 September 2009.
Chen, Z., & Yoon, J. (2010). IT auditing to assure a secure cloud computing. In Proceedings of the 2010 6th World Congress on Services (SERVICES-1) (pp. 253–259), Miami, FL, USA, 5–10 July 2010.
Ryan, G. W., & Bernard, H. R. (2013). Data management and analysis methods. Available online: http://www.rand.org/pubs/external_publications/EP20000033.html. Accessed on 25 August 2013.
Khalil, I., & Bagchi, S. (2011). Stealthy attacks in wireless ad hoc networks: detection and countermeasure. IEEE Transactions on Mobile Computing, 10(8), 1096–1112.
Panta, R. K., Bagchi, S., & Khalil, I. (2009). Efficient wireless reprogramming through reduced bandwidth usage and opportunistic sleeping. Ad Hoc Networks (an Elsevier Journal), 7(1), 42–62.
Almorsy, M., Grundy, J., & Müller. I. (2016). An analysis of the cloud computing security problem. arXiv preprint arXiv:1609.01107.
Fangfei, Z., Goel, M., Desnoyers, P., & Sundaram, R. (2011). Scheduler vulnerabilities and coordinated attacks in cloud computing. In Proceedings of the 2011 10th IEEE International Symposium on Network Computing and Applications (NCA) (pp. 123–130), Cambridge, MA, USA, 25–27 August 2011.
Karnwal, T., Sivakumar, T., & Aghila, G. (2012). A comber approach to protect cloud computing against XML DDoS and HTTP DDoS attack. In Proceedings of the 2012 IEEE Students’ Conference on Electrical, Electronics and Computer Science (SCEECS) (pp. 1–5), Bhopal, India, 1–2 March 2012.
Gruschka, N., Jensen, M. (2010). Attack surfaces: A taxonomy for attacks on cloud services. In Proceedings of the 2010 IEEE 3rd International Conference on Cloud Computing (CLOUD) (pp. 276–279), Miami, FL, USA, 5–10 July 2010.
Oberheide, J., Cooke, E., Jahanian, F., & Cloud, A. V. (2008). N-version antivirus in the network cloud. In Proceedings of the 17th Conference on Security Symposium (SS ’08) (pp. 91–106) USENIX Association:Berkeley, CA, USA, 2008.
Top Threats to Cloud Computing V1.0; Cloud Security Alliance: March 2010.
Tupakula, U., Varadharajan, V., & Akku, N. (2011). Intrusion detection techniques for infrastructure as a service cloud. In Proceedings of the 2011 IEEE Ninth International Conference on Dependable, Autonomic and Secure Computing (DASC) (pp. 744–751), Sydney, Australia, 12–14 December 2011.
Liu, B., Xu, E., Wang, J., Wei, Z., Xu, L., & Zhao, B. et al. (2011). Thwarting audio steganography attacks in cloud storage systems. In Proceedings of the 2011 International Conference on Cloud and Service Computing (CSC) (pp. 259–265), Hong Kong, China, 12–14 December 2011.
Szefer, J., & Lee, R. B. (2012). Architectural support for hypervisor-secure virtualization. SIGARCH Computer Architecture News, 40, 437–450.
Motawie, R., El-Khouly, M. M., & El-Seoud, S. A. (2016). Security problems in cloud computing. International Journal of Recent Contributions from Engineering, Science & IT (iJES), 4(4), 36–40.
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2019 Springer Nature Singapore Pte Ltd.
About this chapter
Cite this chapter
Wani, A.R., Rana, Q.P., Pandey, N. (2019). Analysis and Countermeasures for Security and Privacy Issues in Cloud Computing. In: Kapur, P., Klochkov, Y., Verma, A., Singh, G. (eds) System Performance and Management Analytics. Asset Analytics. Springer, Singapore. https://doi.org/10.1007/978-981-10-7323-6_4
Download citation
DOI: https://doi.org/10.1007/978-981-10-7323-6_4
Published:
Publisher Name: Springer, Singapore
Print ISBN: 978-981-10-7322-9
Online ISBN: 978-981-10-7323-6
eBook Packages: Business and ManagementBusiness and Management (R0)