Data Related Security

Data Breach: 1.Confidentiality
                         2. Integrity
Data Lock in: Users may lose data if they migrate from one vendor to another vendor.

Data Remanence: It  is the residual representation of data that have been nominally erased or removed in some way.
Data Recovery: Sometimes server may break down and  cause damage or loss to users data. To avoid this, data should be backed up to be recovered in future
Data Locality:  In SaaS model of cloud environment, the user doesn’t know where the data is stored which may be an issue. The issue can  be solved by creating secure SaaS model which can provide reliability to the customer on the location of the data of the user.

Comments

Post a Comment

Popular posts from this blog

Cloud service models

• Software as a Service (SaaS):                  -- It offers renting application functionality from a service provider rather than buying, installing and running software by the user. • Platform as a Service ( PaaS ) :                 -- It provides a platform in the cloud, upon which applications can be developed and executed. • Infrastructure as a Service ( IaaS ) :                   -- vendors offer computing power and storage space on demand.
Keep reading

Network level attacks

• DNS attacks:      Domain hijacking: Domain hijacking is defined as changing the name of a domain without the knowledge or permission from the domain’s owner or creator. This enable the intruders to access the sensitive information.       Cross site scripting: It is a type of attack in which user enters right URL of a website and hacker on the other site redirect the user to its own website and hack its credentials. • IP spoofing:         DOS attack: When hackers overflows a network server or web server with frequent request of services to damage the network, the denial of service cannot keep up with them, server could not legitimate client regular requests. • Man in the middle attack: This is another issue of network security that will happen if secure socket layer (SSL) is not properly configured. • Network Sniffing: Another type of attack is network sniffer, it is a more critical issue of network security in which unencryp
Keep reading

Types of clouds

Private cloud                      The cloud is managed by an organization and serve it solely. Public cloud              --The cloud infrastructure is owned and managed by a large Cloud Service Provider (CSP). Community cloud                    --The cloud is managed by several organizations and supports a specific community that has the same interest. Hybrid cloud                    -- The cloud infrastructure is composed of two or more of the above models           
Keep reading