2 responses June 04

profileruthvik
AjayWork.docx
Home>Business & Finance homework help>Management homework help>2 responses June 04

Cloud security is moving at a rapid pace, much like other technological changes in businesses today. Unlikely, even if there are tremendous advancements in defense systems regarding the confidentiality, authentication and access control, there is still a challenge to provide security against the availability of associated resources (Ghorbel & Jmaiel, 2017). Broadly, classifying five characteristics are

1. On-demand self-service

2. Broad network access

3. Multi-tenancy

4. Rapid elasticity and

5. Measured service

Along deployment models said to be for SaaS, PaaS, and IaaS are public, private, hybrid, and community. Denial-of-service (DoS) attack and distributed denial-of-service (DDoS) attack can primarily compromise the availability of the system services and can be easily started by using various tools, leading to financial damage, or affecting the reputation. DoS attack in Cloud computing is one of the major security concerns. DDoS attack floods the traffic with service requests that require a finite amount of time to be processed by the Cloud servers. This cripples down the availability of the Cloud services since it becomes busy in servicing these requests. Performing third-party, independent assessments of cloud security and thinking about the underlying controls on data security, access management, breach response plans, and so on, is just the minimum internal audit can do (Gupta & Badve, 2017), because that only provides a snapshot in time in a fast-moving area. For example, working with AWS, HP has created a way of centralizing group security policies through the IT infrastructure. The main cloud instance has all of the group policies established i.e., any new instance sits beneath this “parent” and effectively inherits its security policies automatically. It means, every time you make a change to the group policy, it cascades to all the instances that are underneath that. My concern for moving to the cloud, traceback techniques are used to find out the true sender of a packet by tracing back path to the initial source. When a packet enters the network, it is marked with some entity. Whenever there is a need of detecting the true source of the packet, this mark is used to traceback the initial sender. This technique is very useful in tracing DoS attacks.

                                                                References

Ghorbel, A. & Jmaiel, M. (2017, January 23). Privacy in cloud computing environments: a survey and research challenges. J Supercomput, 73, 2763-2800. Retrieved from DOI 10.1007/s11227-016-1953-y

Gupta, B. B. & Badve, O. P. (2017). Taxonomy of DoS and DDoS attacks and desirable defense mechanisms in a Cloud computing environment. Neural Comput & Applic, 28, 3655-3682. Retrieved from

https://eds-b-ebscohost-com.nec.gmilcs.org/