36
Last Updated: Nov 2014 Prabath Siriwardena Isura Karunaratne Security in the Cloud

Cloud security

  • Upload
    wso2

  • View
    609

  • Download
    1

Tags:

Embed Size (px)

Citation preview

Page 1: Cloud security

Last Updated: Nov 2014

Prabath  Siriwardena  Isura  Karunaratne  

Security  in  the  Cloud  

Page 2: Cloud security

*  

Page 3: Cloud security

Virtualiza:on  

Page 4: Cloud security

Virtualiza:on  

Page 5: Cloud security

Service  Oriented  Architecture  

Page 6: Cloud security

Grid  Compu:ng    

Page 7: Cloud security

Infrastructure  

•  Hypervisor  •  Management  So3ware  •  Deployment  So3ware  •  Network  •  Server  •  Storage    •KDC,  Kerberos  support  

•  Cassandra  (experimental)  

•  Extensible:  IS  can  be  configured  to  leverage  any  user  store,  extending  exisGng  user  stores  or  implemenGng  from  scratch  

Page 8: Cloud security

Deployment  Models  •  Private  Cloud  Model  

   -­‐  Enterprise  owned  or  leased  •  Public  Cloud  Model  

   -­‐  Accessible  to  general  public  •  Hybrid  Cloud  Model  

   -­‐  Composi6on  of  private  and  public  cloud  •  Community  Cloud  Model  

   -­‐  Shared  infrastructure  for  specific  community    

Page 9: Cloud security

Cloud  Service  Models  

•  SaaS  •  PaaS  •  IaaS    •KDC,  Kerberos  support  

•  Cassandra  (experimental)  

•  Extensible:  IS  can  be  configured  to  leverage  any  user  store,  extending  exisGng  user  stores  or  implemenGng  from  scratch  

Page 10: Cloud security

Service  Delivery  by  Provider  

Page 11: Cloud security

Service  Delivery  by  Provider  

Page 12: Cloud security

Service  Delivery  by  Provider  

Page 13: Cloud security

Service  Delivery  by  Provider  

Page 14: Cloud security

Service  Delivery  by  Provider  

Page 15: Cloud security

Service  Delivery  by  Deployment  

Page 16: Cloud security

Service  Delivery  by  Deployment  

Page 17: Cloud security

Cloud  Under  AFack  

Page 18: Cloud security

AFacks  from  the  Cloud  

Page 19: Cloud security

Weakest  Link  

Page 20: Cloud security

Mul:-­‐tenancy  

Page 21: Cloud security

Mul:-­‐tenancy  within    an  Organiza:on  

Page 22: Cloud security

Mul:-­‐tenancy  

Page 23: Cloud security

Data  Isola:on  –  Separated  DBs  

Page 24: Cloud security

Data  Isola:on    Shared  DB/Separate  Schema  

Page 25: Cloud security

Data  Isola:on    Shared  DB/Shared  Schema  

Page 26: Cloud security

Data  Access  PaFerns  

Page 27: Cloud security

Data  Access  PaFerns  

Page 28: Cloud security

Data  Access  PaFerns  

Page 29: Cloud security

Data  Access  PaFerns  

Page 30: Cloud security

Data  Access  PaFerns  

Page 31: Cloud security

Data  Security  

Page 32: Cloud security

Data  Security  

Page 33: Cloud security

Homomorphic  Encryp:on  

Page 34: Cloud security

Cloud  Security  Requirements  

Page 35: Cloud security

Top  Threats  to  Cloud  Compu:ng  •  Data  Breaches  •  Data  Loss  •  Account  Hijacking  •  Insecure  APIs  •  DoS  •  Malicious  Insiders  •  Abuse  of  Cloud  Service  •  Insufficient  Due  Diligence  •  Shared  Technology  Issues

Page 36: Cloud security

Contact  us  !  


Cloud Security Alliance Guide to Cloud Security

Cloud Security Alliance Guide to Cloud Security

Technology
CLOUD SECURITY SPOTLIGHT - Alert Logic · concerned about cloud security, up 11 percentage points from last year’s cloud security survey. The top three cloud security challenges

CLOUD SECURITY SPOTLIGHT - Alert Logic · concerned about cloud security, up 11 percentage points from last year’s cloud security survey. The top three cloud security challenges

Documents
Cloud Security - Security Aspects of Cloud Computing

Cloud Security - Security Aspects of Cloud Computing

Technology
Nailing Cloud Security With Pre-Cloud Security Thinking?

Nailing Cloud Security With Pre-Cloud Security Thinking?

Technology
Scaling the Cloud - Cloud Security

Scaling the Cloud - Cloud Security

Technology
Security Challenges in Cloud Integration - Cloud Security Alliance, Austin Chapter

Security Challenges in Cloud Integration - Cloud Security Alliance, Austin Chapter

Technology
SECURITY CLOUD

SECURITY CLOUD

Documents
Cloud security

Cloud security

Technology
Google Cloud Security Whitepapersservices.google.com/fh/files/misc/security_whitepapers_march2018.pdf1 Google Cloud Security Whitepapers Google Cloud Infrastructure Security Design

Google Cloud Security Whitepapersservices.google.com/fh/files/misc/security_whitepapers_march2018.pdf1 Google Cloud Security Whitepapers Google Cloud Infrastructure Security Design

Documents
Panda Security La Cloud Security Company. 2 CONTENUTI Panda Cloud Protection Premesse Cosè la cloud security? Cosè Panda Cloud Protection? Target Come

Panda Security La Cloud Security Company. 2 CONTENUTI Panda Cloud Protection Premesse Cosè la cloud security? Cosè Panda Cloud Protection? Target Come

Documents
Cloud Security Certification - Certified Cloud Security

Cloud Security Certification - Certified Cloud Security

Documents
Cloud security: Accelerating cloud adoption

Cloud security: Accelerating cloud adoption

Technology
Cloud Security Strategies - eba.europa.euFabio+Gianotti+-+Cloud+Security+Strategies.pdf · Cloud Security Strategies ... Different approaches to cloud adoption due to ... • Evaluation

Cloud Security Strategies - eba.europa.euFabio+Gianotti+-+Cloud+Security+Strategies.pdf · Cloud Security Strategies ... Different approaches to cloud adoption due to ... • Evaluation

Documents
Cloud Security ("securing the cloud")

Cloud Security ("securing the cloud")

Technology
IBM Cloud Security for the Cloud · IBM Cloud Security for the Cloud Amr Ismail Security Solutions Sales Leader – Middle East & Pakistan

IBM Cloud Security for the Cloud · IBM Cloud Security for the Cloud Amr Ismail Security Solutions Sales Leader – Middle East & Pakistan

Documents
Security kaizen cloud security

Security kaizen cloud security

Technology
Cyber Security and Cloud Security

Cyber Security and Cloud Security

Business
Planning Guide: Cloud Security - Intel · 5 Intel IT Center Planning Guide | Cloud Security The Cloud Security Alliance, an industry group promoting cloud computing security …

Planning Guide: Cloud Security - Intel · 5 Intel IT Center Planning Guide | Cloud Security The Cloud Security Alliance, an industry group promoting cloud computing security …

Documents
Navigating the Changing Cloud Security Landscape · Navigating the Changing Cloud Security Landscape Dell cloud security white paper | September 2013 As cloud security threat levels

Navigating the Changing Cloud Security Landscape · Navigating the Changing Cloud Security Landscape Dell cloud security white paper | September 2013 As cloud security threat levels

Documents
National Cyber Security Centre (NCSC) Cloud Security ... · Cloud Security Principle 4: Governance 23 Cloud Security Principle 5: Operational Security 25 Cloud Security Principle

National Cyber Security Centre (NCSC) Cloud Security ... · Cloud Security Principle 4: Governance 23 Cloud Security Principle 5: Operational Security 25 Cloud Security Principle

Documents
Enterprise Cloud Security option · Enterprise Cloud Security option ... waf

Enterprise Cloud Security option · Enterprise Cloud Security option ... waf

Documents
Professional Cloud security Manager - wiselearner.com Cloud Security Manager.pdf · Understanding Cloud Computing Vulnerabilities Vulnerability Vulnerabilities and Cloud Risk Cloud

Professional Cloud security Manager - wiselearner.com Cloud Security Manager.pdf · Understanding Cloud Computing Vulnerabilities Vulnerability Vulnerabilities and Cloud Risk Cloud

Documents
Securing a Large Project with Private Cloud Computing · Cloud Computing Security Challenges • Addressing Security via Private Cloud ... Cloud Computing Security Challenges •

Securing a Large Project with Private Cloud Computing · Cloud Computing Security Challenges • Addressing Security via Private Cloud ... Cloud Computing Security Challenges •

Documents
CLOUD STORAGE SECURITY INTRODUCTION - SNIA Security Concerns with Cloud Understanding how Cloud services provide for the ... cloud computing environment, ... Cloud Storage Security

CLOUD STORAGE SECURITY INTRODUCTION - SNIA Security Concerns with Cloud Understanding how Cloud services provide for the ... cloud computing environment, ... Cloud Storage Security

Documents
Cloud Insights Security : Cloud Insights...Cloud Insights Security Product and customer data security is of utmost importance at NetApp. Cloud Insights follows security best practices

Cloud Insights Security : Cloud Insights...Cloud Insights Security Product and customer data security is of utmost importance at NetApp. Cloud Insights follows security best practices

Documents
Transforming Security Part 1: Cloud & Virtualization · Transforming Security Part 1: Cloud ... Practitioners Vendors Cloud Infrastructure ... Transforming Security Part 1: Cloud

Transforming Security Part 1: Cloud & Virtualization · Transforming Security Part 1: Cloud ... Practitioners Vendors Cloud Infrastructure ... Transforming Security Part 1: Cloud

Documents
Cloud Security & Cloud Encryption Explained

Cloud Security & Cloud Encryption Explained

Technology
Federated Cloud Security Architecture for Secure and … · Federated Cloud Security Architecture 171 2 Cloud Security We briefly review cloud security [40] and related prior work

Federated Cloud Security Architecture for Secure and … · Federated Cloud Security Architecture 171 2 Cloud Security We briefly review cloud security [40] and related prior work

Documents