A Multi-layered Cloud Protection Framework

Saad Khan, Simon Parkinson, Andrew Crampton

Research output: Chapter in Book/Report/Conference proceedingConference contribution

1 Citation (Scopus)

Abstract

Cloud computing has many commercial advantages; however, companies tend to avoid trusting cloud service providers (CSPs) with their sensitive data because of the associated risks. Cloud infrastructures can be vulnerable due to a single flaw in any node with networking, computing, storage and authentication services capabilities, which can result in the exposure of vulnerabilities with severe consequences. This paper reviews various recent articles and determines the most prominent security challenges. The paper also includes the critical analysis of existing solutions to determine their limitations. Using these identified limitations, a multi-layered security framework is proposed that can be integrated within cloud components to resolve data, virtualization, access control, insiders and service unavailability challenges. A theoretical evaluation of the framework is also conducted to explore its benefits.
LanguageEnglish
Title of host publicationProceedings of the 10th International Conference on Utility and Cloud Computing (UCC), (Austin, TX: 5-8 December 2017)
Subtitle of host publicationCompanion Volume for Workshop Materials
PublisherAssociation for Computing Machinery (ACM)
Pages233-238
Number of pages6
ISBN (Electronic)9781450351959
DOIs
Publication statusPublished - 5 Dec 2017
Event10th International Conference on Utility and Cloud Computing - AT&T Hotel and Conference Center, Austin, United States
Duration: 5 Dec 20178 Dec 2017
Conference number: 10
http://www.depts.ttu.edu/cac/conferences/ucc2017/ (Link to Conference Website)

Conference

Conference10th International Conference on Utility and Cloud Computing
Abbreviated titleUCC '17
CountryUnited States
CityAustin
Period5/12/178/12/17
Internet address

Fingerprint

Cloud computing
Access control
Authentication
Defects
Industry
Virtualization

Cite this

Khan, S., Parkinson, S., & Crampton, A. (2017). A Multi-layered Cloud Protection Framework. In Proceedings of the 10th International Conference on Utility and Cloud Computing (UCC), (Austin, TX: 5-8 December 2017): Companion Volume for Workshop Materials (pp. 233-238). Association for Computing Machinery (ACM). https://doi.org/10.1145/3147234.3148098
Khan, Saad ; Parkinson, Simon ; Crampton, Andrew. / A Multi-layered Cloud Protection Framework. Proceedings of the 10th International Conference on Utility and Cloud Computing (UCC), (Austin, TX: 5-8 December 2017): Companion Volume for Workshop Materials. Association for Computing Machinery (ACM), 2017. pp. 233-238
@inproceedings{c6a8c69585d847b0aaf172736bcb52b8,
title = "A Multi-layered Cloud Protection Framework",
abstract = "Cloud computing has many commercial advantages; however, companies tend to avoid trusting cloud service providers (CSPs) with their sensitive data because of the associated risks. Cloud infrastructures can be vulnerable due to a single flaw in any node with networking, computing, storage and authentication services capabilities, which can result in the exposure of vulnerabilities with severe consequences. This paper reviews various recent articles and determines the most prominent security challenges. The paper also includes the critical analysis of existing solutions to determine their limitations. Using these identified limitations, a multi-layered security framework is proposed that can be integrated within cloud components to resolve data, virtualization, access control, insiders and service unavailability challenges. A theoretical evaluation of the framework is also conducted to explore its benefits.",
keywords = "Cloud security, Encryption, Multi-tenancy, Authentication",
author = "Saad Khan and Simon Parkinson and Andrew Crampton",
year = "2017",
month = "12",
day = "5",
doi = "10.1145/3147234.3148098",
language = "English",
pages = "233--238",
booktitle = "Proceedings of the 10th International Conference on Utility and Cloud Computing (UCC), (Austin, TX: 5-8 December 2017)",
publisher = "Association for Computing Machinery (ACM)",
address = "United States",

}

Khan, S, Parkinson, S & Crampton, A 2017, A Multi-layered Cloud Protection Framework. in Proceedings of the 10th International Conference on Utility and Cloud Computing (UCC), (Austin, TX: 5-8 December 2017): Companion Volume for Workshop Materials. Association for Computing Machinery (ACM), pp. 233-238, 10th International Conference on Utility and Cloud Computing, Austin, United States, 5/12/17. https://doi.org/10.1145/3147234.3148098

A Multi-layered Cloud Protection Framework. / Khan, Saad; Parkinson, Simon; Crampton, Andrew.

Proceedings of the 10th International Conference on Utility and Cloud Computing (UCC), (Austin, TX: 5-8 December 2017): Companion Volume for Workshop Materials. Association for Computing Machinery (ACM), 2017. p. 233-238.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

TY - GEN

T1 - A Multi-layered Cloud Protection Framework

AU - Khan, Saad

AU - Parkinson, Simon

AU - Crampton, Andrew

PY - 2017/12/5

Y1 - 2017/12/5

N2 - Cloud computing has many commercial advantages; however, companies tend to avoid trusting cloud service providers (CSPs) with their sensitive data because of the associated risks. Cloud infrastructures can be vulnerable due to a single flaw in any node with networking, computing, storage and authentication services capabilities, which can result in the exposure of vulnerabilities with severe consequences. This paper reviews various recent articles and determines the most prominent security challenges. The paper also includes the critical analysis of existing solutions to determine their limitations. Using these identified limitations, a multi-layered security framework is proposed that can be integrated within cloud components to resolve data, virtualization, access control, insiders and service unavailability challenges. A theoretical evaluation of the framework is also conducted to explore its benefits.

AB - Cloud computing has many commercial advantages; however, companies tend to avoid trusting cloud service providers (CSPs) with their sensitive data because of the associated risks. Cloud infrastructures can be vulnerable due to a single flaw in any node with networking, computing, storage and authentication services capabilities, which can result in the exposure of vulnerabilities with severe consequences. This paper reviews various recent articles and determines the most prominent security challenges. The paper also includes the critical analysis of existing solutions to determine their limitations. Using these identified limitations, a multi-layered security framework is proposed that can be integrated within cloud components to resolve data, virtualization, access control, insiders and service unavailability challenges. A theoretical evaluation of the framework is also conducted to explore its benefits.

KW - Cloud security

KW - Encryption

KW - Multi-tenancy

KW - Authentication

UR - https://dl.acm.org/citation.cfm?id=3147234

U2 - 10.1145/3147234.3148098

DO - 10.1145/3147234.3148098

M3 - Conference contribution

SP - 233

EP - 238

BT - Proceedings of the 10th International Conference on Utility and Cloud Computing (UCC), (Austin, TX: 5-8 December 2017)

PB - Association for Computing Machinery (ACM)

ER -

Khan S, Parkinson S, Crampton A. A Multi-layered Cloud Protection Framework. In Proceedings of the 10th International Conference on Utility and Cloud Computing (UCC), (Austin, TX: 5-8 December 2017): Companion Volume for Workshop Materials. Association for Computing Machinery (ACM). 2017. p. 233-238 https://doi.org/10.1145/3147234.3148098

Access to Document