Presentation is loading. Please wait.

Presentation is loading. Please wait.

Sinaia, Romania August, 2014 14 TH Workshop “Software Engineering Education and Reverse Engineering” Dhuratë Hyseni, Betim Çiço South East European University.

Published byDamian Chase Modified over 8 years ago

Similar presentations

Presentation on theme: "Sinaia, Romania August, 2014 14 TH Workshop “Software Engineering Education and Reverse Engineering” Dhuratë Hyseni, Betim Çiço South East European University."— Presentation transcript:

1 Sinaia, Romania August, 2014 14 TH Workshop “Software Engineering Education and Reverse Engineering” Dhuratë Hyseni, Betim Çiço South East European University - Tetovo, Macedonia dhurate.hyseni@gmail.com b.cico@seeu.edu.mk

2 Introduction Problem statement Cloud security The objectives for security in the cloud C-A-I Data security in cloud The proposed model for data security in cloud Conclusion 2 14 TH Workshop “Software Engineering Education and Reverse Engineering” Sinaia, Romania, August 2014

3 Cloud computing Security in the cloud Increased security Cloud service provider 3 14 TH Workshop “Software Engineering Education and Reverse Engineering” Sinaia, Romania, August 2014

4 4 The issue of security in cloud has discouraged businesses to run in cloud computing 14 TH Workshop “Software Engineering Education and Reverse Engineering” Sinaia, Romania, August 2014 Results of IDC survey ranking security challenges, 2012 (Source: http://www.csrc.nist.gov/groups/SNS/cloud-computing)

5 When we use cloud technology we should consider the higher security level because now our data and services should be trusted to a third party. Important role in providing safe data in cloud offers cryptography We propose a solution for cloud security architecture grounded elements in cryptography 5 14 TH Workshop “Software Engineering Education and Reverse Engineering” Sinaia, Romania, August 2014

6 During transfer of data - we proposed to use a model for encrypting the data In our future work we will propose an algorithm which is used for data encryption The other part of the model will include the part that the user of cloud is notified for each and every attack that occurs for data 6 14 TH Workshop “Software Engineering Education and Reverse Engineering” Sinaia, Romania, August 2014

7 Some of the main reasons of fails on cloud are as follows: – One of the reasons could can be hardware, on cloud computing is known as IaaS. – Another reason could be mistakes or better say possible fails of software, on cloud computing known as SaaS. – Disagreements of client and provider could be another reason of fail etc. 7 14 TH Workshop “Software Engineering Education and Reverse Engineering” Sinaia, Romania, August 2014

8 – Multi-tenancy - possibility to use common resources which are offered by the provider – Escalation - possibility of escalating services and hardware that are offered on cloud – Elasticity - possibility to use resources based on the needs, when there’s a need to increase resources, if there’s no need to remove them – Pay-as-you-go- the possibility that all costumers pay as they use it 8 14 TH Workshop “Software Engineering Education and Reverse Engineering” Sinaia, Romania, August 2014

9 Confidentiality - protection private data of client. Availability- the possibility to use applications on cloud computing. Integrity- understand the client awareness that his data is placed on the cloud and unauthorized persons cannot gain access and this data is available any time we need it. 9 14 TH Workshop “Software Engineering Education and Reverse Engineering” Sinaia, Romania, August 2014

10 Sensitive rating of data SR[i] = ( C[i] + (1/A[i] * 10 + I[i] ) ) / 4 Source (A Framework to Enhance Cryptographic Parameter for Data In Cloud, R.Sivaranjani, R.Radhika, 2014) SR[i] = Sensitive Rating, C[i]= Confidentiality, A[i]= Availability, I[i]= Integrity 10 14 TH Workshop “Software Engineering Education and Reverse Engineering” Sinaia, Romania, August 2014

11 11 Data security in cloud computing 14 TH Workshop “Software Engineering Education and Reverse Engineering” Sinaia, Romania, August 2014 Data security Data transfer o Provider o End users of the system o The manager of auditing

12 Role of cryptography in cloud Cryptography- increase the reliability for the customers – symmetric cryptography – asymmetric cryptography Communication between sender and receiver of the information 12 14 TH Workshop “Software Engineering Education and Reverse Engineering” Sinaia, Romania, August 2014

13 Features of cryptography 13 Simetrical cryptography Asymetrical cryptography Information sender Key encryptionPrivate key and Public key Informacionit reciever Key decryptionPrivate key and Public key Representer  DES (Data Encryption Standard),  3DES,  RC5,  RC6,  Blowfish,  Two-Fish  AES (Advanced Encryption Standard)  RSA (Rivest Shamir Adleman)  ECC (Elliptic Curve Cryptosystem) (Source: Identity-Based Cryptography for Cloud Security, Hongwei Li1, Yuanshun Dai2, Bo Yang3) 14 TH Workshop “Software Engineering Education and Reverse Engineering” Sinaia, Romania, August 2014

14 Security challenges in major areas of cloud and role of cryptography There are some challenges that are part of the cryptography and that we will focus for propose new algorithm: o Proof of retrievability o Secure deletion in cloud o Storage security o Communication security o Virtualization security 14 14 TH Workshop “Software Engineering Education and Reverse Engineering” Sinaia, Romania, August 2014

15 The proposed model for data security Propose model for the data security on cloud – is based on the data communication channel – data is encrypted before uploading to the server storage – users can decrypt it using button stored on the mail server at the time of encryption 15 14 TH Workshop “Software Engineering Education and Reverse Engineering” Sinaia, Romania, August 2014

16 Model proposal of data encryption brings convenient way to store files approaches of: – secure the confidentiality, – integrity and – authentication of tests 16

17 Determined to propose the Information Dispersal Algorithm for data encrypting We are working to propose in the future a new algorithm that can be much more reliable for the cloud computing 17 14 TH Workshop “Software Engineering Education and Reverse Engineering” Sinaia, Romania, August 2014

18 18 Making our data more secure and reliable Building mechanisms of cryptography for the protection of data both: – during transfer and – saving in database We proposed the model for security in the cloud based in cryptography that uses Information Dispersal Algorithm for encrypting data All the propositions will be provided by practical examples

19 19 ?

Download ppt "Sinaia, Romania August, 2014 14 TH Workshop “Software Engineering Education and Reverse Engineering” Dhuratë Hyseni, Betim Çiço South East European University."

Similar presentations

Trusted Data Sharing over Untrusted Cloud Storage Provider Gansen Zhao, Chunming Rong, Jin Li, Feng Zhang, and Yong Tang Cloud Computing Technology and.

Trusted Data Sharing over Untrusted Cloud Storage Provider Gansen Zhao, Chunming Rong, Jin Li, Feng Zhang, and Yong Tang Cloud Computing Technology and.
IS 302: Information Security and Trust Week 4: Asymmetric Encryption

IS 302: Information Security and Trust Week 4: Asymmetric Encryption
Internet and Intranet Protocols and Applications Lecture 9a: Secure Sockets Layer (SSL) March, 2004 Arthur Goldberg Computer Science Department New York.

Internet and Intranet Protocols and Applications Lecture 9a: Secure Sockets Layer (SSL) March, 2004 Arthur Goldberg Computer Science Department New York.
Security of Things Kelly Jagers op Akkerhuis

Security of Things Kelly Jagers op Akkerhuis
Hardware Cryptographic Coprocessor Peter R. Wihl Security in Software.

Hardware Cryptographic Coprocessor Peter R. Wihl Security in Software.
Cryptography. 2 Objectives Explain common terms used in the field of cryptography Outline what mechanisms constitute a strong cryptosystem Demonstrate.

Cryptography. 2 Objectives Explain common terms used in the field of cryptography Outline what mechanisms constitute a strong cryptosystem Demonstrate.
Using Cryptography to Protect Data in Computer Networks: case study Vsevolod Ievgiienko National Taras Shevchenko University of Kiev Faculty of Cybernetics.

Using Cryptography to Protect Data in Computer Networks: case study Vsevolod Ievgiienko National Taras Shevchenko University of Kiev Faculty of Cybernetics.
Security Issues and Challenges in Cloud Computing

Security Issues and Challenges in Cloud Computing
Chapter 9: Using and Managing Keys Security+ Guide to Network Security Fundamentals Second Edition.

Chapter 9: Using and Managing Keys Security+ Guide to Network Security Fundamentals Second Edition.
Principles of Information Security, 2nd edition1 Cryptography.

Principles of Information Security, 2nd edition1 Cryptography.
Security Overview Hofstra University University College for Continuing Education - Advanced Java Programming Lecturer: Engin Yalt May 24, 2006.

Security Overview Hofstra University University College for Continuing Education - Advanced Java Programming Lecturer: Engin Yalt May 24, 2006.
Real-Time Authentication Using Digital Signature Schema Marissa Hollingsworth BOISECRYPT ‘09.

Real-Time Authentication Using Digital Signature Schema Marissa Hollingsworth BOISECRYPT ‘09.
A PASS Scheme in Clouding Computing - Protecting Data Privacy by Authentication and Secret Sharing Jyh-haw Yeh Dept. of Computer Science Boise State University.

A PASS Scheme in Clouding Computing - Protecting Data Privacy by Authentication and Secret Sharing Jyh-haw Yeh Dept. of Computer Science Boise State University.
Lesson Title: Introduction to Cryptography Dale R. Thompson Computer Science and Computer Engineering Dept. University of Arkansas

Lesson Title: Introduction to Cryptography Dale R. Thompson Computer Science and Computer Engineering Dept. University of Arkansas
Dr Alejandra Flores-Mosri Message Authentication Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to:

Dr Alejandra Flores-Mosri Message Authentication Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to:
Cryptography Basic (cont)

Cryptography Basic (cont)
Wireless Security In wireless networks. Security and Assurance - Goals Integrity Modified only in acceptable ways Modified only by authorized people Modified.

Wireless Security In wireless networks. Security and Assurance - Goals Integrity Modified only in acceptable ways Modified only by authorized people Modified.
BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.

BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.
Symmetric Key Distribution Protocol with Hybrid Crypto Systems Tony Nguyen.

Symmetric Key Distribution Protocol with Hybrid Crypto Systems Tony Nguyen.
Cryptographic Technologies

Cryptographic Technologies

Similar presentations

Ads by Google