ISSN ONLINE(2319-8753)PRINT(2347-6710)

All submissions of the EM system will be redirected to Online Manuscript Submission System. Authors are requested to submit articles directly to Online Manuscript Submission System of respective journal.

Certain Investigations on Security Issues and Resolving Strategies in Cloud Computing

K.Deepika1, N.Naveen Prasad1, Prof.S.Balamurugan1, S.Charanyaa2
  1. Department of IT, Kalaignar Karunanidhi Institute of Technology, Coimbatore, TamilNadu, India
  2. Senior Software Engineer Mainframe Technologies Former, Larsen & Tubro (L&T) Infotech, Chennai, TamilNadu, India
Related article at Pubmed, Scholar Google

Visit for more related articles at International Journal of Innovative Research in Science, Engineering and Technology

Abstract

This paper reviews methods developed for anonymizing data from 2011 to present. Publishing microdata such as census or patient data for extensive research and other purposes is an important problem area being focused by government agencies and other social associations. The traditional approach identified through literature survey reveals that the approach of eliminating uniquely identifying fields such as social security number from microdata, still results in disclosure of sensitive data, k-anonymization optimization algorithm ,seems to be promising and powerful in certain cases ,still carrying the restrictions that optimized k-anonymity are NP-hard, thereby leading to severe computational challenges. k-anonimity faces the problem of homogeneity attack and background knowledge attack . The notion of ldiversity proposed in the literature to address this issue also poses a number of constraints , as it proved to be inefficient to prevent attribute disclosure (skewness attack and similarity attack), l-diversity is difficult to achieve and may not provide sufficient privacy protection against sensitive attribute across equivalence class can substantially improve the privacy as against information disclosure limitation techniques such as sampling cell suppression rounding and data swapping and pertubertation. This paper aims to discuss efficient anonymization approach that requires partitioning of microdata equivalence classes and by minimizing closeness by kernel smoothing and determining ether move distances by controlling the distribution pattern of sensitive attribute in a microdata and also maintaining diversity.

Keywords

Data Anonymization, Microdata, k-anonymity, Identity Disclosure, Attribute Disclosure, Diversity

INTRODUCTION

Need for publishing sensitive data to public has grown extravagantly during recent years. Though publishing demands its need there is a restriction that published social network data should not disclose private information of individuals. Hence protecting privacy of individuals and ensuring utility of social networ data as well becomes a challenging and interesting research topic. Considering a graphical model [35] where the vertex indicates a sensitive label algorithms could be developed to publish the non-tabular data without compromising privacy of individuals. Though the data is represented in graphical model after KDLD sequence generation [35] the data is susceptible to several attacks such as homogeneity attack, background knowledge attack, similarity attacks and many more. In this paper we have made an investigation on the attacks and possible solutions proposed in literature and efficiency of the same.

SECURITY THREATS IN CLOUD COMPUTING

Generally Cloud computing simply meant as Internet computing , generally the internet is seen as collection of clouds. Thus the word cloud computing can be defined as utilizing the internet to provide technology enabled services to the people and organizations. Cloud computing enables consumers to access resources online through the internet, from anywhere at any time without worrying about either technical or physical management and maintenance issues of the original resources.
Cloud computing is independent computing it is totally different from grid and utility computing. Google Apps is the paramount example of Cloud computing.
Cloud computing is cheaper than other computing models as because of zero maintenance cost is involved since the service provider is responsible for the availability of services and clients are free from maintenance and management problems of the resource machines. Due to this feature, cloud computing is also known as utility computing, or “IT on demand”.
As per the authors the principal service models being deployed are of three types.They are SaaS,PaaS,IaaS. SaaS is abbreviated as Software as a Service. In this model the Software‟s are provided as a service to the consumers according to their requirement, enables consumers to use the services that are hosted on the cloud server. PaaS is abbreviated as Platform as a Service. In this model the Clients are provided platforms access, which enables them to put their own customized software„s and other applications on the clouds. IaaS is abbreviated as Infrastructure as a Service. In this model the Rent processing, storage, network capacity, and other basic computing resources are granted, enables consumers to manage the operating systems, applications, storage, and network connectivity.
These authors did the literature review on security threats of cloud computing. As per the author Rongxing et, his paper gave a new security and provenance proposal for data forensics and post examination in cloud computing. According to them their proposed system is typified, the proposed system can provide the privacy and security on secret documents/files that are piled up in the cloud. It also provides secure authentication mechanism to control unauthorized user access, and provides track mechanism to resolves disputes of data. Their proposed secure provenance scheme is working on the bilinear pairing method and they have claimed it as the necessary building blocks of data forensics and post examination in cloud computing environment. Using provable security techniques, they have formally verified that there proposed scheme is safe and sound in the standard model.
According to the author La„Quata Sumter et al,the paper says The rise in the scope of cloud computing has brought fear about the Internet Security and the threat of security in cloud computing is continuously increasing. Consumers of the cloud computing services have serious concerns about the availability of their data when required. Users have server concern about the security and access mechanism in cloud computing environment. The advantage of their work is assurance of security to the end users of cloud. The limitation of this study is there proposed framework is not feasible for large scale cloud computing environments.
According to the author Mladen, the paper states that Cloud computing is a recent field, which came into existence after Years of research in networking and different types of computing. It uses a SOA, that minimized the information technology operating and maintenance cost for the clients, it offers greater flexibility, reduces capital costs, provides required services are along with many other characteristics. The benefit of this study is the identification of issues related with security and implementation. The drawback of this work is the study is based on theoretical concepts nothing practical found in this study.
According to the author Wayne,the paper states that benefits of cloud computing are highlighted along with the basic security issues that are still associated with cloud services. Shaping the security of critical systems is very important. Addressing the security issues faced by end users is extremely mandatory, Researchers and professionals must work on the security issues associated with cloud computing. The study gazes primary security and privacy Problems. It mainly focuses public clouds that needs significant consideration and presents required facts and figures to make organizations data security decisions. Key security issues identified and addressed in this paper are end user trust, Insider Access, Visibility, Risk Management, Client-Side Protection, Server-Side Protection, Access Control and Identity management.
Cloud computing is not fully mature and still lot needs to be explored. After the authors current work they claimed that security is the most important threat to both the users and the vendors of cloud computing. Vendors, Researchers and IT security professionals are working on security issues associated with cloud computing. Different models and tools have been proposed but still nothing fruitful found. While doing research on security issues of cloud computing the authors known that there are no security standards available for secure cloud computing. In their future work they quoted that they will work on security standards for secure cloud computing.

SECURITY IN CLOUD COMPUTING

Cloud computing paradigm that provide unlimited infrastructure to store or execute client‟s data or program. Cloud computing is a long dreamed vision of computing as a utility, where data owners can remotely store their data in the cloud to enjoy on- demand highly-quality application and services from a shared pool of configurable computing resources. Cloud computing is known as one of the big next things in information technology world.
It is a way of computing in which dynamically scalable and often virtualized resources are provide as a services over the internet. Internet is not only a communication medium but, because of the reliable, affordable and ubiquitous broadband access, is becoming a powerful computing platform rather than running software and managing data on the desktop computer or server, user are able to execute application and access data on demand from the cloud (internet) anywhere in the world.
The authors discussed about the types. For secure service in cloud computing there are two type of model. First is the delivery model and another is deployment model. Delivery model in cloud computing the authors define by the three keys that are infrastructure as a service (IaaS), Software as a service (SaaS), Platform as a service (Paas).Secondly Deployment model is discussed. This deployment model contains three striking models such as public clouds, private clouds and hybrid clouds. The authors quoted that Gmail is the perfect example of Cloud Computing. The users doesn‟t need a software system or mail server to send or receive emails. The users just login to it, customize it and start using it. Unlike other traditional email management systems like MS Exchange, Gmail doesn't requires a software system, mail server, regular upgrades or dedicated team to manage it. Instead, everything is placed in the Cloud and the users get all the benefits that are provided 'as a service'.
Nextly, the authors specified the security issues. The Cloud computing technology comes with many issues such as performance, interoperability, data migration and transition from legacy systems. One of the main issues is security. The following security issues are highlight for the cloud computing vendors.They are Privileged access,Recovery,Long term viability, Data availability ,Data location .And the authors also discussed about Traditional security, Availability ,Third party data control. The authors discussed the challenges of security. Cloud computing environment are multidomain environment in which each domain can use different security, privacy and trust requirement and potentially employ various mechanism, interface and semantics. They described some challenges in cloud computing. Cloud Migration/ Security ,Reliability, Availability, Monitoring Measures, Lack of Communication, Access control and accounting, Trust management and policy integration Privacy and data protection.
Hereby the authors concluded that Cloud computing is a new way of delivery computing delivering computing resources which introduce a lot of benefits to its user. Despite its positive characteristics, it also bring in new security worries such as a data security issue, illegal data access etc. In this paper the authors investigate the introduction about cloud and security problems in cloud computing and several schemes to secure data in cloud. To provide a more reliable security in cloud computing is the future research goal.

CONCLUSION AND FUTURE WORK

Various methods developed for anonymizing data from 2011 to 2012 is discussed. Publishing microdata such as census or patient data for extensive research and other purposes is an important problem area being focused by government agencies and other social associations. The traditional approach identified through literature survey reveals that the approach of eliminating uniquely identifying fields such as social security number from microdata, still results in disclosure of sensitive data, k-anonymization optimization algorithm ,seems to be promising and powerful in certain cases ,still carrying the restrictions that optimized k-anonymity are NP-hard, thereby leading to severe computational challenges. k-anonimity faces the problem of homogeneity attack and background knowledge attack . The notion of ldiversity proposed in the literature to address this issue also poses a number of constraints , as it proved to be inefficient to prevent attribute disclosure (skewness attack and similarity attack), l-diversity is difficult to achieve and may not provide sufficient privacy protection against sensitive attribute across equivalence class can substantially improve the privacy as against information disclosure limitation techniques such as sampling cell suppression rounding and data swapping and pertubertation. Evolution of Data Anonymization Techniques and Data Disclosure Prevention Techniques are discussed in detail. The application of Data Anonymization Techniques for several spectrum of data such as trajectory data are depicted. This survey would promote a lot of research directions in the area of database anonymization.

References

  1. Pieter Van Gorp and Marco Comuzzi “Lifelong Personal Health Data and Application Software via Virtual Machines in the Cloud” IEEE Journal of Biomedical and Healthcare Informatics, Vol. 18, No. 1, Jan 2014
  2. Sape J. Mullender, Andrew S.Tanenbaum, "Protection and Resource Control in Distributed Operating Systems", 1984.
  3. Paul J.Levine, "Computer security system for a time shared computer accessed over telephone lines US 4531023 A, 1985
  4. John G.Campbell,Carl F.Schoeneberger,"Remote hub television and security systems", US 4574305 A, 1986.
  5. A Pfitzmann, "Networks without user observability", Computers & Security 6/2 (1987) 158-166, 1987
  6. TF Lunt, " Automated audit trail analysis and intrusion detection: A survey" In Proceedings of 11th National Conference on Security, 1988
  7. Lichtenstein Eric Stefan 1984 a, Computer control medical care system US4464172.
  8. ARalph R.Frerichs, Dr. PH.Robert A. Miller 1985, Introduction of a Microcomputer for Health Research in a Developing Country.
  9. Steven P.Brown 1986, Combinational Medical Data, Identification and health Insurance card.
  10. Peter P. Gombrich, Richard J. Beard, Richard A. Griffee, Thomas R. Wilson, Ronald E. Zook, Max S. Hendrickson 1989,A Patient care system,US4835372 A.
  11. Paavo T. Kousa, " VOICE NETWORK SECURITY SYSTEM" US 4797672 A, 1989
  12. D Graft, " Methodology for network security design", IEEE Transactions on Computers, 1990
  13. Heberlein, "Network Security MONITOR, 1991
  14. John R. Corbin, " Apparatus and method for licensing software on a network of computers US 5138712 A", 1992
  15. S Gordon, "Computer Network Abuse", 1993.
  16. Neil Bodick, Andre L. Marquis1990, Interactive system and method for creating and editing a knowledge base for use as a computerized aid to the cognitive process of diagnosis,US4945476 A.
  17. Angela M. Garcia, Dr.,Boca Raton 1991 a, System and Method for scheduling and Reporting Patient related services including prioritizing services,US5974389 A.
  18. Clark Melanie Ann, John Finley, Huska; Michael Edward, Kabel; Geoffrey Harold, Graham, Marc Merrill 1991 b,System and Method for scheduling and Reporting Patient Related services.
  19. Robert W. Kukla1992,Patient care communication system, US5101476 A
  20. Mark C. Sorensen 1993, Computer aided medical diagnostic method and apparatus, US5255187 A.
  21. Edward J. Whalen, San Ramon, Olive Ave Piedmont 1994,Computerized file maintenance System for managing medical records including narrative patent documents reports.
  22. Desmond D. Cummings 1994b,All care health management system, US5301105 A.
  23. Woodrow B. Kesler Rex K Kesslerin 1994 c,Medical data draft for tracking and evaluating medical treatment.
  24. Joseph P. Tallman, Elizabeth M. Snowden, Barry W. Wolcott 1995, Medical network management system and process, US5471382 A.
  25. Peter S. Stutman, J. Mark Miller 1996,Medical alert distribution system with selective filtering of medical information
  26. Edwin C. Iliff1997,computerized medical diagnostic system including re-enter function and sensitivity factors, US5594638 A.
  27. Timothy Joseph Graettinger, Paul Alton DuBose 1998, Computer-based neural network system and method for medical diagnosis and interpretation. US5839438 A.
  28. Melanie Ann Clark, John Finley Gold, Michael Edward Huska, Geoffrey Harold Kabel, Marc Merrill Graham1999,Medical record management system and process with improved workflow features, US5974389 A.
  29. Richard S. Surwit, Lyle M. Allen, III, Sandra E. Cummings 2000 a, Systems, methods and computer program products for monitoring, diagnosing and treating medical conditions of remotely located patients, US6024699 A.
  30. Jeffrey J. Clawson 2000 b, Method and system for giving remote emergency medical counsel to choking patients, US6010451 A.
  31. Marc Edward Chicorel 2001, Computer keyboard-generated medical progress notes via a coded diagnosis-based language, US6192345 B1.
  32. Charlyn Jordan2002, Health analysis and forecast of abnormal conditions.
  33. Jeffrey J. Clawson2003, Method and system for an improved entry process of an emergency medical dispatch system
  34. PekkaRuotsalainen 2004, A cross-platform model for secure Electronic Health Record communication.
  35. Roger J. Quy2005, Method and apparatus for health and disease management combining patient data monitoring with wireless internet connectivity, US6936007 B2.
  36. Avner Amir, Avner Man2006 a, System and method for administration of on-line healthcare, WO2006006176 A2.
  37. Paul C.Tang, Joan S. Ash, David W. Bates, J. Marc overhage and Daniel Z.Sands 2006 b, Personal Health Records: Definitions, Benefits, and Strategies for Overcoming Barriers to Adoption.
  38. Christopher Alban, KhiangSeow2007, Clinical documentation system for use by multiple caregivers.
  39. Ian Foster, YongZhao, Ioan Raicu, Shiyong Lu, “Cloud Computing and Grid Computing 360-Degree compared”, [2008a]
  40. Rajkumar Buyya, Chee Shin Yeo, Srikumar Venugopal, “Market-oriented cloud computing: vision, type and reality for delivering IT services as computing utilities” [2008(b)]
  41. Ronald Perez, Leendert Van Doom, Reiner Sailer, ” Virtualization and hardware based security” [2008(c)].
  42. Daniel nurmi, Rich wolski, Chris grzegorczyk, Graziano obertelli, sunil soman, lamia youseff, Dmitrii zagorodnov,” The Eucalyptus Open source cloud computing system”[2009]
  43. Zhidong Shen, Qiang Tong ,” The Security of Cloud Computing System enabled by Trusted Computing Technology” [2010]
  44. Farhan Bashir Shaikh, Sajjad Haider,” Security Threats in Cloud Computing” (2011)
  45. Sanjana Sharma, Sonika Soni, Swati Sengar ,” Security in Cloud Computing”(2012)
  46. B.Powmeya , Nikita Mary Ablett ,V.Mohanapriya,S.Balamurugan,”An Object Oriented approach to Model the secure Health care Database systems,”In proceedings of International conference on computer , communication & signal processing(IC3SP)in association with IETE students forum and the society of digital information and wireless communication,SDIWC,2011,pp.2-3
  47. Balamurugan Shanmugam, Visalakshi Palaniswami, “Modified Partitioning Algorithm for Privacy Preservation in Microdata Publishing with Full Functional Dependencies”, Australian Journal of Basic and Applied Sciences, 7(8): pp.316-323, July 2013
  48. Balamurugan Shanmugam, Visalakshi Palaniswami, R.Santhya, R.S.Venkatesh “Strategies for Privacy Preserving Publishing of Functionally Dependent Sensitive Data: A State-of-the-Art-Survey”, Australian Journal of Basic and Applied Sciences, 8(15) September 2014.
  49. S.Balamurugan, P.Visalakshi, V.M.Prabhakaran, S.Chranyaa, S.Sankaranarayanan, "Strategies for Solving the NP-Hard Workflow Scheduling Problems in Cloud Computing Environments", Australian Journal of Basic and Applied Sciences, 8(15) October 2014.
  50. Charanyaa, S., et. al., , A Survey on Attack Prevention and Handling Strategies in Graph Based Data Anonymization. International Journal of Advanced Research in Computer and Communication Engineering, 2(10): 5722-5728, 2013.
  51. Charanyaa, S., et. al., Certain Investigations on Approaches forProtecting Graph Privacy in Data Anonymization. International Journal of Advanced Research in Computer and Communication Engineering, 1(8): 5722-5728, 2013.
  52. Charanyaa, S., et. al., Proposing a Novel Synergized K-Degree L-Diversity T-Closeness Model for Graph Based Data Anonymization. International Journal of Innovative Research in Computer and Communication Engineering, 2(3): 3554-3561, 2014.
  53. Charanyaa, S., et. al., , Strategies for Knowledge Based Attack Detection in Graphical Data Anonymization. International Journal of Advanced Research in Computer and Communication Engineering, 3(2): 5722-5728, 2014.
  54. Charanyaa, S., et. al., Term Frequency Based Sequence Generation Algorithm for Graph Based Data Anonymization International Journal of Innovative Research in Computer and Communication Engineering, 2(2): 3033-3040, 2014.
  55. V.M.Prabhakaran, Prof.S.Balamurugan, S.Charanyaa," Certain Investigations on Strategies for Protecting Medical Data in Cloud", International Journal of Innovative Research in Computer and Communication Engineering Vol 2, Issue 10, October 2014
  56. V.M.Prabhakaran, Prof.S.Balamurugan, S.Charanyaa," Investigations on Remote Virtual Machine to Secure Lifetime PHR in Cloud ", International Journal of Innovative Research in Computer and Communication Engineering Vol 2, Issue 10, October 2014
  57. V.M.Prabhakaran, Prof.S.Balamurugan, S.Charanyaa," Privacy Preserving Personal Health Care Data in Cloud" , International Advanced Research Journal in Science, Engineering and Technology Vol 1, Issue 2, October 2014
  58. P.Andrew, J.Anish Kumar, R.Santhya, Prof.S.Balamurugan, S.Charanyaa, "Investigations on Evolution of Strategies to Preserve Privacy of Moving Data Objects" International Journal of Innovative Research in Computer and Communication Engineering, 2(2): 3033-3040, 2014.
  59. P.Andrew, J.Anish Kumar, R.Santhya, Prof.S.Balamurugan, S.Charanyaa, " Certain Investigations on Securing Moving Data Objects" International Journal of Innovative Research in Computer and Communication Engineering, 2(2): 3033-3040, 2014.
  60. P.Andrew, J.Anish Kumar, R.Santhya, Prof.S.Balamurugan, S.Charanyaa, " Survey on Approaches Developed for Preserving Privacy of Data Objects" International Advanced Research Journal in Science, Engineering and Technology Vol 1, Issue 2, October 2014
  61. S.Jeevitha, R.Santhya, Prof.S.Balamurugan, S.Charanyaa, " Privacy Preserving Personal Health Care Data in Cloud" International Advanced Research Journal in Science, Engineering and Technology Vol 1, Issue 2, October 2014.
  62. K.Deepika, P.Andrew, R.Santhya, S.Balamurugan, S.Charanyaa, "Investigations on Methods Evolved for Protecting Sensitive Data", International Advanced Research Journal in Science, Engineering and Technology Vol 1, Issue 4, Decermber 2014.
  63. K.Deepika, P.Andrew, R.Santhya, S.Balamurugan, S.Charanyaa, "A Survey on Approaches Developed for Data Anonymization", International Advanced Research Journal in Science, Engineering and Technology Vol 1, Issue 4, Decermber 2014.
  64. S.Balamurugan, S.Charanyaa, "Principles of Social Network Data Security" LAP Verlag, Germany, ISBN: 978-3-659-61207-7, 2014
  65. S.Balamurugan, S.Charanyaa, "Principles of Scheduling in Cloud Computing" Scholars' Press, Germany,, ISBN: 978-3-639-66950-3, 2014
  66. S.Balamurugan, S.Charanyaa, "Principles of Database Security" Scholars' Press, Germany, ISBN: 978-3-639-76030-9, 2014