CHALLENGES AND DEFENSES FOR NETWORK AND CLOUD SECURITY FROM RISKS, THREATS AND ATTACKS IN CLOUD COMPUTING

Article Sidebar

PDF TCP attack wire shark screen shot
Published: Dec 20, 2017
DOI: https://doi.org/10.26483/ijarcs.v8i9.4825
Keywords:
Cloud Security, Risks, Threats, Attacks, Defences, network security, transmission control protocol, injection attacks.

Main Article Content

jadala vijaya chandra
Warangal Insitute of Technology and Science
Tingilikar Anusha
B. Prathusha

Abstract

Cloud Computing emerged from the advancements of several technologies where the roots are from the mainframes supported by internet as web services along with the distributed resources. It is an advanced technology from grid computing and utility computing provides services at large scale level using different data centres for large capacity of data storage. The major challenges related to cloud computing is the security such as the network reliability, performance monitoring, scale management, quality of services, interoperability and probability. In this paper, we majorly concentrated on the network security, different procedures and mechanisms involved in defence system from risks, threats and attacks on the cloud computing and we discussed different possible vulnerabilities and malwares. We give the mathematical cryptography procedures and mechanisms for securing the network and cloud. Mathematical methods and procedures are given for Cryptographic defences against the man-in-middle attacks, spoofing attacks and transmission control protocol attacks. Experimental and statistical analysis is done, we evaluate real time challenges by designing -building a private cloud and injecting the transmission control protocol injection attacks, the observations are done along with the defence system where the graphical and statistical analysis is given.

Downloads

Download data is not yet available.

Article Details

Issue
Vol. 8 No. 9 (2017): NOVEMBER-DECEMBER 2017
Section
Articles

COPYRIGHT

Submission of a manuscript implies: that the work described has not been published before, that it is not under consideration for publication elsewhere; that if and when the manuscript is accepted for publication, the authors agree to automatic transfer of the copyright to the publisher.

Authors who publish with this journal agree to the following terms:

  • Authors retain copyright and grant the journal right of first publication with the work simultaneously licensed under a Creative Commons Attribution License that allows others to share the work with an acknowledgment of the work's authorship and initial publication in this journal.
  • Authors are able to enter into separate, additional contractual arrangements for the non-exclusive distribution of the journal's published version of the work (e.g., post it to an institutional repository or publish it in a book), with an acknowledgment of its initial publication in this journal.
  • Authors are permitted and encouraged to post their work online (e.g., in institutional repositories or on their website) prior to and during the submission process, as it can lead to productive exchanges, as well as earlier and greater citation of published work
  • The journal allows the author(s) to retain publishing rights without restrictions.
  • The journal allows the author(s) to hold the copyright without restrictions.

References

Zhiyun Qian, Z. Morley Mao, "Off-path TCP Sequence Number Inference Attack - How Firewall Middleboxes Reduce Security", IEEE Symposium on Security and Privacy - 2012.

J. Vijaya Chandra, Narasimham Challa and MD. Ali Hussain, "Data and Information Storage Security from Advanced Persistent Attack in Cloud Computing", International Journal of Applied Engineering Research, 2014.

J. Vijaya Chandra, Narasimham Challa, Sai Kiran Pasupuleti, Thirupathi RK, Krishna RV, “ Numerical Formulation and Simulation of Social Networks using Graph Theory on Social Cloud Platformâ€, Global Journal of Pure and Applied Mathematics. 2015; 11(2):1253–64.

Jian Liu; Kun Huang; Hong Rong; Huimei Wang; Ming Xian, "Privacy Preserving Public Auditing for Regenerating-Code-Based Cloud Storage, "IEEE Transactions on Information Forensics and Security, vol.10, no.7, pp.1513-1528, July 2015.

J. Gionta, A. Azab, W. Enck, P. Ning, and X. Zhang, “Dacsa: A decoupled architecture for cloud security analysis,†in Proceedings of the 7th Workshop on Cyber Security Experimentation and Test, 2014.

S. Ruj, M. Stojmenovic, and A. Nayak, “Decentralized access control with anonymous authentication of data stored in clouds,†Parallel and Distributed Systems, IEEE Transactions on, vol. 25, no. 2, pp. 384–394, 2014.

J. Vijaya Chandra, Narasimham Challa, Sai Kiran Pasupuleti, “Intelligence based Defense System to Protect from Advanced Persistent Threat by means of Social Engineering on Social Cloud Platformâ€, Indian Journal of Science and Technology, Volume 8, Issue 28, October 2015.

C.-K. Chu, S. S. Chow, W.-G. Tzeng, J. Zhou, and R. H. Deng, “Key-aggregate cryptosystem for scalable data sharing in cloud storage,†Parallel and Distributed Systems, IEEE Transactions on, vol. 25, no. 2, pp. 468–477, 2014.

Xun Yi, Russell Paulet and Elisa Bertino, Homomorphic Encryption and Applications, 1st edn. Springer Briefs in Computer Science, Springer International Publishing, 2014.

G Ranjith, J Vijayachandra, B Prathusha, P Sagarika, "Design and implementation of a defense system from TCP injection attacks", Indian Journal of Science and Technology, vol 9, issue 40, 2016.

Z. Qian, Z. M. Mao, and Y. Xie, “Collaborative TCP Sequence Number Inference Attack: How to Crack Sequence Number Under a Second,†in Proceedings of the ACM Conference on Computer and Communications Security. New York, NY, USA: ACM, 2012.

Y. Gilad and A. Herzberg, “LOT: A Defense Against IP Spooï¬ng and Flooding Attacks,†ACM Transactions on Information and System Security, vol. 15, no. 2, pp. 6:1–6:30, Jul. 2012.

Adebayo O.S and AbdulAziz N, "An intelligence based model for the prevention of advanced cyber-attacks," Information and Communication Technology for The Muslim World (ICT4M), 2014 The 5th International Conference on , vol., no., pp.1,5, 17-18 Nov. 2014.

Vance A, "Flow based analysis of Advanced Persistent Threats detecting targeted attacks in cloud computing," Infocommunications Science and Technology, 2014 First International Scientific-Practical Conference Problems of , vol., no., pp.173,176, 14-17 Oct. 2014.

Liu Shengjian, Yang Haiyan, Wang Fengni, “Design of Network Security Early-Warning System Based on Network Defense in depth Modelâ€, 2nd International Conference on Measurement, Information and Control, 2013.