80
A Survey on Different Cloud Computing Attacks
and Security Measures
Prof. Kalyani H. Deshmukh
Department of Computer Science
and Engineering
Prof Ram Meghe Institute of
Technology and Research
Badnera-Amravati, India
[email protected]
Prof. Sneha V. Kalbande
Department of Computer Science
and Engineering
Prof Ram Meghe Institute of
Technology and Research
Badnera-Amravati, India
[email protected]
Prof. Sharvari N. Hiwse
Department of Computer Science
and Engineering
Prof Ram Meghe Institute of
Technology and Research
Badnera-Amravati, India
[email protected]
Abstract:
In IT Sector, as there is a enormous command of Computational recourses. To observe the requirement of resources, utilizing cloud computing model is a best solution. Cloud Computing model is a pay as you required model and basically provides solution for data storage, convenient and on-demand access to a shared pool of configurable compute resources. also the higher usability of cloud computing model there is a need of directed on security threats and vulnerabilities including network threats, information threats and essential infrastructure threats. Here are various security problems of current cloud computing and then based on the security threats some solutions are discussed.I. INTRODUCTION
The consequence of Cloud Computing is increasing and it is receiving a increasing attention in the scientific and industrial communities. A revise by Gartner measured Cloud Computing as the first amongst the top 10 most important technologies and with a recovered prospect in consecutive years by companies and organizations. Cloud
Computing enables everywhere convenient, on-require network entrance to a mutual pool of configurable computing resources that can be quickly provisioned and free with negligible management attempt or service provider communication.
Cloud Computing appears as a computational standard as well as allocation architecture and its most important intention is to provide protected, rapid, suitable data storage and net computing service, with all computing resources visualize as services and delivered over the Internet. The cloud improves association, agility, scalability, availability, ability to get used to to fluctuations according to demand, increase speed development work, and provides potential for cost reduction in the course of optimized and capable computing.
The important features of cloud computing involve [3]: A. On-demand self service
Cloud computing provides the resources to the end users in a simple and flexible way. Initially, users use the limited
Prof. Apurva P. Ambarkhane
Department of Computer Science and Engineering
Prof Ram Meghe Institute of Technology and
Research
Badnera-Amravati, India
[email protected]
Prof. P. B. Lohiya
Department of Computer Science and Engineering
Prof Ram Meghe Institute of Technology and
Research
81
resources and based on the need, users utilize more resources. Based on the resources used, users need to pay money. This self service is also called as a utility service.
B. A broad network access
The capability of the cloud users to make use of the cloud services that can be generally offered. This characteristic is referred as everywhere entrance. Ubiquitous way in requires a support for the exacting devices, interfaces, protocols and technologies. To facilitate this way in, cloud services should convince the needs of the cloud users.
C. Rapid elasticity
Capability of cloud computing that can be evidently extend the IT resources based on the request that has been given by cloud consumers or cloud providers. Extensive range of scalability is achieved by the cloud providers with the enormous range of IT resources.
D. Resource pooling
Cloud provider provisions the IT resources in the cloud. Based on the needs of the end users, resources can be vigorously assigned and reassigned. Multiple cloud consumers can use a large amount of IT resources that has been stored by the cloud provider. Multi-tenancy accomplishes resource pooling.
E. Measured service
The cloud platform maintain the make use of of IT resources that has been used by cloud consumers. This feature is closely related to the on-demand service feature. According to the sources use by the cloud consumers, cloud providers accuse the cloud consumers.
II.
Cloud
Computing
Attacks
&
Countermeasure
In view of the fact that companies are affecting towards cloud computing, care must be in use stirring hackers. The attacks which criminals or hackers may effort include:
1.
Denial of service (DoS)
In DoS attack, the attacker tries to avert the genuine users to access the resources in the cloud. In this attack, mass messages are sent by the attacker querying the server to verify the requests. While verifying the requests, it has returned illogical addresses. The attacker return address has not been able to find by the network or server. While verifying wishes, attackers make the server to pause before ending the connection. When the connection is clogged by the server, the hacker sends more valid messages with invalid addresses. This makes the network or server in a active state. This attack causes the network traffic and services are not reachable by users.
Some possible countermeasures against formal DoS can
be:
1. Combination of DoS attack detection, classification of traffic and response tools can be used to block traffic as they identify illegitimate/unauthorized and allow traffic as they identify legitimate/authorized.
2. Firewalls can be used to allow or reject access protocols, ports or IP addresses.
3. Most of the switches have rate-limiting and Access Control List potential and some provide sensible automatic and/or system-wide rate limiting, deep packet examination, traffic shaping, delayed binding (TCP splicing), and Bogon filtering (bogus IP filtering) which can detect and amend DoS attacks through automatic rate filtering mechanisms and WAN Link failover and balancing mechanisms.
4. Similar to switches, routers have some rate-limiting and ACL capabilities. Most routers can be easily deluged under DoS attack scenario.
82
identification based on priority, regular, or dangerous is done.
6. IPS (Intrusion-prevention systems) is effective if the attacks have different signatures. Intrusion prevention systems works on content recognition but cannot block behavior based DoS attacks.
7. Black holing: All the traffic to the attacked packets are sent to a ”black hole” (null interface, nonexistent serve). To be more efficient and avoid affecting of network infrastructure connectivity, it can be managed by the ISP systems.
8. Sink holing: It routes to a valid IP address which analyzes network traffic and rejects bad ones.
2. CLOUD MALWARE- INJECTION ATTACK
The purpose of malware cloud be anything that the adversary is interested in, it may include data modifications, full functionality changes/reverse or blockings. In this attack adversary creates its own malicious service implementation module (SaaS or PaaS) or virtual machine instance (IaaS), and add it to the Cloud system. The main scenario behind the Cloud Malware Injection attack is that an attacker transfers a manipulated/wrong copy of a victim’s service instance so that malicious instance can achieve access to the service requests of the victim’s service. To achieve this, the attacker has to derive control over the victim’s data in the cloud. According to classification, this attack is the major representative of exploiting the service-to-cloud attack surface.
Cloud Malware-Injection Attack Countermeasures
1. Generally, when a customer opens an account in the cloud, an image of the customers VM in the image repository system of the cloud is provided by the provider. File Allocation Table (FAT) system architecture is utilized, from the FAT table information about the code or application that a customer is going to run can be fetched. 2. Other approach is to store the OS type of the customer in the first phase when a customer opens an account. As the
cloud is totally OS platform independent, before launching an instance in the cloud, cross checking can be done with the OS type from which the instance was requested from with the account holders OS type.
3. Side Channel attack
Side-channel attacks have egresses as a kind of effective security threat targeting system implementation of cryptographic algorithms. Side channel attacks use two steps to attack- VM CO-Residence And Placement i.e.,, an attacker can often place his or her instance on the same physical machine as a target instance and VM Extraction i.e., the ability of a malicious instance to utilize side channels to learn information about co-resident instances.
Side Channel Attack Countermeasures:
The combination of virtual firewall appliance and randomly encryption decryption is used because security against both front end and back end side of cloud computing architecture is provided by this combination and also provide RAS (Reliability, Availability, and Security).
1. Virtual Firewall Appliance: It is possible to adversaries or intruders identify the targeted VM in cloud infrastructure and then instantiate new VM to targeted VM and extract confidential information but we implement virtual firewall in cloud server so when adversaries identify targeted VM in cloud infrastructure and then place an instantiate VM to targeted VM, virtual firewall prevent this placement step inside channel attack.
83
property that the redundancy in the statistics of the plaintext is”dissipated” in the statistics of the ciphertext.
4. Authentication attack
Authentication is a weak issue in the hosted and virtual services and is very frequently targeted. There are so many ways to authenticate users which can be based upon what a user knows, has, or is. The mechanisms and the methods that are used to secure the authentication process are mostly targeted by the attackers. Recently, regarding the architecture of cloud computing, SaaS, IaaS and Paas, there is only IaaS which is able to offer this kind of information protection and data encryption. If the transmitted data confidentiality is under the category high for any enterprise, the cloud computing service based on IaaS architecture will be the most suitable and possible solution for secured data communication.
Authentication Attack Solution
Most user-facing services today still use simple username and password type of knowledge-based authentication, with the exception of some financial institutions which have deployed various forms of secondary authentication (such as site keys, virtual keyboards, shared secret questions, etc.) to make it a bit more difficult for popular phishing attacks.
5. Man-In-The-Middle Cryptographic Attacks
This attack is carried out when an attacker places himself between two users. Anytime attackers can place themselves in the communications path, there is the possibility that they can intercept and modify communications.
Man-In-The-Middle Cryptographic Attack Solution
1. This type of attack can be prevented with the help of authentication process to check the identity of customers as discussed in the malware injection attack solution section. This authentication process can be very effective for the authentication of the users.
2. The integrity of the data should be maintained by applying encryption and decryption techniques on the data sent over the network.
III. CONCLUSION
As cloud computing is on the rise, and particularly due to its huge attraction to prepared criminals, we can be expecting to see a lot of security incidents and new kinds of vulnerabilities approximately it within the decades to come. This paper gives an summary of the cloud computing attacks. Using the notion of attack surfaces, we illustrated the residential arrangement of cloud computing scenarios. Being a work-in-progress, we can maintain with the collection and arrangement of cloud-based attacks and vulnerabilities in categorize to establish or invalidate our attack taxonomy’s applicability and appropriateness. Cloud computing is revolutionizing how information technology resources and services are used and managed, but the revolution always comes with new problems. We have depicted some crucial and well known security attacks and have proposed some potential solutions in this paper, such as utilizing the FAT table and a Hypervisor.
84
REFERENCES[1] R. M. Jabir, S. I. R. Khanji, L. A. Ahmad, O. Alfandi and H. Said, "Analysis of cloud computing attacks and countermeasures," 2016 18th
International Conference on Advanced
Communication Technology (ICACT),
Pyeongchang, 2016, pp. 117-123.
[2] X. Jing and Z. Jian-jun, "A Brief Survey on the Security Model of Cloud Computing," Distributed Computing and Applications to Business
Engineering and Science (DCABES), 2010 Ninth
International Symposium on, Hong Kong, 2010, pp. 475-478.
[3] J. Heiser and M. Nicolett, "Assessing the security risks of cloud computing," Gartner Report, 2009. [Online].
Available:http://www.gartner.com/DisplayDocume nt?id=685308.
[4] N. Gruschka and L. Lo Iacono, "Vulnerable Cloud: SOAP Message Security Validation Revisited, " in ICWS '09: Proceedings of the IEEE International Conference on Web
Services. Los Angeles, USA: IEEE, 2009.
[5] Zhao G, Liu J, Tang Y, Sun W, Zhang F, Ye X, Tang N (2009) Cloud Computing: A Statistics Aspect of Users. In: First International Conference on Cloud Computing (CloudCom), Beijing, China. Springer Berlin, Heidelberg, pp 347–358,2009. [6] M. McIntosh and P. Austel. “XML Signature
Element Wrapping Attack and CounterMeasures” Workshop on Secure Web Service, pp.20-27, 2005. [7] M. Jensen. et. al. (2009) “On Technical Security Issues in Cloud Computing” IEEE International Conference in Cloud Conouting, pp.109-116, Sep 2009.
[8] Cloud Security Alliance. (2009) Security guidance for critical areas of focus in cloud computing V2.1. [Online].
Available:http://www.cloudsecurityalliance.org/gui dance/csaguide.v2.1.pdf
