An authentication mechanism based on Client-Server architecture for accessing Cloud Computing

International Journal of Emerging Technology and Advanced Engineering

95

An authentication mechanism based on Client-Server

architecture for accessing Cloud Computing

Satendra Sonare

, Ashish Mishra

, Ashok Verma

1_{P.G. Student, M. Tech (Computer Technology and Application), Deptt. of Computer Science and Engineering, Gyan Ganga}

College of Technology, Jabalpur, Rajiv Gandhi Proudyogiki Vishwavidyalaya, Bhopal(M.P.)

2_{Asstt. Prof., Deptt. of Computer Science and Engineering, Gyan Ganga College of Technology, Jabalpur (M.P.)} 3

Assoc. Prof. & Head, Deptt. of Computer Science and Engineering, Gyan Ganga Institute of Technology and Sciences, Jabalpur (M. P.)

Abstract —Cloud Computing is going to be a big change of this decade; it has drastically altered everyone’s perception of infrastructure architecture, software delivery and development model, from a security perspective a number of unchartered risk and challenges have been introduced from this relocation to the Clouds, deteriorating much of the effectiveness of traditional protection mechanisms. An organization should establish a cross-functional team to align cloud computing security governance and architecture. The proposed model namely Client-Server-Cloud-Computing (CS2C) restricts the Man-In-The-Middle and will not vitiate the Central Cloud System from the organization level within

Keywords —Virtualization, Thin-Client’s, Authentication, Secure Computation.

I. INTRODUCTION

Change is good and technology comes with risk, cloud computing is going to be a big change of this decade and is being accepted as the next paradigm in information technology sourcing and services delivery. Cloud Computing promises to cut operational and capital costs and more importantly, let IT departments focus on strategic projects instead of keeping the datacenters running. Cloud Computing is a construct that allows you to access applications that actually reside at a location other than

yourcomputer or other internet-connected device. Powerful

storage and computing capacity of thin-client’s and servers can be enhanced by virtualization technology, speak one’s piece for diverse users. Services offerings of cloud computing can be grouped - Software as a Service (SaaS), Platform as a Service (PaaS), Infrastructure as a Service (IaaS) and Hardware Infrastructure as a Service (HIaaS) each of which accomplishes a specific purpose and

supports different products for organization and

individuals[3,4].

Unlike features too offered such as pay-per-use, fee-based infrastructure, rapid elasticity, location and device independence, multi-tenancy, reliability and ease of maintenance.

II. BACKGROUND

The emergence of cloud-computing which include pay-as-you-go options has transformed the prospect for SMEs (Small-Medium Enterprises). Award of cost-effectiveness by the cloud have made it possible for SMEs to access computing resources easily, efficiently and inexpensively, and able to work successfully in market for service providers to address. Enterprises and other organizations need to store and operate on a huge amount of data, cloud computing aims at renting such resources on demand, services are being used by businesses to develop applications that help them improve their business

operations, increase productivity, and establish a

competitive edge in the marketplace, further enhance their service offerings, enabling businesses to access information that will support their customer service capabilities [2].

Cloud computing can benefit companies in a number of

ways, particularly in reducing the cost of storing large volumes of data on-site[11].

III. ADDRESSING SECURITY

International Journal of Emerging Technology and Advanced Engineering

96 Fig 1. Data Security, Cost-Uncertain Savings and Loss of Control are

the top three barriers concerning enterprises contemplating cloud solutions [21].

Business Process as-a-Service (BPaas) : The Small and Medium–sized Businesses (SMBs) delivers outsourced solutions for business processes to customer over the Internet.

A. Avoiding Risk

Organization or businesses engaged in activities that are too risky. It is a needy situation that they must have restricted Internet connection and really need to computerize secure business process. SMBs-SMEs should standardize on a desktop operating system with limited access control intrinsic [18].

B. Rein

Reduces the threat to information assets through fear, can consist of communication strategies designed to impress potential attackers of the likelihood of getting caught.

C. The Fear of Getting Caught is the Beginning of wisdom

SMBs-SMEs must not underestimate the value of deterrence. Many potential attacks can be prevented by instilling fear in the potential attackers. Deterrence can be particularly effective against the amateur white-collar criminal or insider. The goal is to prevent the attacker's intent from reaching the critical point of action.

IV. PROPOSED APPROACH

Business are not run by IT departments…. Businesses are run by people who hire and fire IT department…

The cloud computing model doesn’t always mean your client have to traverse the Internet to get at content.

A local cloud–also knows as presentation virtualization skips the service provider component [5], and allows you to manage all the content yourself in your own datacenter, organization is directly need-not to access the cloud all at once. Most cases will start as a hybrid model, moving some business applications to the cloud while retaining a majority ―in-house‖.

A. Tools

Para virtualization, Full virtualization, Servers, Datacenters, Thin-Clients, Switches, Router.

Fig 2. “in-house” deployment of Cloud environment(8) and Central Cloud Computing(7).

This model basically designed for SMEs/SMBs, composed of Clients (Thin-1)[14], Servers(including datacenters and distributed servers-2,3,4), Trusted Third Party Service and Security provider (TPS&SP-6) and Central Cloud System (CCS-7). According to our proposed approach each individual client (thin) belong to a SMEs/SMBs, there is a local server associated it with, a parallel datacenters and distributed servers (PDC&DS) strictly deployed ―house‖. Any information/Service in-out from the Client is in the form of LOG file saved in the central server system. A client can be able to send request only after scrutinizing from the server and at any how cannot able to bypass it because of such protocol.

B. Thin-Client’s

Full virtualization is technique in which a complete installation of one machine is run on another i.e. the software running on the server is displayed on the clients.

International Journal of Emerging Technology and Advanced Engineering

97

This architecture enables 100% server-based processing, management, deployment, and support for mission-critical, productivity, web-based, or other custom applications across any type of connection to any type of client hardware, regardless of platform. The client hardware can include Windows-based terminals, PCs, NetPCs, network computers, Apple Macintosh computers, or UNIX devices. Thin-client/server computing model, is light weight on pocket too there is no need to purchase or upgrade hardware just to run the latest software instead, organization/business may able to let it comfortably evolve, leveraging your existing hardware, operating systems, software, networks, and standards. Thin-client/server computing extends the life of computing infrastructure considerably.

C. Server’s

Paravirtualization allows multiple operating systems to run on hardware at the same time.

Processors, Memory and Storage are efficiently used and

share the system resources, Paravirtualization's

management module (a hypervisor or virtual machine monitor) operates with an operating system that has been modified to work in a virtualmachine. (e.g. Red Hat Linux, Enterprise Linux or Windows Server are not be available as a guest OS for the particular solution. Paravirtualization's efficiencies also lead to better scaling. For dedicated SMEs/SMBs/IT-Departments, independent development professionals and businesses, server deployment lower costs, improve performance and help to reliably scale operations. A flexible server setup can help to make cost

structure more stable. Earlier businesses utilized

independent networks for their client computing, data storage and networking needs, today cloud or cluster hosting can offer a single environment to meet a firm’s complete needs. In fact, the recent move to virtual desktops has made client virtualization even more important, helping to improve local security, file storage and protocols across an organization. With the shift to global operations, IT managers can properly keep track of their assets and resources on a broad scale while also reducing the startup and upgrade costs for new technology.

The proposed CS2C model provide solutions for SMBs (Small and Medium-Sized Businesses) will now share the market and compete, BPO solutions hosted on remote infrastructure and managed by cloud providers are classified as BPaaS. Cloud’s multi-tenant dynamic characteristics may put sensitive or regulated data risk. Vendor viability cerates strategic risk, denial of service, other attacks could create systematic risk.

A lack of transparency and accountability about security from cloud vendors lowers trust will also be restrained.

V. CONCEIVED,PROCTOR AND APPORTIONMENT

OF CS2CCOMPUTING

The steps of the thin-client/server model procedure are summarized

A. First of all user request is sent to a local server with necessary user identification information like user id and password [9].

B. The authentication module of local server verifies the user’s identification and password [15].

C. The information provided by the user if found true, then server generated a log script and track the activities of employee and saves the log within [16].

D. The employee request for exact service specifications through the interfaces.

E. After receiving all the specification from all the employee (within some time frame) the local server collectively verifies the current available resources within the datacenters.

F. If the resources are not fulfilled by ―in-house‖

datacenters, then all the collective resource

specification is forwarded to the trusted third party service and security provider (TPS&SP-6).

G. If the organization does not square the agreement for the desired services or resource to receive at the end the local server immediately informs the employee for alternatives.

H. Then the employee generates a request to the

organization for required services/information, the local server send the users requisite and connects it to Central Cloud System (Trustworthy Cloud Providers).

VI. ATTRIBUTES OF PROPOSED APPROACH:THE CLIENT -SERVER CLOUD COMPUTING (CS2C)

―in-house‖ deployment of the Client-Server Cloud Computing (cs2c) model will allow to use computing equipment efficiently, IT-Support and maintenance resources wisely.

A.Management

International Journal of Emerging Technology and Advanced Engineering

98

(cs2c) architecture allows IT-departments to consolidate databases, file servers, and application servers in the same location in which they manage user access. This consolidation means that users in the organization can access the same centralized information and that companies can avoid the security, cost, reliability, and management issues involved in having widely dispersed databases. B.Scalability

Scalability presents another challenge to IT

professionals, who might need to scale a growing enterprise from dozens to thousands of users. (e.g. A Citrix's WinFrame load- balancing option allows for extremely reliable deployment of thin-client application solutions from a server "farm." with the WinFrame load-balancing scenario, users are dynamically routed to the WinFrame server that offers the best application performance) C.Access

Single-Point Location (SPC) it houses all of application ser-vers, file servers, and databases, IT professional can manage not only the users on your LAN but also the users in branch offices, telecommuters, and mobile professionals, because of the efficiency of not only processing on the server but also of using network bandwidth, applications run extremely well over existing remote-node servers and branch-office routers.

D.Performance

CS2C computation model automatically tune the thin client server farms to ensure peak performance and increased application response times. Enforce centralized optimization policy settings across the entire farm to maintain consistent performance even during peak loads [17].

E.Security

Security for CS2C computing comes from WinFrame's base of services provided by Microsoft Windows 2008 Server. Windows 08 Server provides security through individual and group accounts, user profiles, and the differing levels of security required, regardless of whether the user has the latest PC or a Windows-based terminal, sensitive data can be maintained in a single secure place on the server.

F.Total Cost of Ownership (TCO)

70% savings by using the thin-client/server model over

a comparable number of networked PCs [20].

VII. CONCLUSION

The Client-Server Cloud Computing (cs2c) architecture can bring the best of different computing models, This model instantly provide access to virtually any business-critical application, across any type of network connection to any the client. SMBs/SMEs get the power of single-point

control for deploying, managing, and supporting

applications, including enterprise-wide rollouts, updates, and additions. Users get the universal access to the applications they need, the exceptional performance they require, and the familiarity and ease of use they're accustomed to. This technology is cost-effective and secure. IT-administrators can optimize resources by providing Client-Server Cloud Computing (cs2c) solutions to task-based users for managing databases, file servers, and application servers in one location while providing a central point for user configurations and security. IT-professionals will be able to scale services from a small number of users on a LAN to thousands of users within a organization.

In future implementation side of the authentication model realizing that the scalability is a major issue, resources need to marshal in such a way that a model continues running smoothly even as the number of clients add-ons.

REFERENCES

[1] Gordon Blair, Fabio Kon, Walfredo Cirne, Dejan Milojicic,Raghu Ramakrishnan and Dan Reed Dilma Silva, ―Perspectives on Cloud Computing : Interviews with five leading scientists from the cloud community‖, Original Paper, J Internet Serv Appl (2011) 2:3–9, DOI 10.1007/s13174-011-0023-1.

[2] Michael Armbrust, Armando Fox, Rean Griffith, Anthony D. Joseph, Randy Katz, Andy Konwinski, Gunho Lee, David Patterson, Ariel Rabkin, Ion Stoica, and Matei Zaharia, ―Above the Clouds: A Berkeley View of Cloud Computing‖, February 10, 2009.

[3] Lamia Youseff, Maria Butrico and Dilma Da Silvam, ―Toward a Unified Ontology of Cloud Computing‖, University ofCalifornia, Santa Barbara, Santa Barbara, CA 93106, IBM T.J. Watson Research Center, Yorktown, New York 10598.

[4] Peter Mell and Timothy Grance, ―The NIST Definition of Cloud Computing‖, Recommendations of the National Institute, National Institute of Standards and Technology, U.S. Department of Commerce, Special Publication 800-145, 7 Pages, September 2011. [5] Liang-Jie Zhang and Qun Zhou, ―CCOA: Cloud Computing Open

Architecture‖, IEEE International Conference on Web Services, IBM T.J. Watson Research Center, New York, USA, 2009. [6] John Y. Sayaha and Liang-Jie Zhangb, ―On-demand business

International Journal of Emerging Technology and Advanced Engineering

99

[7] Shahid Al Noor, Golam Mustafa, Shaiful Alam Chowdhury, Md. Zakir Hossain and Fariha Tasmin Jaigirdar, ―A Proposed architecture of Cloud Computing for Education System in Bangladesh and the Impact on Current Education System‖, International Journal of Computer Science and Network Security, Vol.10 No.10, October2010.

[8] Marinela Mircea and Anca Ioana Andreescu, ―Using Cloud Computing in Higher Education: A Strategy to Improve Agility in the Current Financial Crisis Academy of Economic Studies‖, Bucharest, Romania, IBIMA Publishing, Communications of the IBIMA, Vol. 15, 2011.

[9] Roger Halbheer, ―Microsoft’s, Cloud Computing Security Considerations‖, Chief Security Advisor, Public Sector, EMEA Doug Cavit, Principal Security Strategist Lead, Trustworthy Computing, USA.

[10] Sven Bugiel, Stefan Nurnberger, Ahmad-Reza Sadeghi and Thomas Schneider, ―Twin Clouds: An Architecture for Secure Cloud Computing‖, Center for Advanced Security Research Darmstadt, Technische University at Darmstadt, Germany and System Security Lab, Ruhr-University Bochum, Germany.

[11] Rehan Saleem, ―Cloud Computing’s Effect on Enterprises‖ ―…in terms of Cost and Security‖‖, School of Economics and Management, Lund University, Master’s Thesis, 15ECTS (831015-T132), January-2011.

[12] Elmar Husmann, Matthias Schunter and Ahmad-Reza Sadeghi, ―Trustworthy Clouds Underpinning the Future Internet‖, R¨udiger Glott, Maastricht University, The Netherlands, IBM Research-Z¨urich, R¨uschlikon, Switzerland., TU Darmstadt, Germany.

[13] Herminder Singh & Babul Bansal, ―Analysis of Security Issues and Performance Enhancement in Cloud Computing‖, International Journal of Information Technology and Knowledge Management Vol. 2, No. 2, pp. 345-349, July-Dec 2010.

[14] @Intel White Paper Intel IT, ―Cloud Computing: How Client Devices Affect the User Experience‖, IT Best Practices, Cloud Computing and Employee Productivity October 2010.

[15] Joshi Ashay Mukundrao and Galande Prakash Vikram, ―Enhancing Security in Cloud Computing‖, Information and Knowledge Management, ISSN 2224-5758 (Paper) ISSN 2224- 896X, Vol 1, No.1, 2011.

[16] Gansen Zhao, Chunming Rong, Martin Gilje Jaatun and Frode Eika Sandnes, ―Reference deployment models for eliminating user concerns on cloud security‖, J Supercomput DOI 10.1007/s11227-010-0460-9, Springer Science+Business Media, LLC 2010. [17] Mario Höfer and Gernot Howanitz, ―The Client Side of Cloud

Computing‖, Seminar aus Informatik, SS 2009 July 1, 2009. [18] Mohamed Al Morsy, John Grundy and Ingo Müller, ―AnAnalysis of

The Cloud Computing Security Problem‖, In Proceedings of APSEC 2010 Cloud Workshop, Sydney, Australia, 30th Nov 2010. [19] Thomas B Winans and John Seely Brown, ―Cloud Computing, A

collection of working papers‖.

[20] Tanmay K. Mohapatra, ―Thin Clients and PCs – A comparative study to find suitability for different computing environments‖. Technical Architect associated with the Banking Products Division of Infosys Technologies Ltd., Bangalore, India.