Module 8. Securing The Cloud

 

 Securing The Cloud




CONCEPT

Cloud computing is the use of internet-based servers to store data and run applications remotely, managed by service providers. Users rent storage and computing resources, which can be accessed globally. This is especially useful for companies needing to process large data without investing in costly infrastructure.

TYPES

  • Private Cloud – Dedicated to one organization; suitable for sensitive data.
  • Public Cloud – Shared by many users; managed by a provider.
  • Community Cloud – Shared by organizations with common interests.
  • Hybrid Cloud – Combines multiple cloud types, allowing data portability while maintaining their distinct advantages.
TYPES OF CCS

  • Infrastructure as a Service (IaaS): Provides basic IT resources like virtual machines, networks, and storage. It forms a flexible remote IT system, used by individuals and organizations—for example, storing photos or music in the cloud.
  • Platform as a Service (PaaS): Allows users to run applications without managing the underlying infrastructure. The cloud provider handles the system setup and maintenance.
  • Software as a Service (SaaS): Delivers complete software applications over the internet. The provider manages everything, and users access the service through web interfaces, such as email or social media platforms.
ADVANTAGES
  • Flexibility: Cloud services offer scalable resources on demand. Businesses can quickly adjust storage, computing power, or applications based on their needs without investing in physical infrastructure.
  • Cost effectiveness: Cloud computing reduces the need for upfront hardware purchases and maintenance. Users typically pay only for the resources they use, helping lower overall IT costs.
  • Portability: Data and applications stored in the cloud can be accessed from anywhere with an internet connection, using various devices. This supports remote work and collaboration across locations.

THREATS
  • Data breach: Unauthorized access to sensitive information stored in the cloud. This can happen due to weak access controls, poor encryption, or vulnerabilities in the cloud provider’s systems.
  • Data loss: Permanent loss of data due to accidental deletion, system failure, or lack of proper backups. It can also occur during data migration or from ransomware attacks.
  • Account hacking: Attackers may gain control of cloud user accounts through phishing, weak passwords, or reused credentials, allowing them to steal or manipulate data.
  • Disgruntled insider: An internal employee with access to cloud systems may intentionally cause harm, deleting data, leaking sensitive information, or sabotaging services.
  • Technology loopholes: Bugs or flaws in cloud software, APIs, or configurations can be exploited by attackers to bypass security or gain unauthorized access.
  • Shared space: Cloud services are typically multi-tenant environments, meaning multiple customers share the same physical infrastructure. Poor isolation can lead to one user accessing another’s data.
  • Vulnerable user interfaces: Web interfaces and dashboards used to manage cloud services may have weak security or exploitable flaws, allowing attackers to manipulate cloud resources.

HOW TO SECURE

To secure their data on the cloud, users should take regular backups, use strong passwords, enable two-step authentication, encrypt their data, and avoid storing sensitive information online. Maintaining good online habits is also essential.




Comments

Post a Comment

Popular posts from this blog

Module 4. Internet Security

Image
    INTERNET SECURITY DEFINITION Internet security is essential for both home and office users, protecting against fraud, theft , and property damage . It encompasses browser, network, and online data security, relying on encryption tools like PGP, firewalls, and antivirus programs . IMPORTANCES Privacy and confidentiality : Without protection, personal data can be intercepted and misused, leading to identity theft or scams. Identity theft : Hackers can exploit weak security to access financial or personal information, enabling fraud, unauthorized transactions, and loan applications. Data theft : Sensitive information such as photos, documents, and emails can be stolen, resold, or used for blackmail, damaging reputations and relationships. INSTANT MESSAGING Instant Messaging (IM) is a real-time communication method that allows users to exchange text messages, share files, and conduct video or voice chats through applications like Skype, WhatsApp, and Signal. IM provides featu...
Read more

Module 2. Securing Operating System

Image
    Securing Operating System WORKS OF OS Works with the processor to manage tasks Handles input from devices like keyboards Manages files, directories, and data storage Controls peripheral devices (printers, scanners, etc.) Displays output on the screen Allocates system resources (memory, CPU time) Ensures device and data security SECURING WINDOWS Lock Out Unwanted Guests Rename the Administrator Account Enable software & Windows update Enable Windows Firewall and Add the apps into it Raise the UAC Slider Bar Lock the System When Not in Use Prevent the Automatic Login Create a User Account Password in Windows Disable the Guest Account Turn on Windows Security Enable BitLocker Use EFS (Encrypting File System) Disable Unnecessary Services & unwanted processes Hide files and folders Disable Simple File Sharing SECURING MAC OS Lock the System When Not in Use Prevent the Automatic Login Enable Auto Software Update Disable the Guest Account Enable FileVault & Firewall...
Read more

Module 1. Introduction to Data Security

Image
    Introduction to Data Security DATA VS INFORMATION Information is processed data that carries meaning and value The difference is subjective , what is data for one person may be information for another SECURITY ELEMENTS Confidentiality Authenticity Integrity Availability Nonrepudiation POTENTIAL LOSS Final loss Unavailability of Resources Identity theft and fraud Loss of trust Data loss/theft Misuse of Computer Resources IMPLEMENTING SECURITY Precaution Precautionary measures protect systems from threats and minimize damage . Key steps include installing and maintaining antivirus and firewall programs, using strong passwords, downloading files only from trusted sources, performing regular virus scans, and keeping the system updated. Maintenance System maintenance supports precautionary measures by ensuring security and efficiency . It involves creating data backups, updating antivirus and firewall programs, maintaining sufficient storage, preventing CPU overheating, and c...
Read more