Change search
ReferencesLink to record
Permanent link

Direct link
Securing Cloud Storage Service
Norwegian University of Science and Technology, Faculty of Information Technology, Mathematics and Electrical Engineering, Department of Telematics.
2012 (English)MasteroppgaveStudent thesis
Abstract [en]

Cloud computing brought flexibility, scalability, and capital cost savings to the IT industry. As more companies turn to cloud solutions, securing cloud based services becomes increasingly important, because for many organizations, the final barrier to adopting cloud computing is whether it is sufficiently secure. More users rely on cloud storage as it is mainly because cloud storage is available to be used by multiple devices (e.g. smart phones, tablets, notebooks, etc.) at the same time. These services often offer adequate protection to user's private data. However, there were cases where user's private data was accessible to other user's, since this data is stored in a multi-tenant environment. These incidents reduce the trust of cloud storage service providers, hence there is a need to securely migrate data from one cloud storage provider to another. This thesis proposes a design of a service for providing Security as a Service for cloud brokers in a federated cloud. This scheme allows customers to securely migrate from one provider to another. To enable the design of this scheme, possible security and privacy risks of a cloud storage service were analysed and identified. Moreover, in order to successfully protect private data, data protection requirements (for data retention, sanitization, and processing) were analysed. The proposed service scheme utilizes various encryption techniques and also includes identity and key management mechanisms, such as "federated identity management". While our proposed design meets most of the defined security and privacy requirements, it is still unknown how to properly handle data sanitization, to meet data protection requirements, and provide users data recovery capabilities (backups, versioning, etc.).

Place, publisher, year, edition, pages
Institutt for telematikk , 2012. , 85 p.
Keyword [no]
ntnudaim:8297, MSSECMOB Master in Security and Mobile Computing
URN: urn:nbn:no:ntnu:diva-18626Local ID: ntnudaim:8297OAI: diva2:566138
Available from: 2012-11-08 Created: 2012-11-08

Open Access in DiVA

fulltext(1055 kB)602 downloads
File information
File name FULLTEXT01.pdfFile size 1055 kBChecksum SHA-512
Type fulltextMimetype application/pdf
cover(184 kB)15 downloads
File information
File name COVER01.pdfFile size 184 kBChecksum SHA-512
Type coverMimetype application/pdf

By organisation
Department of Telematics

Search outside of DiVA

GoogleGoogle Scholar
Total: 602 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

Total: 229 hits
ReferencesLink to record
Permanent link

Direct link