About the Workshop
The Workshop will focus on current research on cloud security architecture, data privacy and security, application security data governance, security laws and regulations etc. Recently, National Association of Software and Services Companies (NASSCOM) projected a global growth in cloud computing market of 33% Compound Annual Growth Rate(CAGR) and would reach ~USD 680 billion by 2020. The recent economic recession also saw organizations are taking cloud computing as a cost saving strategy. With the upcoming economic reforms, organizations will still retain their appetite for cost effective solutions based on Cloud Computing and services. Cloud computing services help modern business houses to scale up or scale down their computing needs and resources through public, private and hybrid clouds which are further promising the growth of cloud computing. But cloud security issues are a priority concern, not only for cloud customers but also for cloud providers. Organizations should employ appropriate security management policies and monitor security laws that threaten cloud security issues. Cloud security is one of major obstacles for cloud adoption both for the customers and providers and policies need to be formulated by private, public and government agencies to address these issues. The aim of this workshop is to provide a forum for researchers, industry, educators and practitioners from US and India to experience and foster a relationship among universities, research institutes, industry and policy makers to take stock of the current research and developments in the cloud security issues and have a look into the future trends in this area.
Could computing is not a new technology, but a new way to deliver computing resources and services at very lower cost. The lower budgetary requirements and commitments allow even smaller organization to survive in the cloud market. But the security remains the prime concern of the cloud customers. Buying choice of the customers also depends on the cloud’s reputation in terms of confidentiality, integrity, privacy and security services. Unfortunately, traditional cloud security models and controls are the obstacles for its popularity and growth. Now a days, Cloud Security and privacy are the major challenges for researchers, industry, government etc. The success of cloud is highly dependent on its end to end data security and protection, secure user authentication, secure cloud architecture, data governance etc.
According to a source, the U.S. Office of Management and Budget (OMB) has been working with a number of other government agencies, including the Department of Defense and Department of Homeland Security etc. to minimize the Federal Risk and Authorization Management Program to standardize cloud security. Hence this workshop is aimed to focus on current research areas, challenges and issues on cloud security and exchange original research published and unpublished work, ongoing research work in its advanced level and upcoming threats and issues on Cloud Security.
Objectives
Main objective of this seminar course is to learn about Privacy, Security, Integrity, Recovery, and Consistency issues and methods to enforce them. The ideas from research in distributed systems in the last thirty years will be briefly reviewed to set up the background. Both internet and mobile environments and how to deal with denial of service and routing attacks (including collaborative attacks) will be presented. Privacy issues in Peer to Peer (P2P) systems will be discussed and various approaches to deal with them will be presented. The relationship among distributed systems and cloud and the need for ACID properties will be investigated. Security and privacy issues in cloud computing including identity management will be presented. Privacy in cloud computing is the ability of user to control what information they reveal about themselves over the cloud or to a cloud service provider, and the ability to control who can access that information. Identity management (IDM) is the central component in cloud privacy and security.One objective of this seminar class is to show how cloud computing can help blind and hearing impaired persons. The course will study various aspects of cloud computing system including issues of virtualization, multi-tenancy, privacy, security. The answers to these problems are not fully understood and are research topics for Ph. D thesis. The students will be encouraged to read research papers and write a three page report at the end of seminar. This report will include a problem statement, what needs to be done, what has been done, and what a student can do.
Topics
Introduction to Security , Introduction to Privacy in Computing , Introduction to Trust in Computing Privacy Enhancing Technologies , Security Paradigms and Pervasive Trust , Trust Negotiations and Trading Privacy for Trust , Using Trust for Role-Based Access Control , Trust in P2P Systems , Role-Based Access Control (RBAC) , P2D2: A Mechanism for Privacy Preserving Data Dissemination , Private and Trusted Interactions , Detecting Service Violations in Internet & Mobile Ad Hoc Networks , Vulnerabilities and Threats in Distributed Systems, Secure Communication in Cellular and Ad hoc networks, National Institute of Standards and Technology (NIST) cloud computing, Cloud computing at Yahoo, Privacy and identity management in cloud, Secure data warehouse, Multi-tenancy issues.