An Enhanced and Reliable Cloud Trust Protection Model for Privacy Data

Abstract

The vulnerability of Cloud Computing Systems (CCSs) to Advanced Persistent Threats (APTs) is a significant concern to government and industry. We present a cloud architecture reference model that incorporates a wide range of security controls and best practices,and a cloud security assessment model – Cloud-Trust – that estimates high level security metrics to quantify the degree of confidentiality and integrity offered by a CCS or cloud service provider (CSP). Cloud-Trust is used to assess the security level of four multi- tenant IaaS cloud rchitectures equipped with alternative cloud security controls and to show the probability of CCS penetration (high value data compromise) is high if a minimal set of security controls are implemented. CCS penetration probability drops substantially if a cloud defense in depth security architecture is adopted that protects virtual machine (VM) images at rest, strengthens CSP an cloud tenantsystem administrator access controls, and which employs other network security controls to minimize cloud network surveillance and discovery of live VMs. Keywords: - Cloud Computing, Trust, Trust Management, Trust Models, Privacy, Trust metric, enables CSPs to start, stop, move, and restart