KEMBAR78
Data Security in Cloud Computing | PDF | Microsoft Azure | Cloud Computing
Scribd
Upload
78 views13 pages

Data Security in Cloud Computing

The document discusses data security in cloud computing, highlighting challenges and solutions across various service models (SaaS, PaaS, IaaS). It emphasizes the shared security responsibility between providers and customers, and outlines specific security measures in Azure, including identity management and encryption practices. Emerging technologies like AI and blockchain are also mentioned as part of the evolving landscape of cloud security.

Uploaded by

Abd El Rahman Hamzawy
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PPTX, PDF, TXT or read online on Scribd
78 views13 pages

Data Security in Cloud Computing

The document discusses data security in cloud computing, highlighting challenges and solutions across various service models (SaaS, PaaS, IaaS). It emphasizes the shared security responsibility between providers and customers, and outlines specific security measures in Azure, including identity management and encryption practices. Emerging technologies like AI and blockchain are also mentioned as part of the evolving landscape of cloud security.

Uploaded by

Abd El Rahman Hamzawy
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PPTX, PDF, TXT or read online on Scribd
You are on page 1/ 13

Data security in

cloud computing
Agenda

introduction

Cloud Security Challenges


and solutions

Data Security in Azure


Emerged Teconlogies &
Cloud computing
• Machine learning and artificial intelligence (AI)
• Blockchain
• Internet of Things (IoT)
• Containers
• Homomorphic encryption
On-Prem Cloud

Responsible for security end to end Shared security responsibility

Disconnected security tools; not Interconnected, API-driven On-Prem


typically driven by APIs security tools
vs
Static resources, perimeter-based
security boundaries
Dynamic resources, ephemeral
security boundaries cloud
Security
Rarely automated Can be highly automated

IT-driven Developer-driven
Segmentation of cloud security responsibilities

Software-as-a-service (SaaS) — Customers are responsible for securing their data


and user access.

Platform-as-a-service (PaaS) — Customers are responsible for securing their data,


user access, and applications.

Infrastructure-as-a-service (IaaS) — Customers are responsible for securing their


data, user access, applications, operating systems, and virtual network traffic.
Visibility into cloud data

Control over cloud data 

Cloud Access to cloud data and applications

Compliance
security Cloud-native breaches 

challenges Misconfiguration

Disaster recovery

Insider threats 
• Single sign-on
• Reverse proxy
• Multi-Factor Authentication

Azure • Azure role-based access control (Azure RBAC)


• Security monitoring, alerts, and machine learning-

identity based reports


• Consumer identity and access management

management • Device registration


• Privileged identity management

security • Identity protection


• Hybrid identity management/Azure AD connect
• Azure AD access reviews
Encryption of data in transit
• Data-link Layer encryption in Azure
• TLS encryption in Azure
• Azure Storage transactions
• In-transit encryption in VMs
• In-transit encryption in Data Lake
Encryption of data at rest
• Azure encryption models
• Azure disk encryption
• Azure Storage Service Encryption
• Encryption of data at rest with Azure SQL Database
Azure Key Vault
• Azure Key Vault security
• Key Vault roles
Example
Threat
Conclusion
Thank you

You might also like