ACCESS CONTROL IN THE CLOUD: ENHANCING MULTITENANT SECURITY WITH MFA AND ENCRYPTION
Main Article Content
Abstract
In a multitenant cloud environment, securing data access is a critical concern due to the shared nature of resources among multiple users. Traditional security methods often fall short in addressing the unique challenges posed by such environments. This paper explores the role of Multi-Factor Authentication (MFA) and encryption in enhancing data security for cloud resources in multitenant settings. MFA adds an additional layer of security by requiring multiple forms of verification before granting access to cloud resources, while encryption ensures that data remains protected both in transit and at rest. The combination of these two security mechanisms can significantly reduce the risk of unauthorized access and data breaches. This paper also reviews various encryption algorithms and MFA techniques employed in cloud security, analyzes their effectiveness, and proposes an integrated approach to securing data access. The findings indicate that a hybrid model involving both MFA and encryption provides a robust solution for securing cloud resources in multitenant environments, addressing both internal and external threats effectively.
Downloads
Metrics
Article Details
This work is licensed under a Creative Commons Attribution 4.0 International License.
You are free to:
- Share — copy and redistribute the material in any medium or format for any purpose, even commercially.
- Adapt — remix, transform, and build upon the material for any purpose, even commercially.
- The licensor cannot revoke these freedoms as long as you follow the license terms.
Under the following terms:
- Attribution — You must give appropriate credit , provide a link to the license, and indicate if changes were made . You may do so in any reasonable manner, but not in any way that suggests the licensor endorses you or your use.
- No additional restrictions — You may not apply legal terms or technological measures that legally restrict others from doing anything the license permits.
Notices:
You do not have to comply with the license for elements of the material in the public domain or where your use is permitted by an applicable exception or limitation .
No warranties are given. The license may not give you all of the permissions necessary for your intended use. For example, other rights such as publicity, privacy, or moral rights may limit how you use the material.
References
A. R. Sadeghi, C. Wachsmann, and M. Waidner, "Security and Privacy Challenges in Cloud Computing," Proceedings of the 2011 IEEE Symposium on Security and Privacy Workshops, 2011.
M. J. Reinders, "Encryption and Key Management in Cloud Computing," IEEE Transactions on Cloud Computing, vol. 3, no. 1, pp. 12-21, 2015.
J. Xu, J. Xu, and Z. Zhou, "Privacy-Preserving Cloud Data Access Control with Multi-Factor Authentication," International Journal of Computer Applications, vol. 109, no. 15, 2015.
S. Pearson, "Taking Account of Privacy when Designing Cloud Computing Services," Proceedings of the 2009 IEEE International Conference on Cloud Computing, 2009.
J. C. Li, S. A. Zhao, and J. Y. Zhao, "A Survey on Multi- Factor Authentication Mechanisms for Cloud Computing," 2012 International Conference on Cloud Computing and Security, 2012.
X. Wang, K. Ren, and B. Li, "On the Security and Efficiency of Cloud Computing," 2012 IEEE International Conference on Communications (ICC), 2012.
T. H. Luan, M. V. Pham, and J. Li, "Security and Privacy in Cloud Computing," International Journal of Computer Science and Network Security, vol. 12, no. 1, pp. 49-56, 2012.
A. V. Dastjerdi, R. Buyya, "Securing Data in Cloud Environments: A Survey and Research Directions," Journal of Cloud Computing: Advances, Systems, and Applications, vol. 4, no. 1, 2015.
L. Chen, R. H. Deng, and X. Xie, "Multi-Factor Authentication and Cloud Security," 2016 International Conference on Cloud Computing and Big Data Analysis, 2016.
A. K. Jain, A. Ross, and K. Nandakumar, "Introduction to Biometrics," Springer Science & Business Media, 2011.
Ramya, R., and T. Sasikala. "Implementing A Novel Biometric Cryptosystem using Similarity Distance Measure Function Focusing on the Quantization Stage." Indian Journal of Science and Technology 9 (2016): 22.
Ramya, R., and T. Sasikala. "Experimenting biocryptic system using similarity distance measure functions." In 2014 Sixth International Conference on Advanced Computing (ICoAC), pp. 72-76. IEEE, 2014.
Ramya, R. "Evolving bio-inspired robots for keep away soccer through genetic programming." In INTERACT- 2010, pp. 329-333. IEEE, 2010.
Z. Xu and K. Xue, "An Enhanced Cloud Security Model Using Multi-Factor Authentication and Encryption Techniques," International Journal of Computer Applications, vol. 131, no. 2, pp. 35-40, 2015.
S. Sengupta, S. S. M. R. K. R. Goundar, "Cloud Data Encryption and Privacy Preservation for Authentication and Security," 2016 International Conference on Cloud Computing and Intelligence Systems, 2016.
L. Wang, X. Fu, and X. Liu, "A Survey on Cloud Security Issues and Solutions," International Journal of Computer Science & Information Technology, vol. 7, no. 6, 2015.
C. Wang, K. Ren, and J. Zhang, "Security and Privacy Preserving in Cloud Computing: Challenges and Solutions," International Journal of Cloud Computing and Services Science, vol. 3, no. 5, 2014.
H. Takabi, J. B. D. Joshi, and G. A. A. A. Kennesaw, "Security and Privacy Challenges in Cloud Computing Environments," IEEE International Conference on Cloud Computing, 2010.