Thesis (M.Sc.) - Cairo University - Institute of Statistical Studies and Research - Department of Computer and Information Sciences
Cloud computing has been a mainstream topic recently. It has led to emerging different cloud computing eras. The first cloud era started with a private cloud, and public, hybrid, and federated cloud eras will be following this in turn. As described in this thesis, currently cloud-computing security has many issues, which scares away several potential users. Until a proper security module is not in place, potential users will not be able to leverage the true benefits of this technology. This security module should cater to all the issues arising from all directions of the cloud. In a cloud, where there are heterogeneous systems having a variation in their asset value, a single security system would be too costly for certain applications and if there is less security then the vulnerability factor of some applications like financial and military applications will shoot up. If the cloud has a common security methodology in place, it will be a high-value asset target for hackers because of the fact that hacking the security system will make the entire cloud vulnerable to attack. In this thesis, a new model a SaaS Security Model (SSM) is proposed is assessing and enhancing security in each layer of a SaaS service model. A security problem in a hybrid cloud is that it is consisting of multiple service providers, which are much more difficult, especially for key distribution; due to the user has multiple digital identities. However, there is a limitation for a single-provider cloud to cooperate with other cloud systems to maximize the function of available resources