{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,10]],"date-time":"2026-06-10T15:29:54Z","timestamp":1781105394326,"version":"3.54.1"},"reference-count":38,"publisher":"IGI Global Scientific Publishing","issue":"1","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2012,1,1]]},"abstract":"<p>The evolution of modern computing systems has lead to the emergence of Cloud computing. Cloud computing facilitates on-demand establishment of dynamic, large scale, flexible, and highly scalable computing infrastructures. However, as with any other emerging technology, security underpins widespread adoption of Cloud computing. This paper presents the state-of-the-art about Cloud computing along with its different deployment models. The authors also describe various security challenges that can affect an organization\u2019s decision to adopt Cloud computing. Finally, the authors list recommendations to mitigate with these challenges. Such review of state-of-the-art about Cloud computing security can serve as a useful barometer for an organization to make an informed decision about Cloud computing adoption.<\/p>","DOI":"10.4018\/jghpc.2012010104","type":"journal-article","created":{"date-parts":[[2012,4,3]],"date-time":"2012-04-03T11:24:59Z","timestamp":1333452299000},"page":"52-66","source":"Crossref","is-referenced-by-count":7,"title":["Cloud Computing Security"],"prefix":"10.4018","volume":"4","author":[{"given":"Junaid","family":"Arshad","sequence":"first","affiliation":[{"name":"University of Leeds and University of West London, UK"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Paul","family":"Townend","sequence":"additional","affiliation":[{"name":"University of Leeds, UK"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Jie","family":"Xu","sequence":"additional","affiliation":[{"name":"University of Leeds, UK"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Wei","family":"Jie","sequence":"additional","affiliation":[{"name":"University of West London, UK"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"2432","reference":[{"key":"jghpc.2012010104-0","author":"G.Alonso","year":"2004","journal-title":"Web Services: Concepts, architectures and applications"},{"key":"jghpc.2012010104-1","author":"R. G.Andrews","year":"2000","journal-title":"Foundations of multithreaded, parallel, and distributed programming"},{"key":"jghpc.2012010104-2","doi-asserted-by":"publisher","DOI":"10.1109\/MITP.2006.51"},{"key":"jghpc.2012010104-3","unstructured":"Channabasavaiah, K., Holley, K., & Tuggle, E. (2004). Migrating to a service-oriented architecture. Retrieved from http:\/\/www128.ibm.com\/developerworks\/webservices\/library\/ws-migratesoa\/"},{"key":"jghpc.2012010104-4","unstructured":"CloudTweaks. (2010). Thunder in the Cloud: $6 Cloud-based Denial-of-Service Attack. Retrieved August 11, 2010, from http:\/\/www.cloudtweaks.com\/2010\/08\/thunder-in-the-cloud-6-cloud-based-denial-of-service-attack\/"},{"key":"jghpc.2012010104-5","unstructured":"Dournaee, B. (2010). Taking Control of the Cloud for Your Enterprise. Retrieved from http:\/\/www.amax.com\/about\/pdf\/IntelR%20Taking%20Control%20of%20the%20Cloud%20for%20Your%20Enterprise.pdf"},{"key":"jghpc.2012010104-6","unstructured":"Errett, J. (2005). An introduction to automated security patch management in the enterprise environment. Paper presented at the CERT Conference."},{"key":"jghpc.2012010104-7","author":"I.Foster","year":"1999","journal-title":"The Grid: Blueprint for a new computing infrastructure"},{"key":"jghpc.2012010104-8","unstructured":"Foster, I., Kesselman, C., Nick, J., & Tuecke, S. (2002). The physiology of the Grid: An Open Grid Services Architecture for Distributed Systems Integration. Paper presented at the Open Grid Service Infrastructure WG Global Grid Forum. Retrieved from http:\/\/www.globus.org\/alliance\/publications\/papers\/ogsa.pdf"},{"key":"jghpc.2012010104-9","unstructured":"Freesoft. (2011). SSL specification 3.0. Retrieved from http:\/\/www.freesoft.org\/CIE\/Topics\/ssl-draft\/3-SPEC.HTM"},{"key":"jghpc.2012010104-10","author":"E.Gamma","year":"2007","journal-title":"Design Patterns: Elements of reusable object-oriented software"},{"key":"jghpc.2012010104-11","unstructured":"Gellman, R. (2009). Privacy in the Clouds: Risks to privacy and confidentiality from Cloud Computing. Paper presented at the World Privacy Forum."},{"key":"jghpc.2012010104-12","unstructured":"Gens, F. (2008). IT Cloud Services User Survey, pt.2: Top Benefits and Challenges. Retrieved from http:\/\/blogs.idc.com\/ie\/?p=210"},{"key":"jghpc.2012010104-13","unstructured":"Gens, F. (2009). New IDC IT Cloud Services Survey: Top Benefits and Challenges. Retrieved from http:\/\/blogs.idc.com\/ie\/?p=730"},{"key":"jghpc.2012010104-14","unstructured":"GoGrid. (2010). Scalable Load-Balanced Windows and Linux Cloud-Server Hosting. Retrieved from http:\/\/www.gogrid.com\/"},{"key":"jghpc.2012010104-15","doi-asserted-by":"crossref","first-page":"34","DOI":"10.1109\/MC.1974.6323581","article-title":"A survey of virtual machine research.","volume":"7","author":"R. P.Goldberg","year":"1974","journal-title":"IEEE Computer"},{"key":"jghpc.2012010104-16","doi-asserted-by":"crossref","unstructured":"Huai, J., Li, Q., & Hu, C. (2007). CIVIC: A hypervisor based computing environment. In Proceedings of the International Conference on Parallel Processing.","DOI":"10.1109\/ICPPW.2007.28"},{"key":"jghpc.2012010104-17","unstructured":"Kazman, R., Klein, M., Barbacci, M., Longstaff, T., Lipson, H., & Carriere, J. (1998). The architecture trade-off analysis method (Tech. Rep. No. CMU\/SEI-98-TR-008 ESC-TR-98-008). Pittsburgh, PA: Carnegie Mellon University. Retrieved from http:\/\/www.pst.ifi.lmu.de\/lehre\/WS0102\/architektur\/VL9\/ATAM.pdf"},{"key":"jghpc.2012010104-18","unstructured":"Kellerman Software. (2008). What is the strongest encryption algorithm. Retrieved from http:\/\/www.kellermansoftware.com\/t-ArticleStrongestAlgo.aspx"},{"key":"jghpc.2012010104-19","unstructured":"Lemos, R. (2010). Denial-of-Service Attacks Meet the Cloud: 4 Lessons. 01. Retrieved from http:\/\/www.networkworld.com\/news\/2010\/110110-denial-of-service-attacks-meet-the-cloud.html"},{"key":"jghpc.2012010104-20","unstructured":"MacDonald, N. (2009, February 17). Hypervisor attacks and hurricanes are inevitable, but breaches don\u2019t have to be. Retrieved from http:\/\/blogs.gartner.com\/neil_macdonald\/2009\/02\/17\/hypervisor-attacks-and-hurricanes-are-inevitable-but-breaches-dont-have-to-be\/"},{"key":"jghpc.2012010104-21","doi-asserted-by":"crossref","unstructured":"Maggs, B. M., Matheson, L. R., & Tarjan, B. E. (1995). Models of parallel computation: A survey and synthesis. In Proceedings of the 28th Annual Hawaii International Conference on System Sciences.","DOI":"10.1109\/HICSS.1995.375476"},{"key":"jghpc.2012010104-22","author":"T.Mather","year":"2009","journal-title":"Cloud security and privacy: An enterprise perspective on risks and compliance (Theory in practice)"},{"key":"jghpc.2012010104-23","unstructured":"Metz, C. (2009, October 5). DDoS attack rains down on Amazon Cloud. Retrieved from http:\/\/www.theregister.co.uk\/2009\/10\/05\/amazon_bitbucket_outage\/"},{"key":"jghpc.2012010104-24","unstructured":"National Computer Security Centre. (1987). A guide to understanding audit in trusted systems (Tech. Rep. No. NCSC-TG-001-87). Fort Meade, MD: Fort George G. Meade."},{"key":"jghpc.2012010104-25","unstructured":"Nguyen, N., Reiher, P., & Kuenning, G. H. (2003, June). Detecting insider threats by monitoring system call activity. In Proceedings of the IEEE Workshop on Information Assurance."},{"key":"jghpc.2012010104-26","unstructured":"OASIS. (2005). OASIS reference model for service oriented architectures. Retrieved from http:\/\/www.oasis-open.org\/committees\/download.php\/15966\/wd-soa-rm-11.pdf"},{"key":"jghpc.2012010104-27","unstructured":"Open Web Application Security Project (OWASP). (2009). Code injection attack. Retrieved from http:\/\/www.owasp.org\/index.php\/Man-in-the-middle_attack"},{"key":"jghpc.2012010104-28","unstructured":"Open Web Application Security Project (OWASP). (2009). Man-in-the-middle attack. Retrieved from http:\/\/www.owasp.org\/index.php\/Man-in-the-middle_attack"},{"key":"jghpc.2012010104-29","author":"H. C.Papadimitriou","year":"1994","journal-title":"Computational complexity"},{"key":"jghpc.2012010104-30","unstructured":"Phulari, R. (2010). Hadoop Karma; How much data is generated on Internet every year. Retrieved from http:\/\/hadoop-karma.blogspot.com\/2010\/03\/how-much-data-is-generated-on-internet.html"},{"key":"jghpc.2012010104-31","unstructured":"Rochitsky, L. (2008). How to Trust the Cloud. Paper presented at the First Annual Cloud Computing China Congress, Beijing, China."},{"key":"jghpc.2012010104-32","doi-asserted-by":"publisher","DOI":"10.1147\/JRD.2009.5429058"},{"key":"jghpc.2012010104-33","unstructured":"Rutkowska, J. (2007, October). Security challenges in virtualized environments. Keynote speech presented at the Virtualization Forum, Stockholm, Sweden."},{"key":"jghpc.2012010104-34","doi-asserted-by":"crossref","unstructured":"Seiden, K., & Melanson, J. (1990). The auditing facility for a VMM Security Kernel. In Proceedings of the IEEE Symposium on Security and Privacy, Oakland, CA.","DOI":"10.1109\/RISP.1990.63856"},{"key":"jghpc.2012010104-35","doi-asserted-by":"crossref","unstructured":"Squicciarini, A., Sundareswaran, S., & Lin, D. (2010). Preventing information leakage from indexing in the Cloud. In Proceedings of the 3rd IEEE International Conference on Cloud Computing.","DOI":"10.1109\/CLOUD.2010.82"},{"key":"jghpc.2012010104-36","unstructured":"US-Community Emergency Response Team (US-CERT). (2009, November 4). Understanding denial of service attacks (Cyber Security Tip No. ST04-015). Retrieved from http:\/\/www.us-cert.gov\/cas\/tips\/ST04-015.html"},{"key":"jghpc.2012010104-37","doi-asserted-by":"publisher","DOI":"10.1145\/1327512.1327513"}],"container-title":["International Journal of Grid and High Performance Computing"],"original-title":[],"language":"ng","link":[{"URL":"https:\/\/www.igi-global.com\/viewtitle.aspx?TitleId=62997","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,6,1]],"date-time":"2022-06-01T22:22:47Z","timestamp":1654122167000},"score":1,"resource":{"primary":{"URL":"https:\/\/services.igi-global.com\/resolvedoi\/resolve.aspx?doi=10.4018\/jghpc.2012010104"}},"subtitle":["Opportunities and Pitfalls"],"short-title":[],"issued":{"date-parts":[[2012,1,1]]},"references-count":38,"journal-issue":{"issue":"1","published-print":{"date-parts":[[2012,1]]}},"URL":"https:\/\/doi.org\/10.4018\/jghpc.2012010104","relation":{},"ISSN":["1938-0259","1938-0267"],"issn-type":[{"value":"1938-0259","type":"print"},{"value":"1938-0267","type":"electronic"}],"subject":[],"published":{"date-parts":[[2012,1,1]]}}}