Data Protection in Cloud Computing

We are in the middle of an insurgency in cloud computing. In short, cloud computing is “a model for enabling convenient, on-demand network access to a shared pool of configurable computing resources that can be rapidly provisioned and released with minimal management effort or services provider interaction.” Current cloud computing systems pose serious limitation to protecting users' data confidentiality. Since users' sensitive data is presented in unencrypted forms to remote machines owned and operated by third party service providers, the risks of unauthorized disclosure of the users' sensitive data by service providers may be high. Many techniques for protecting users' data from outside attackers are available, but currently there exists no effective way for protecting users' sensitive data from service providers in cloud computing. Our approach is protecting the confidentiality of users' data from service providers, and ensures that service providers cannot access or disclose users' confidential data being processed and stored in cloud computing systems. Our approach has three major aspects: 1) Separating software service providers and infrastructure service providers in cloud computing, 2) Hiding information of the owners of data, and 3) Data obfuscation. An example to show how our approach can protect the confidentiality of users' data from service providers in cloud computing is given and various types of attacks in cloud computing. Service providers neither can see user’s confidential data, nor can modify it. That’s approach is presented in our paper.