Multilevel Cloud Security Policy (MCSP) for Cloud-Based Environments
Priya Oberoi1, Sumit Mittal2, Rajneesh Kumar Gujral3

1PriyaOberoi, M. M. Institute of Computer Technology & Business Management, Maharishi Markandeshwar (Deemed to be University), Mullana, Ambala, Haryana, India.

2Dr. Sumit Mittal, M.M. Institute of Computer Technology & Business Management, Maharishi Markandeshwar (Deemed to be University), Mullana, Ambala, Haryana, India.

3Dr. Rajneesh Gujral, M. M. Engineering College, Maharishi Markandeshwar (Deemed to be University), Mullana, Ambala, Haryana, India.

Manuscript received on 08 June 2019 | Revised Manuscript received on 13 June 2019 | Manuscript Published on 08 July 2019 | PP: 145-152 | Volume-8 Issue-8S3 June 2019 | Retrieval Number: H10390688S319/19©BEIESP

Open Access | Editorial and Publishing Policies | Cite | Mendeley | Indexing and Abstracting
© The Authors. Blue Eyes Intelligence Engineering and Sciences Publication (BEIESP). This is an open-access article under the CC-BY-NC-ND license (http://creativecommons.org/licenses/by-nc-nd/4.0/)

Abstract: In the present period Cloud computing(CC) generally addresses the issues of quick arrangement and on-request versatility. Despite the fact that Cloud computing gives countless benefits to the clients like adaptability, versatility and so on however, it additionally brings new security challenges. In this paper, authors have proposed a Multilevel Cloud Security Policy (MCSP) to provide security in Cloud-based environment from the malicious insider attacks. This policy comprises of two levels viz. Cloud Chinese Wall Security Policy (CCWSP), and Cloud Clark Wilson Policy (CCWP). At the outer level of MCSP, CCWSPoperates, whileat the inner level operates CCWP.Whenever a client endeavors to access services provided by the Cloudor administrations then its demand is either allowed or dismissed by the CCWSP.Now, if the client gains admittance to the asked for administration or services,then within that service or domain the authorization is done using the CCWP. The MCSP is proposed to mitigate the malicious insider attacks at IaaS in Cloud-based environments. Being a multi-level policy it is capable to detect as well as prevent the malicious insiders within the tenants of the clouds as well as within the organizations.

Keywords: Security, Malicious Insider Attacks, Chinese Wall Policy, Clark Wilson Model.
Scope of the Article: Security and Privacy