Addressing Security Vulnerabilities in Modern Cloud Computing: A Case Study and Hybrid Mitigation Approach
DOI:
https://doi.org/10.21467/proceedings.7.6.53Keywords:
vulnerability, cloud computing, securityAbstract
Modern IT was mostly based on cloud computing, which permitted scalable and flexible service delivery. Its rapid adoption, however, revealed important security vulnerabilities such as data breaches, illegal access, and API misconfigurations. Emphasizing public and hybrid clouds, this paper offered an extensive review of cloud computing architectures (SaaS, PaaS, IaaS) and their related security challenges. Supported by a case study of a 2023 cloud breach, this paper suggested a hybrid mitigating architecture incorporating NIST guidelines, AI-driven threat detection, and blockchain-based access control. This research results provide practical solutions for companies to improve cloud security while tackling newly developed risks such as IoT vulnerabilities caused by 5G.
References
[1] IDC, “Worldwide Cloud Spending Report.” [Online]. Available: https://www.idc.com/getdoc.jsp?containerId=prUS52010424. [Accessed: Mar. 18, 2025].
[2] IBM X-Force, “Cloud Security Report,” 2021. [Online]. Available: https://www.ibm.com/security/data-breach/threat-intelligence. [Accessed: Mar. 18, 2025].
[3] M. A. Hossain and M. A. A. Hasan, “Improving cloud data security through hybrid verification technique based on biomet-rics and encryption system,” Int. J. Comput. Appl., vol. 44, no. 5, pp. 455–464, Aug. 2020, doi: 10.1080/1206212X.2020.1809177. [Online]. Available: https://www.tandfonline.com/doi/abs/10.1080/1206212X.2020.1809177
[4] S. Revathi, “Data mining techniques with cloud security,” Int. J. Res. Appl. Sci. Eng. Technol., vol. 7, no. 11, pp. 468–472, Nov. 2019, doi: 10.22214/ijraset.2019.11076. [Online]. Available: https://www.ijraset.com/fileserve.php?FID=22042
[5] S. Kumar and S. Kumar, “Cloud security based on PaaS model,” Int. J. Comput. Sci. Eng., vol. 7, no. 7, pp. 378–385, Jul. 2019, doi: 10.26438/ijcse/v7i7.378385. [Online]. Available: https://www.ijcseonline.org/archive_issue.php?pageNum_RS_U=6&pub_id=73&totalRows_RS_U=64
[6] IJSETR, “Enhanced solutions for security as a service cloud model,” Int. J. Sci. Eng. Technol. Res. (IJSETR), vol. 8, no. 9, pp. 3456–3460, Sep. 2019. [Online]. Available: https://www.ijsetr.org/wp-content/uploads/2019/09/IJSETR-VOLUME-8-ISSUE-9-3456-3460.pdf
[7] K. Hashizume, D. Rosado, E. Fernández-Medina, and E. Fernández, “An analysis of security issues for cloud computing,” J. Internet Serv. Appl., vol. 4, no. 5, pp. 1–13, 2013, doi: 10.1186/1869-0238-4-5.
[8] Z. Mirza, Z. Farooqui, M. Jain, and A. Karolia, “Cloud based solution for small and medium franchisees,” Int. J. New Tech-nol. Res., vol. 3, no. 3, pp. [page numbers], Mar. 2017. [Online]. Available: https://www.neliti.com/publications/263338/cloud-based-solution-for-small-and-medium-franchisees
[9] IJCSMC, “Understanding of intrusion detection system for cloud computing with networking system,” Int. J. Comput. Sci. Mobile Comput., vol. 9, no. 3, pp. 19–25, Mar. 2020. [Online]. Available: https://ijcsmc.com/docs/papers/March2020/V9I3202008.pdf
[10] M. L. Toro, N. A. Muhammad, A. R. Shu’aibu, M. A. Garba, A. Abdulaziz, and K. Musa, “Security, privacy issues and solutions of mobile cloud computing,” United Int. J. Res. Technol., vol. 2, no. 7, pp. 112–117, May 2021. [Online]. Availa-ble: https://uijrt.com/paper/security-privacy-issues-solutions-mobile-cloud-computing
[11] Cybersecurity News, “AWS breach analysis,” 2023. [Online]. Available: https://cybersecuritynews.com/aws-s3-bucket-misconfiguration-2023. [Accessed: Apr. 4, 2025]
[12] Google Cloud, “AI security trials,” 2024. [Online]. Available: https://cloud.google.com/security/ai-threat-detection. [Ac-cessed: Apr. 1, 2025]
[13] Hyperledger, “Financial sector case study,” 2024. [Online]. Available: https://www.hyperledger.org/case-studies/finance. [Accessed: Apr. 1, 2025]
Downloads
Published
Issue
Section
License
This work is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License.
