Cloud computing, which is the next-generation paradigm in computation, delivers applications and resources on an on-demand basis via the internet as services [1]. It provides an environment of hardware and software resources over the network to satisfy user requirements.

According to the National Institute of Standards and Technology (NIST) [2], cloud computing allows ubiquitous, convenient, on-demand network access to a shared pool of configurable computing resources that can be rapidly provisioned and released with minimal management effort or service provider interaction. Resources include computing applications, network resources, platforms, software services, virtual servers and computing infrastructure [3].

Computing and data storage are two basic functionalities provided by cloud computing. Cloud service consumers get the necessary access to their data and complete the computing job through the internet. They have no idea about the storage location of data and machine details which perform the computing task.

Data protection and security is the primary objective in data storage to gain the user’s trust and make the implementation successful. Hence, data security is a burning issue in this domain, as data is scattered throughout various machines located in various locations. This makes it more complicated compared to the traditional systems. Though data security is the major issue, it’s accompanied by several others like compliance, privacy, trust, and legal matters. Hence, adequate tools and techniques are required to be in place to make the cloud adoption initiative successful. In this chapter, various well-known techniques in cloud data security are reviewed for the purpose of achieving this goal.

Section 1.5.3 highlights existing research works in related areas. A brief overview of cloud computing is depicted in Section 1.5.4. Section 1.5.5 discusses various well-known techniques implemented in this domain. It discusses a few well-known algorithms from both domains — symmetric encryption and asymmetric encryption. Section 1.5.6 presents the comparison of these algorithms based on various parameters. Performance analysis of encryption algorithms in cloud is presented in Section 1.5.7. Section 1.5.8 contains the conclusions drawn on the basis of the above.

Kartit et al. have reviewed the commonly used encryption algorithms for data security and proposed a simple, secure and privacy-preserving architecture for inter-cloud data sharing. This architecture is built on the concept of encryption and decryption algorithms, aimed at securing cloud data from unauthorized access [4]. A brief overview of various symmetric and asymmetric algorithms along with their comparison is presented by Bhardwaj et al. in their paper [5]. The research was enhanced by Iyer et al. [6], who have presented an algorithm which works towards providing a secure way to communicate and store data in cloud servers.

Conner et al. [7] have proposed an effective reputation management system with associated trust establishment by using multiple scoring functions and implemented the security service on a realistic application scenario in distributed environments. Friedman and West [8] and Ristenpart et al. [9] have presented several privacies as well as security issues that arise in a cloud computing framework. Yan et al. [10] described a nice scheme for handling data protection in terms of confidentiality by implementing amalgamation of identity management with hierarchical identity-based cryptography for distribution of the key as well as mutual authentication in the cloud infrastructure. The security and privacy of data stored in cloud is the challenging task. Encryption algorithms are used for data security. In each algorithm an encryption key is used that can only be accessed by the authorized user. Ukil et al. [11] proposed an architecture and security model towards better protection of confidentiality and privacy in a public cloud infrastructure which does not depend on the deployment of the cloud.

Cloud computing refers to the delivery of all the computing services which majorly includes servers, storage, databases, networking and software over the internet for providing resource flexibility and lowering operating cost of the users. Lower cost, speed, global scale, productivity, performance and security are the top benefits of adopting this new technique over the traditional one. It eliminates or reduces the capital expense of buying necessary hardware and software, which works towards overall cost reduction. As most of the services are provided on demand, a huge amount of computing services can be arranged within a few minutes. It is also location independent because everything is accessible online. Optimized performance is achieved as the data centers, responsible for providing secure services, are updated with the latest generation of fast and efficient computing hardware. The following subsections describe its essential characteristics, various layers and commonly available deployment models [12].