Cloud 20/20 Version 4.

0: Demonstrable Student
Project of the Year 2012

SECURITY IN HYBRID CLOUD

COMPUTING

BY
POOJA P
PAVITHRA R
VIJAYALAKSHMI
V
BE CSE III year
VELAMMAL
INSTITUTE OF TECHNOLOGY

ABSTRACT:
Cloud computing is a better way to run your business. Instead of running your apps
yourself, they run on a shared data center. The underlying concept of cloud
computing dates back to 1960, when JohnMcCarthy opined that "computation may
someday be organized as a public utility"; indeed it shares characteristics with
service bureaus that date back to the 1960s.The actual term "cloud" borrows from
telephony in that telecommunications companies, who until the 1990s primarily
offered dedicated point-to-point data circuits, began offering VIRTUAL PRIVATE
NETWORK (VPN) services with comparable quality of service but at a much
lower cost. A hybrid cloud is a composition of at least one private cloud and at
least one public cloud. A hybrid cloud is typically offered in one of two ways: a
vendor has a private cloud and forms a partnership with a public cloud provider, or
a public cloud provider forms a partnership with a vendor that provides private
cloud platforms. In this project we have shown, how secure it is when private
cloud forms a partnership with public cloud.

INTRODUCTION:
In early 2008, Eucalyptus became the first open-source, AWS API-compatible
platform for deploying private clouds. In early 2008, OpenNebula, enhanced in the
RESERVOIR European Commission-funded project, became the first open-source
software for deploying private and hybrid clouds, and for the federation of
clouds. In the same year, efforts were focused on providing quality of
service guarantees (as required by real-time interactive applications) to cloudbased infrastructures, in the framework of the IRMOS European Commissionfunded project, resulting to areal-time cloud environment. By mid-2008, Gartner
saw an opportunity for cloud computing "to shape the relationship among
consumers of IT services, those who use IT services and those who sell them" and
observed that "organizations are switching from company-owned hardware and
software assets to per-use service-based models" so that the "projected shift to
computing... will result in dramatic growth in IT products in some areas and
significant reductions in other areas. On March 1, 2011, IBM announced

the Smarter Computing framework to support Smarter Planet. Among the various
components of the Smarter Computing foundation, cloud computing is a critical
piece.
The economic benefits offered by public clouds are attractive enough for many
organizations to push some of their non-critical workloads to such services while
also using private clouds for their mission-critical needs. Such hybrid cloud
deployments have proven to be advantageous not just in terms of better economics
but also in terms of business agility. The best-of-bothworlds approach of hybrid
cloud lets organizations take advantage of public clouds to reduce capex while still
keeping their mission-critical workloads inside the organization. However, by
combining private and public cloud models, hybrid clouds have the largest attack
surface. Businesses must deploy security across both the private and public cloud
elements.

Here, in this project we discuss about the security in hybrid cloud computing
which is important for private cloud.

SECURITY THREATS
As organizations use hybrid clouds for their business needs, they must understand
the new security requirements of a hybrid cloud environment. While hybrid clouds
offer the security advantages of private clouds, there are some unique security
challenges that arise as the perimeter extends beyond the organizations
boundaries. Along with the typical security considerations associated with private
clouds, there are some additional factors one should consider in a hybrid
environment.
Perimeter extension: As a hybrid cloud extends the IT perimeter outside the
organizational boundaries, it opens up a larger surface area for attacks with a
section of the hybrid cloud infrastructure under the control of the service provider.
Identity and access management: An easier approach to solving the identity
needs of hybrid clouds is to extend the existing enterprise identity and access
management to the public clouds. This opens up concerns about how this approach
will affect the enterprise identity and its impact on the organizations security.
Management tools: When organizations manage complex hybrid cloud
environments using a management tool, either as a part of the cloud platform or as
a third-party tool, organizations should consider the security implications of using
such a tool. For example, the management tool should be able to handle the
identity and enforce security uniformly across hybrid cloud environments.
Data migration: A hybrid cloud makes the data flow from a private
environment to a public cloud much easier. There are privacy and integrity
concerns associated with such data movement because the privacy controls in the
public cloud environment vary significantly from the private clouds.
Security policies: There are risks associated with the security policies spanning
the hybrid cloud environment such as issues with how encryption keys are
managed in a public cloud compared to a pure private cloud environment.

PROPOSED MODEL:

The objectives we are looking forward in this project are

1. Public cloud
2. Private cloud
OpenNebula offers the possibility of integration with a public cloud provider in
order to satisfy peak demands, for which the local infrastructure is not enough. The
remote provider could be a commercial Cloud service, such as Amazon EC2, or a
partner infrastructure running a different OpenNebula instance. Such support for
cloudbursting enables highly scalable hosting environments.
An Hybrid Cloud Deployment powered by OpenNebula is fully transparent to
infrastructure users. Users continue using the same private and public Cloud

interfaces, so the federation is not performed at service or application level but at

infrastructure level by OpenNebula. It is the infrastructure administrator who takes
decisions about the scale out of the infrastructure according to infrastructure or
business policies.

Project Scope
It is to create and configure everything needed to deploy a mini-cluster in a private
network withNIS and NFS and let external nodes from EC2 to connect via VPN to
the server and join this network and then the cluster with SGE.
There is no modication in the operation of OpenNebula to integrate Cloud
services. A Cloud service is managed as any other OpenNebula host that may
provide innite capacity for the execution of VMs.

PRE REQUISITES:
System with Ubuntu version of Linux installed in it.
Install Eucalyptus
Verify whether the Eucalyptus is working well.

SOFTWARE REQUIREMENTS:

Operating System
Private Cloud
Back End
Documentation

: Ubuntu 12.04 64 Bi t Server

: OpenNebula
: SQLite
: Ms-Office

HARDWARE REQUIREMENTS:

CPU type
Clock speed
Ram size
Hard disk capacity
Monitor type

: Intel Pentium Xeon Processor

: 3.0 GHz
: 1 GB
: 80 GB
: 15 Inch color monitor

 Keyboard type

: internet keyboard

COMMANDS:
1. /install.sh -u oneadmin -g cloud d/srv/cloud/one:
This command is used to create open nebula.
2. onehost list:
This command lists the number of active instance in amazon web services.

3. openvm create ec2.one :

This command creates the template in amazon.

When we give these commands opennebula creates a instance in public

cloud(AMAZON WEB SERVICE).Here the main advantange is it provides
a key which helps in security for private clouds when they use public cloud.
Third parties cannot find the datas due to the key.
3. bash-profile:
This installs the pre-requisitive files.

CONCLUSION:
Hybrid clouds offer a greater flexibility to businesses while offering choice in
terms of keeping control and security. Hybrid clouds are usually deployed by
organizations willing to push part of their workloads to public clouds either for
cloudbursting purposes or for projects requiring faster implementation. Because
hybrid clouds vary based on company needs and structure of implementation, there
is no one-size-fits-all solution. Since hybrid environments involve both onpremise and public cloud providers, some additional infrastructure security

considerations come into the picture, which are normally associated with public
clouds. . Any businesses planning to deploy hybrid clouds should understand the
different security needs and follow the industry best practices to mitigate any risks.
Once secure, a hybrid cloud environment can help businesses transition more
applications into public clouds, providing additional cost savings.