Abstract

Cloud computing offers different deployment and distribution models for the outsourcing of the company’s Information Technology (IT) infrastructure (applications and data). The wide adoption of this concept does not exclude permanent and unforeseen dangers. The company loses its guarantee of the confidentiality of its most sensitive information, and many legal and security questions remain unanswered. A large number of threats from different backgrounds flock, especially against the data. The confidentiality of sensitive database information stored on the cloud provider server is always a big issue for cloud customers. Because it is no longer just attackers or other cloud users the company is looking for to preserve the confidentiality of its sensitive information, it is also and above all the supplier cloud itself. To this end, cloud providers have deployed security mechanisms designed to protect user databases from external threats. However, these measures do not seem sufficient. In the absence of trust, security does not exist. In this thesis, we set out to define the main database security factors. We have made relevant arguments on the necessity of the client-side encryption model and evaluated its performance in an environment real cloud. In order to carry out these measurements, we propose a basic security model of data based on client-side encryption. Our proposal guarantees the confidentiality of data, thanks to the management of the encryption/decryption keys assigned to the client cloud.

Key words: Cloud computing, database security, data encryption, confidentiality, integrity, trust.