DOCSLIB.ORG

Store, Access and Share Confidential Data Using Elliptic Curve Cryptosystem on Cloud Ashlekha Jain1, Prof

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Store, Access and Share Confidential Data Using Elliptic Curve Cryptosystem on Cloud Ashlekha Jain1, Prof ISSN XXXX XXXX © 2019 IJESC Research Article Volume 9 Issue No. 5 Store, Access and Share Confidential Data using Elliptic Curve Cryptosystem on Cloud Ashlekha Jain1, Prof. Dr. Aradhana. D2 Student1, Guide2 Department of CSE Ballari Institute of Technology & Management, Ballari, India Abstract: Cloud is the big paradigm shift from storing data on local storage devices to storing digital data on centralized cloud. With many advantages, Cloud storage comes with once major user concern: Security and Privacy. The pace with which cloud usage is increasing, demand for user data integrity has also increased because user data on Cloud could be exposed to bigger audience if compromised. Therefore, presently RSA has been the most popular cryptographic scheme used by Cloud Service Provider to secure Cloud Data.This paper is intended to design a security service for Cloud data using Elliptic Curve Cryptography Scheme (ECC). This scheme has advantage of smaller key size compared to RSA for same level encryption and decryption. Various studies have also shown that ECC requires less resources in terms of CPU cycle and memory. Keywords: Cloud Architecture, Cloud Security, Cloud Services, Cloud Service Model, Cryptography and Elliptic Curve Cryptography. I. INTRODUCTION Applications can be easily migrated from one physical server to another. Cloud is the method to save data to another off-site storage system that is owned and maintained by a third party. Rather A. The Cloud Architecture than storing information to user’s own computer's hard drive The basic architecture for cloud data storage is or other local storage device, he/she saves it to a remote illustrated in figure 1. The three different identifiable network database. The Internet is the communication channel that entities are as follows: User, Cloud Service Provider (CSP) connects user to the remote storage. Security is one of the and Software Applications. challenging issues in terms of upload and store confidential data to cloud system. In this paper, we have discussed implementation concepts for cloud security using Elliptic curve algorithm as this is better than RSA in terms of key size and security level about confidential data. II. CLOUD STORAGE SYSTEM When Why Cloud computing? Various advantages of Cloud have made it the most preferable technology in current scenario. For better understanding of cloud as technology, first step is to know about its characteristics. a. Automated Service Catering: Once the user configures computing logic and requirements, system automatically cater services such as server time and network storage without further human intervention. Figure.1. cloud data storage architecture. b. Range of access technology supported: Data is stored on User can store and access data through any digital media servers and can be accessed through single standard protocol devices like workstation or smart phones or handheld by using like Laptops, Desktops, tablets or mobile phones. devices, using Internet as the communication channel. User c. On-Demand Optimum Resource utilization: The Service Interface is responsible for converting User Requests into a Provider owns resources like storage, processing, memory and Service Provisioning Request. Software Application network bandwidth. The Cloud Service Provider uses multi- processes the request and provides Cloud Storage Services to tenant model and allocate both physical and virtual resources the User and same configuration request is sent over to to multiple consumers based on demand. Cloud Servers. Cloud Storage Servers are the physical d. Transparency in Service Usage: Resource usage can be resources owned and controlled by a third-party service monitored, controlled, and reported, providing transparency provider. To cater requirement of user that varies from one to for both the provider and consumer of the utilized service. other users, virtual storage pools are created and assigned to e. Virtualization: Virtualization technology allows servers respective users, this is charged by the Cloud Service and storage devices to be shared and utilization is increased. Provider. International Journal of Engineering Science and Computing, May 2019 22448 http://ijesc.org/ B. Cloud Service Models One issue with cloud computing is that the management of the The Cloud Security Alliance has defined three delivery models data which might not be fully trustworthy; the risk of in cloud architecture, which are shown in the Figure 2 Below. malicious insiders in the cloud and the failure of cloud services have received a strong attention by companies.” [2] III. CHOICE OF EFFICIENT ENCRYPTION TECHNIQUE A. Concept of Cryptography There are mainly two kinds of cryptographic systems 1. Symmetric key cryptography 2. Public key cryptography. Figure.2. Cloud Service Model 1. Symmetric-key algorithm – There is single secret key that is used by both sender and receiver. Secure Key sharing with “Infrastructure as a Service (IaaS): IaaS provides cloud sender and receiver must be performed before data consumers high level of control and responsibility of transmission. As same key is used for both encryption and configuration and utilization of IT-resources like virtual server decryption, security of Key and its sharing is important aspect. instances and storage, APIs hardware, networks and operating 2. Asymmetric – Set of two keys viz: Public Key & Private systems. Key are used at both sender and receiver. The public key is Platform as a Service (PaaS): PaaS provides cloud consumers made available to all whereas sender and receiver maintain a ready-made environment comprised of already deployed and Private Key individually. Encrypt is used by using Private configured IT resources. Here, consumers have lower level of Key of sender and Public Key of receiver, similarly decryption control over the deployed applications. is performed using Public Key of Sender and Private Key of Software as a Service (SaaS): SaaS provides cloud consumers receiver. to use and configures cloud service. A cloud consumer has 3. Combined: Key used for encryption/decryption is very limited administrative control over SaaS implementation symmetric but is transferred between sender and receiver The maintenance, management and implementation of cloud using Asymmetric method. [3] services are done by cloud service provider.” [1] a. Cryptography is used for addressing the network security problems. C. Cloud Classification 1. Data Integrity: It refers to maintain correctness of data Clouds are classified into 4 types depending upon their sizes where data is not edited by any unauthorized person or is and usage. compromised in any sense. “Public cloud: A public cloud is an infrastructure or 2. Authentication: It determines whether data is accessed by environment, which is publicly accessible and is owned by an authenticated user or not, to whom access, or permission third party cloud service provider. In this, CSP provides the has been granted. same infrastructure resources over the Internet to all the 3. Non-Repudiation: It deals with the assurance that sender customers of public cloud with limited configurations, security cannot deny sending a message that they originated. protection and dynamic availability. 4. Secrecy: Security of data. [4] Private cloud: A private cloud is an infrastructure or b. Data Storage on Cloud includes security, key storage, CPU environment that is meant for an organization. Data in private usage etc. RSA has been found the most commonly used cloud are more secured and controlled as compared cryptographic scheme for Cloud Data. In RSA algorithm the to the public cloud. Private cloud can be hosted in on premise security strength is directly proportional to the key size. or by externally trusted third party. Therefore, larger the key size more is the security. But larger Community cloud: A Community cloud is an infrastructure key size demands for more storage capacity to store key in or environment that is meant for more than one organization key server. The cryptosystem called elliptic curve with specific community i.e. shares common and specific cryptography which uses two set of keys Public and Private. needs such as policy compliance, security and privacy. Cloud Even with lesser key size compared to RSA. [5] service provider may manage the community cloud or organizations and may be hosted on-premises or off c. ECC is chosen over RSA due to following advantages: premises. Shorter keys are as strong as long key for RSA. Hybrid cloud: Integration of two or more clouds (private, Low on CPU consumption. community, or public) forms hybrid cloud to meet the unique Low on memory usage. requirements of an organization by performing different Size of encrypted data is smaller. functions.” [1] In today’s world ECC algorithm is used in case of key exchanges by certificate authority (CA) to share the public D. Security Threats in Cloud key certificates with end users. Elliptic Curve Cryptography Security is considered as one of the most critical aspects in is a secure and more efficient encryption algorithm than RSA everyday computing and it is not different for cloud as it uses smaller key sizes for same level of security as computing due to sensitivity and importance of data stored on compared to RSA. For e. g. a 256-bit ECC public key the cloud. “Cloud Computing infrastructure uses new provides comparable security to a 3072-bit RSA public key. technologies and services, most of which haven’t been fully The aim of this work is providing an insight into
Load more

Recommended publications
  • BEST PRACTICE GUIDE for CLOUD and AS-A-SERVICE PROCUREMENTS Executive Summary 1 Introduction
    BEST PRACTICE GUIDE FOR CLOUD AND AS-A-SERVICE PROCUREMENTS Executive Summary 1 Introduction Specific Models and Understanding Cloud Procurement Service Models Data EXECUTIVE SUMMARY Breach Notification Personnel Security While private companies rapidly move systems and Vendors share blame, too. Lots of cloud providers are new to Encryption applications to the cloud, public agencies still struggle to adopt public sector business, having grown up selling to consumers Audits Operations hosted services that could save money and provide better value. and private firms. These companies don’t always understand Hybrid Cloud Environments legitimate demands that make government contracting Preparation for Migrating Yet states and localities have much to gain from the different from selling to other markets. Failure to accommodate Workloads to the Cloud technology industry’s “as-a-service” revolution. Many unique government requirements can be a deal-breaker for jurisdictions face huge legacy system replacement challenges. agencies charged with protecting the public’s interests. Conclusion They’re also under pressure to provide new classes of digital services. The cloud can offer a better path toward All too often, government and industry aren’t on the same page Workgroup Members modernization — there’s no hardware to buy, you’re always when it comes to cloud services. They may not even speak the and Contributors on the latest version of the software and system capacity same language. can be adjusted almost instantly based on your needs. Appendix 1 Bridging the Gap Model Terms and Conditions Templates So why is government lagging behind? The fact is that These pressures led us to release the first version of this guide Software-as-a-Service governments often struggle to buy cloud-based services because two years ago.
    [Show full text]
  • Elliptic Curve Cryptography in Cloud Computing Security
    Elliptic curve cryptography in cloud computing security Manu Gopinathan ([email protected]) Øyvind Nygard ([email protected]) Kjetil Aune([email protected]) December 1st, 2015 1 Abstract Cloud computing is a technological advancement that has been growing swiftly during the last decade. In simple terms, cloud computing is a technology that enables shared, remote, on-demand and ubiquitous access to services through the Internet. It enables consumers to access applications and services that reside on remote servers, without having to allocate large amounts of storage space on their own computer and without the need for extensive compatibility configurations. Many such cloud applications provide services that are meant to handle sensitive user data and thus the protection of this data in terms of access and integrity is of major concern. Space- and time complexity of encryption algorithms can prove to be imperative when it comes to system performance. In this paper we will briefly present how elliptic curve cryptography (EEC) works, and then describe the advantages of it and how it can be used as an encryption solution to security related issues in cloud computing. 2 Introduction In this section we will briefly describe the notion of cloud computing to aid us in the discussion of ECC in cloud computing later. According to the National Institute of Standards and Technology (NIST), essential characteristics for a service based on the cloud computing model are [1]: 1. On-demand self-service: The consumer can provision service capabilities, such as server time and network storage, without actively interacting with the service provider. 2.
    [Show full text]
  • Building a Cloud-Enabled File Storage Infrastructure
    F5 White Paper Building a Cloud-Enabled File Storage Infrastructure A cloud-enabled infrastructure can help your organization seamlessly integrate cloud storage and maximize cost savings, while also offering significant benefits to your traditional file storage environments. by Renny Shen Product Marketing Manager White Paper Building a Cloud-Enabled File Storage Infrastructure Contents Introduction 3 What Makes a Cloud? 3 Types of Cloud Storage 4 What Makes Cloud Storage Different? 4 Accessing Files Remotely over the Network 5 Accessing Files on Object-Based Storage 5 Unique Cost Structure 6 Where Clouds Make Sense 7 Fitting the Cloud into a Tiered Storage Framework 7 Expanding the Parameters for Tiering with the Cloud 8 Defining Cloud-Enabled 9 Integrating Different Types of Storage 10 Non-Disruptive File Migration 11 Automated Storage Tiering 11 Benefits of a Cloud-Enabled Infrastructure 12 Reduced Storage Costs 12 Reduced Backup Times and Costs 13 Reduced Operational Costs 13 The F5 Cloud Storage Model 13 Creating a Private Cloud 15 Conclusion 18 2 White Paper Building a Cloud-Enabled File Storage Infrastructure Introduction Cloud storage offers enterprise organizations the opportunity to bring constantly rising file storage costs and management burden under control. By moving appropriate types of files to the cloud, organizations can reduce not only the amount of storage capacity that they need to purchase, but also the operational overhead involved in managing it. In addition, the cloud enables storage capacity to be increased on demand, while charging organizations only for the amount of storage that is actually utilized. Cloud storage will bring many changes to the way enterprises manage storage.
    [Show full text]
  • Hybrid Cloud Storage with Cloudian Hyperstore® and Amazon S3
    SOLUTION BRIEF Hybrid Cloud Storage with Cloudian HyperStore® and Amazon S3 NEW DATA STORAGE CHALLENGES With the popularity of rich media, the nt,%and%the%proli.eraon%o.%mobile%de8ices2%there%has%bee digiN5aon%o.%conte n% e:ponenNal%growth%in%the%amount o.%unstructured%data that IT%is%tasked%with%managing?and%the%rate%o.%this%growth%is% only%accelerang.%TradiNonal%networked%storage%approaches2%such%as%SAC%and%CAS2%.ail%to%meet the%per.ormance%and% throughput demands% o.% this% new% generaon% o.% IT% as% they% lack% the% scalability2% De:ibility% and% agility% which% modern% business%reEuires.%In%.act,%whole%legacy%storage%systems%are%breaking%down.%Fackups%and%restores%take%longer.%Migraon% to%new%storage%systems%is%labor%intensi8e.%And%the%list goes%on%and%on.%As%a result,%many%enterprise%organi5aons%are% mo8ing%to%hybrid%IT%en8ironments2%combining%the%De:ibility%and%scale%o.%the%cloud%with%the%security%and%control%o.%their% on-­‐premises%IT%capabiliNes.%In%this%respect,%Iloudian%and%Amazon%are%changing%the%game.%% HYBRID CLOUD SOLUTION BENEFITS Iloudian% HyperStore% soKware% pro8ides% cost-­‐eLecN8e% SbOect storage% has% changed% the% li8es% o.% enterprise% pri8ate% cloud% storage% which% deploys% on% commodity% customers2% sa8ing% them% Nme% and% money% while% hardware%housed%within%enterprise%IT%data centers%and% increasing% per.ormance% and% peace% o.% mind.% Tey% seamlessly% integrates% with% the% oL-­‐premises% Amazon% benePts%o.%using%Iloudian%and%Amazon%to%build%hybrid% cloud% in.rastructure.% IT% managers% can% dynamically% cloud9%"nclude: control%bi-­‐direcNonal%data Nering%to%and%.rom%Amazon% • Impro8ed% security% and% per.ormance% by% using% on-­‐ S3% and% Nlacier% at the% bucket le8el2% 8ia bucket li.ecycle% premises%cloud%storage%.or%criNcal%business%content rules.%Fucket rules%can%also%be%set up%to%automacally% and% the% most cost eLecN8e% and% highly% reliable% oL-­‐ e:pire%obOects%aer%a predetermined%amount o.%Nme%or% premises%cloud%storage%.or%long%term%data archi8al.% specific date.
    [Show full text]
  • Security Services Using ECDSA in Cloud Computing
    Volume 4, Issue 5, May 2014 ISSN: 2277 128X International Journal of Advanced Research in Computer Science and Software Engineering Research Paper Available online at: www.ijarcsse.com Security Services using ECDSA in Cloud Computing S.Sathish* D.Sumathi P.Sivaprakash Computer Science and Engineering Computer Science and Engineering Computer Science and Engineering Jaisriram Group of Institutions, India PPG Institute of Technology, India PPG Institute of Technology, India Abstract— Cloud computing security is the set of control-based technologies and policies designed to comply to the rules and regulations framed by the provider team to support and protect information, data applications and infrastructure associated with cloud computing use. Cloud computing security process should address the issues faced by the cloud users. Cloud Service Provider needs to incorporate the maintenance activity in order to provide the customer's data security, privacy and compliance with necessary regulations. The Elliptic Curve Digital Signature Algorithm (ECDSA) is a public key cryptosystem used for creation and verification of digital signatures in securing data uploaded by the cloud users. Information security concerns have been focused so that identifying unwanted modification of data, deletion of data is identified. Keywords— Cloud Computing,ECDSA,Crptography,RSA, I. INTRODUCTION Cloud computing is internet-based computing, where by shared resources, software and information are provided to computers and other devises on demand. It is a culmination of numerous attempts at large scale computing with seamless access to virtually limitless resources. Cloud Computing providers offer their services according to three fundamental models, namely Infrastructure-as-a- Service (IaaS), Platform-as-a-Service (PaaS), and Software-as-a-Service (SaaS) which is illustrated in figure 1.
    [Show full text]
  • Overview of Cloud Storage Allan Liu, Ting Yu
    Overview of Cloud Storage Allan Liu, Ting Yu To cite this version: Allan Liu, Ting Yu. Overview of Cloud Storage. International Journal of Scientific & Technology Research, 2018. hal-02889947 HAL Id: hal-02889947 https://hal.archives-ouvertes.fr/hal-02889947 Submitted on 6 Jul 2020 HAL is a multi-disciplinary open access L’archive ouverte pluridisciplinaire HAL, est archive for the deposit and dissemination of sci- destinée au dépôt et à la diffusion de documents entific research documents, whether they are pub- scientifiques de niveau recherche, publiés ou non, lished or not. The documents may come from émanant des établissements d’enseignement et de teaching and research institutions in France or recherche français ou étrangers, des laboratoires abroad, or from public or private research centers. publics ou privés. Overview of Cloud Storage Allan Liu, Ting Yu Department of Computer Science and Engineering Shanghai Jiao Tong University, Shanghai Abstract— Cloud computing is an emerging service and computing platform and it has taken commercial computing by storm. Through web services, the cloud computing platform provides easy access to the organization’s storage infrastructure and high-performance computing. Cloud computing is also an emerging business paradigm. Cloud computing provides the facility of huge scalability, high performance, reliability at very low cost compared to the dedicated storage systems. This article provides an introduction to cloud computing and cloud storage and different deployment modules. The general architecture of the cloud storage is also discussed along with its advantages and disadvantages for the organizations. Index Terms— Cloud Storage, Emerging Technology, Cloud Computing, Secure Storage, Cloud Storage Models —————————— u —————————— 1 INTRODUCTION n this era of technological advancements, Cloud computing Ihas played a very vital role in changing the way of storing 2 CLOUD STORAGE information and run applications.
    [Show full text]
  • Rclone VFS and Mergerfs Setup
    Rclone VFS and MergerFS Setup This guide is for advanced users only and it serves as a guide for you to use rclone and mergerFS. The files here are the recommended settings for our slots and will subject to change whenever there are new configurations that are appropriate for the slots. Furthermore, USB is not responsible for any data loss or application errors due to this setup should you proceed and will not provide official support for it due to the large volume of variables and different configurations possible with rclone and mergerFS. You may visit the community discord server or the software's respective forums for assistance. Please make yourself aware of the Ultra.cc Fair Usage Policy. It is very important not to mount your Cloud storage to any of the premade folders, this creates massive instability for both you and everyone else on your server. Always follow the documentation and create a new folder for mounting. It is your responsibility to ensure usage is within acceptable limits. Ignorance is not an excuse. Please do not mount to any of the default directories such as: files media bin .apps .config www /homexx/username/ or any pre-created directory found on your Ultra.cc Slot This section will teach you how to set up a rclone VFS mount and MergerFS on Ultra.cc slots, and it assumes the following: You have a working rclone setup, especially correctly configured remotes of your preferred cloud storage provider. In this tutorial, we'll be using Google Drive. If you use another cloud storage provider, change the flags that are appropriate to your setup and visit rclone documentation for more information.
    [Show full text]
  • Data Warehouse Offload to Google Bigquery
    DATA WAREHOUSE OFFLOAD TO GOOGLE BIGQUERY In a world where big data presents both a major opportunity and a considerable challenge, a rigid, highly governed traditional enterprise data warehouse isn’t KEY BENEFITS OF MOVING always the best choice for processing large workloads, or for applications like TO GOOGLE BIGQUERY analytics. Google BigQuery is a lightning-fast cloud-based analytics database that lets you keep up with the growing data volumes you need to derive meaningful • Reduces costs and business value, while controlling costs and optimizing performance. shifts your investment from CAPEX to OPEX Pythian’s Data Warehouse Offload to Google BigQuery service moves your workload from an existing legacy data warehouse to a Google BigQuery data • Scales easily and on demand warehouse using our proven methodology and Google experts–starting with a fixed-cost Proof of Concept stage that will quickly demonstrate success. • Enables self-service analytics and advanced analytics GETTING STARTED The Pythian Data Warehouse Offload to Google BigQuery service follows a proven methodology and delivers a Proof of Concept (POC) that demonstrates viability and value within three to four weeks. The POC phase will follow this workflow: 1. Assess existing data warehouse environment to identify tables and up to two reports that will be offloaded in this phase 2. Provision GCP infrastructure including Cloud storage, Bastion hosts, BigQuery, and Networking 3. Implement full repeatable extract/load process for selected tables 4. Implement selected reports on BigQuery 5. Produce report PYTHIAN DELIVERS By the end of the first stage of our engagement, you can expect to have: • Working prototype on BigQuery • Up to two reports • Demonstrated analysis capabilities using one fact with five associated dimensions www.pythian.com • Report that includes: an assessment of your current setup and support you need to plan and maintain your full (including a cost analysis for BigQuery), performance/ Google BigQuery data warehouse and enterprise analytics usability analysis of POC vs.
    [Show full text]
  • Enhancing Bittorrent-Like Peer-To-Peer Content Distribution with Cloud Computing
    ENHANCING BITTORRENT-LIKE PEER-TO-PEER CONTENT DISTRIBUTION WITH CLOUD COMPUTING A THESIS SUBMITTED TO THE FACULTY OF THE GRADUATE SCHOOL OF THE UNIVERSITY OF MINNESOTA BY Zhiyuan Peng IN PARTIAL FULFILLMENT OF THE REQUIREMENTS FOR THE DEGREE OF MASTER OF SCIENCE Haiyang Wang November 2018 © Zhiyuan Peng 2018 Abstract BitTorrent is the most popular P2P file sharing and distribution application. However, the classic BitTorrent protocol favors peers with large upload bandwidth. Certain peers may experience poor download performance due to the disparity between users’ upload/download bandwidth. The major objective of this study is to improve the download performance of BitTorrent users who have limited upload bandwidth. To achieve this goal, a modified peer selection algorithm and a cloud assisted P2P network system is proposed in this study. In this system, we dynamically create additional peers on cloud that are dedicated to boost the download speed of the requested user. i Contents Abstract ............................................................................................................................................. i List of Figures ................................................................................................................................ iv 1 Introduction .............................................................................................................................. 1 2 Background .............................................................................................................................
    [Show full text]
  • Performance Efficiency Pillar
    Performance Efficiency Pillar AWS Well-Architected Framework Performance Efficiency Pillar AWS Well-Architected Framework Performance Efficiency Pillar: AWS Well-Architected Framework Copyright © Amazon Web Services, Inc. and/or its affiliates. All rights reserved. Amazon's trademarks and trade dress may not be used in connection with any product or service that is not Amazon's, in any manner that is likely to cause confusion among customers, or in any manner that disparages or discredits Amazon. All other trademarks not owned by Amazon are the property of their respective owners, who may or may not be affiliated with, connected to, or sponsored by Amazon. Performance Efficiency Pillar AWS Well-Architected Framework Table of Contents Abstract and Introduction ................................................................................................................... 1 Abstract .................................................................................................................................... 1 Introduction .............................................................................................................................. 1 Performance Efficiency ....................................................................................................................... 2 Design Principles ........................................................................................................................ 2 Definition .................................................................................................................................
    [Show full text]
  • Paas Solutions Evaluation
    PaaS solutions evaluation August 2014 Author: Sofia Danko Supervisors: Giacomo Tenaglia Artur Wiecek CERN openlab Summer Student Report 2014 CERN openlab Summer Student Report 2014 Project Specification OpenShift Origin is an open source software developed mainly by Red Hat to provide a multi- language PaaS. It is meant to allow developers to build and deploy their applications in a uniform way, reducing the configuration and management effort required on the administration side. The aim of the project is to investigate how to deploy OpenShift Origin at CERN, and to which extent it could be integrated with CERN "Middleware on Demand" service. The student will be exposed to modern cloud computing concepts such as PaaS, and will work closely with the IT middleware experts in order to evaluate how to address service needs with a focus on deployment in production. Some of the tools that are going to be heavily used are Puppet and Openstack to integrate with the IT infrastructure. CERN openlab Summer Student Report 2014 Abstract The report is a brief summary of Platform as a Service (PaaS) solutions evaluation including investigation the current situation at CERN and Services on Demand provision, homemade solutions, external market analysis and some information about PaaS deployment process. This first part of the report is devoted to the current status of the process of deployment OpenShift Origin at existing infrastructure at CERN, as well as specification of the common issues and restrictions that were found during this process using different machines for test. Furthermore, the following open source software solutions have been proposed for the investigation of possible PaaS provision at CERN: OpenShift Online; Cloud Foundry; Deis; Paasmaster; Cloudify; Stackato; WSO2 Stratos.
    [Show full text]
  • Sebastian Witowski
    I made a website! Now what? Sebastian Witowski 1 Disclaimer There are many great tools at CERN (OpenShift). This presentation is not about those tools. 2 This presentation is about external tools 3 Free to use Open source Good value/money Good service Supports FOSS/education 4 Hosting 5 Cloud hosting Physical server vs VPS: Billed for real usage (per second on AWS) Easy to scale 6 Hosting providers AWS (EC2 and Amazon Lightsail) Free tier for 1 year (2x t2.micro, 1 DB, 5GB storage, etc.) Complex pricing model DigitalOcean From $5/month (512MB RAM, 20GB storage, 1TB transfer) Additional storage from $0.10/GB/month Linode From $5/month (1GB RAM, 20GB storage, 1TB transfer) Additional storage from $0.10/GB/month Heroku PaaS: more expensive, but easier to use (less congurable) 1 dyno free forever (512 MB RAM, 10k PostgreSQL rows) 7 Server parameters Storage - 20GB is plenty (use AWS S3 for more) Transfer - 1TB is usually more than enough CPU - 1 CPU is ne for simple website RAM - the more the better (caching, DB, etc.) 8 Cloud computing 9 When a VPS is not enough AWS Free tier for 1 year (VPS, DB, S3, Lambda and more) More features than competition Longest time on market == more 3rd party libraries Google Cloud $300 free credits to spend during rst 12 months "Always free" tier with VPS (1 f1-micro, 30GB storage), DB (1GB NoSQL), storage (5 GB), messaging, logging, serverless functions, but also NLP, speech and vision API Azure 30 days free trial with $200 free credits, some services free for 12 months and some free forever Good support for Windows applications 10 Static websites 11 When a VPS is too much GitLab pages Supports any static site generator Free Continuous Integration Slightly more complicated setup GitHub pages Supports only Jekyll (to use other static site generators, you need to precompile les locally) Easy, out-of-the-box setup Both are free and offer separate websites for projects and organizations.
    [Show full text]