Data Security in Cloud Computing: Threat Analysis and Preventive Protection Strategies
DOI:
https://doi.org/10.65405/6hnq1y57Keywords:
cloud, protection, solutions, transparentAbstract
This study aims to investigate data security in cloud computing, analyzing the security threats facing data stored and processed in cloud environments, and reviewing preventive solutions and techniques to ensure its protection. The research problem focuses on the diversity of threats and their impact on data confidentiality, integrity, and availability, including unauthorized access, data leakage, malicious attacks, API exploitation, and data loss.
The study reviews previous research, classifies threats according to the CIA model (Confidentiality, Integrity, Availability), and presents a comprehensive table illustrating the threats, practical examples, and their relation to prior studies. It also explores technical and administrative solutions, such as encryption, access control, multi-factor authentication, regular backups, continuous monitoring, and modern security models like Zero Trust.
The findings indicate that securing cloud data requires a combination of technical measures, security policies, and user awareness training. Moreover, applying best practices significantly reduces incidents of data breaches and enhances the trust of organizations and users in cloud services. Based on these results, the study recommends implementing integrated preventive measures, strengthening national security policies, and raising user awareness to ensure effective cloud data protection.
Downloads
References
1. Mell, P., & Grance, T. (2011). The NIST Definition of Cloud Computing. National Institute of Standards and Technology. Retrieved from https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-145.pdf
2. Subashini, S., & Kavitha, V. (2011). A survey on security issues in service delivery models of cloud computing. Journal of Network and Computer Applications, 34(1), 1–11. https://doi.org/10.1016/j.jnca.2010.07.006
3. Hashizume, K., Rosado, D. G., Fernández-Medina, E., & Fernandez, E. B. (2013). An analysis of security issues for cloud computing. Journal of Internet Services and Applications, 4(1), 5. https://doi.org/10.1186/1869-0238-4-5
4. الزيات، أ. (2018). دراسة أمن البيانات في المؤسسات الحكومية العربية. مجلة الدراسات الأمنية العربية, 12(2), 45–60.
5. محمد الطاهر المحروق. (2026). دور الإفصاح المحاسبي الإلكتروني في تحسين جودة المعلومات المحاسبية دراسة ميدانية على المصارف التجارية العاملة بمدينة الزاوية. Al-Farooq Journal of Sciences, 2(1), 1373-1398.
6. المغربي، م. (2020). تحليل أثر التشفير والتحكم في الوصول على حماية البيانات في الحوسبة السحابية. مجلة تكنولوجيا المعلومات والأمن السيبراني, 8(1), 22–35.
7. أبو الحسن، ع.، وآخرون. (2021). تقييم أمن البيانات في المؤسسات الليبية: دراسة حالة للجهات الحكومية. مجلة علوم الحاسوب والمعلوماتية, 9(3), 50–68.
8. الجندلي ، متطلبات تطبيق الحوسبة السحابية في التعليم المحاسبي في ليبيا: دراسة على أعضاء هيئة التدريس بقسم المحاسبة بجامعتي صبراتة والزاوية. (2026). مجلة الفاروق للعلوم, 2(3), 236-330. https://doi.org/10.65405/
9. Cloud Security Alliance (CSA). (2020). Security Guidance for Critical Areas of Focus in Cloud Computing v4.0. Cloud Security Alliance. Retrieved from https://cloudsecurityalliance.org/research/security-guidance/
10. Mell, P., & Grance, T. (2011). Security and Privacy in Cloud Computing: A Survey. NIST Technical Report.
11. Jansen, W., & Grance, T. (2011). Guidelines on Security and Privacy in Public Cloud Computing. NIST Special Publication 800-144.
12. Alnnale, T. (2026). Predictive Governance in Digital Enterprises: An LSTM-Enhanced Deep Learning Framework for Economic Optimization of IT Incident Management Using Enriched Process Logs. Al-Farooq Journal of Sciences, 2(3), 86-113.
13. AlZain, M. A., Pardede, E., Soh, B., & Thom, J. A. (2012). Cloud Computing Security: From Single to Multi-Clouds. 2012 45th Hawaii International Conference on System Sciences, 5490–5499. https://doi.org/10.1109/HICSS.2012.417
