Aim:

The main aim of this project is to combined approach to security and cyber insurance provisioning in the cloud based resources.

Synopsis:

In this paper we have presented a joint approach to security and cyber insurance provisioning in the cloud. Using a stochastic optimization, we have presented a method of optimally provisioning both services in the face of uncertainty regarding future pricing, incoming traffic and cyber attacks. Thus, an application may guard against attacks by provisioning security services from providers such as Vast and Trend Micro. These services may take various forms, such as secure data storage, identity and access management (IAM), and intrusion detection services to screen incoming traffic. And then cyber insurance is used to provide explicit cover in the event that malicious activity leads to financial loss. Insurance coverage may be first or third party with such as theft of money and digital assets, business interruption, and cyber extortion, privacy breaches, loss of third-party data.

Proposed System:

In this paper, we present SECaaS in firewall-style to provide security policy enforcement and monitoring infrastructure for network traffic. Which focuses on network traffic analysis like IDS (Intrusion Detection System) implementations to identify attack behaviors. And then relationship between cyber insurance and SECaaS provisioning, containing a customer who uses applications, which receive Internet traffic in the form of packets. These packets are scanned by services from SECaaS providers, provisioned by a subscription management process (SMP). In the event that harmful packets elude security, cyber insurers, subscribed to by an insurance management process (IMP), provide compensation for damages incurred. In this application run on customer machine that we assume to be Internet-accessible, either on a cloud service such as Amazon. Applications receive data packets in accordance with their operating purpose, e.g. email data or financial transactions. Legitimate packets are called safe packets, while packets used in cyber attacks are called unsafe packets. Unsafe packets are deemed, handled if they are correctly detected by security services, or unhandled if they are not successfully processed (for example if they are undetected). These unhandled packets will cause damage, which incurs costs to the customer will refund the amount to insurance company. And then IMP will refund the particular data cost to customer.

Algorithms used:

•             Lagrange multiplier algorithm
•          Banking Interface