International Journal of Science, Engineering and TechnologyAuthors: Mr. Shantanu, Dr. Tanu Arora, Dr. Narinder Khubber
Abstract: This paper will examine the evolving cyber security threats associated with cloud computing and will analyse the legal implications arising from inadequate data protection mechanisms and insecure cloud architectures. It will further evaluate the role of encryption standards, secure-by-design cloud frameworks, identity and access management systems, and risk mitigation strategies in ensuring legal compliance and cyber resilience. Special emphasis will be placed on international and national legal frameworks governing cloud security, including the European Union’s General Data Protection Regulation (GDPR), the Health Insurance Portability and Accountability Act (HIPAA), the Payment Card Industry Data Security Standard (PCI DSS), and India’s Digital Personal Data Protection (DPDP) Act. The study will also explore issues relating to jurisdiction, data sovereignty, liability of cloud service providers, contractual obligations, cybercrime investigation, and regulatory enforcement in cloud ecosystems. Furthermore, the paper will propose compliance-oriented and legally sustainable cyber security strategies that organizations will be expected to adopt in future cloud infrastructures. The research will conclude that effective cloud governance will require the integration of technological safeguards with strong legal and regulatory frameworks to ensure data privacy, accountability, and secure digital transformation.
DOI: http://doi.org/10.5281/zenodo.20156680
