Open AccessProceedings Article
Misuse patterns for cloud computing
Keiko Hashizume,Eduardo B. Fernandez,Nobukazu Yoshioka +2 more
- 01 Jan 2011
pp 683-686
24
TL;DR: In this article, a misuse pattern describes how an information misuse is performed from the point of view of the attacker, it defines the environment where the attack was performed, how the attack is performed, countermeasures to stop it, and how to find forensic information to trace the attack once it happens.
read more
Abstract: Cloud Computing is a new computing structure that allows providers to deliver services on demand by means of virtualization. We are studying some security attacks in cloud computing by describing them in the form of misuse patterns. A misuse pattern describes how an information misuse is performed from the point of view of the attacker. It defines the environment where the attack is performed, how the attack is performed, countermeasures to stop it, and how to find forensic information to trace the attack once it happens. We are building a catalog of misuse patterns and we present here two of them: Resource Usage Monitoring (complete) and Malicious Virtual Machine Creation (partially). We discuss also the value of having such a catalog.
read more
Chat with Paper
AI Agents for this Paper
Find similar papers on Google Scholar, PubMed and Arxiv
Write a critical review of this paper
Analyze citations of this paper to find unaddressed research gaps
Citations
Cloud Computing Patterns
Christoph Fehling,Frank Leymann,Ralph Retter,Walter Schupeck,Peter Arbitter +4 more
- 01 Jan 2014
TL;DR: If the application scenario for such abstractions and approximations, thus, if the user of the applications does not require consistent data values, a data abstractor should be implemented to increase the beneficial effects of eventually consistent storage offerings.
296
A survey of security issues for cloud computing
TL;DR: A survey of security issues in terms of security threats and their remediations is presented and a parametric comparison of the threats being faced by cloud platforms is performed.
231
IoT Design Patterns: Computational Constructs to Design, Build and Engineer Edge Applications
Soheil Qanbari,Samim Pezeshki,Rozita Raisi,Samira Mahdizadeh,Rabee Rahimzadeh,Negar Behinaein,Fada Mahmoudi,Shiva Ayoubzadeh,Parham Fazlali,Keyvan Roshani,Azalia Yaghini,Mozhdeh Amiri,Ashkan Farivarmoheb,Arash Zamani,Schahram Dustdar +14 more
- 04 Apr 2016
TL;DR: A wide range of design disciplines involved in creating IoT systems are identified, that act as a seamless interface for collaborating heterogeneous things, and suitable to be implemented on resource-constrained devices.
77
Security in Data Intensive Computing Systems
Eduardo B. Fernandez
- 01 Jan 2011
TL;DR: The security implications of data intensive applications in the new environments is surveyed, considering just clouds.
24
Secure Development of Big Data Ecosystems
TL;DR: A methodological approach for integrating security and privacy in Big Data development based on main standards and common practices is proposed and a development process for this kind of ecosystems is defined that considers not only security in all the phases of the process but also the inherent characteristics of Big Data.
References
Hey, you, get off of my cloud: exploring information leakage in third-party compute clouds
Thomas Ristenpart,Eran Tromer,Hovav Shacham,Stefan Savage +3 more
- 09 Nov 2009
TL;DR: It is shown that it is possible to map the internal cloud infrastructure, identify where a particular target VM is likely to reside, and then instantiate new VMs until one is placed co-resident with the target, and how such placement can then be used to mount cross-VM side-channel attacks to extract information from a target VM on the same machine.
Cloud Computing Research and Development Trend
Shuai Zhang,Shufen Zhang,Xuebin Chen,Xiuzhen Huo +3 more
- 22 Jan 2010
TL;DR: Cloud computing is a computing style that provide power referenced with IT as a service that users can enjoy even he knows nothing about the technology of cloud computing and the professional knowledge in this field and the power to control it.
513
•Proceedings Article
When virtual is harder than real: security challenges in virtual machine based computing environments
Tal Garfinkel,Mendel Rosenblum +1 more
- 12 Jun 2005
TL;DR: A variety of security problems virtual computing environments give rise to are examined and potential directions for changing security architectures to adapt to these demands are discussed.
332
Covert and Side Channels Due to Processor Architecture
Zhenghong Wang,Ruby B. Lee +1 more
- 11 Dec 2006
TL;DR: The RPCache can thwart most cache-based software side channel attacks, with minimal hardware costs and negligible performance impact.
Managing security of virtual machine images in a cloud environment
Jinpeng Wei,Xiaolan Zhang,Glenn Ammons,Vasanth Bala,Peng Ning +4 more
- 13 Nov 2009
TL;DR: An image management system is proposed that controls access to images, tracks the provenance of images, and provides users and administrators with efficient image filters and scanners that detect and repair security violations.
Related Papers (5)
Countermeasures Hamza Ahmed
- 01 Jan 2014
Parnian Najafi Borazjani
- 11 May 2017
Mehul Nanda,Aakarsh Tyagi,Karan Saxena,Neeru Chauhan +3 more
- 01 Jan 2016