To cite this version:Damien Riquet, Gilles Grimaud, Michaël Hauspie. Large-scale coordinated attacks : Impact on the cloud security. Abstract-Cloud Computing has emerged as a model to process large volumetric data. Though Cloud Computing is very popular, cloud security could delay its adoption. Security of the cloud must provide data confidentiality and protection of resources. Such architecture seems to be vulnerable when confronted to distributed attacks also known as large-scale coordinated attacks.In this paper, we study the impact of large-scale coordinated attacks on Cloud Computing and its current security solutions.We experiment the open-source IDS Snort and a commercialized firewall using distributed portscan. Our results show that these security solutions are not designed to detect distributed attacks. Indeed, an attacker who controls about 32 hosts can easily achieve a distributed portscan without being detected.
Abstract-Nowadays, cloud computing becomes quite popular and a lot of research is done on services it provides. Most of security challenges induced by this new architecture are not yet tackled. In this work, we propose a new security architecture, based on a massively distributed network of security solutions, to address these challenges. Current solutions, like IDS or firewalls, were not formerly designed to detect attacks that draw profit from the cloud structure. Our solution DISCUS is based on a distributed architecture using both physical and virtual probes, along with former security solutions (IDS and firewalls). This paper describes DISCUS SCRIPT, a dedicated language that provides an easy way to configure the components of our solution.
<p>With a global paradigm shift from post-disaster response aid to anticipatory action, the question on how anticipatory action relates to long-term climate adaptation and often government-led actions towards permanent disaster prevention becomes more relevant. With rising disaster risk, a framework that decision-makers can use to select between preventive and preparedness risk reduction efforts would be most useful. A model originally developed to compare permanent interventions to forecast-based action for floods was applied to wind-induced building damage due to tropical cyclones, focusing on a case study from the Philippines. We made use of a typhoon forecasting model based on the ensemble forecast from EMCWF, and modeled the wind footprint to estimate the wind speed in the case study area. A threshold was defined, similar to how it is done in actual operations by the Philippine Red Cross. If the forecasted typhoon exceeds a pre-set threshold in terms of wind speed, action to strengthen light-weight wooden houses with a Shelter Strengthening Kit (SSK) is taken. SSKs temporarily make these houses more resistant to withstand extreme winds, thereby reducing the impacts. This short term action is compared to a scenario in which lightweight wooden houses are permanently upgraded. Results give actors in humanitarian response, anticipatory action as well as permanent disaster prevention insight into which variables affect this balance. and help policymakers to allocate their scarce budgets in a cost-effective way. The framework, although developed for the Philippines, can also be replicated in other cyclone-prone countries.&#160;</p>
scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.
hi@scite.ai
10624 S. Eastern Ave., Ste. A-614
Henderson, NV 89052, USA
Copyright © 2024 scite LLC. All rights reserved.
Made with 💙 for researchers
Part of the Research Solutions Family.