A Framework for the Attack Tolerance of Cloud Applications Based on Web Services

Ouffoué, Georges; Zaïdi, Fatiha; Cavalli, Ana R.; Nguyễn, Hữu Nghĩa

doi:10.3390/electronics10010006

Cited by 5 publications

(3 citation statements)

References 42 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Data duplication is the process of eliminating multiple copies of repeated data 30,32 By making sure the duplication takes place when the correct amount of file copies is required, this assault is lessened. Application‐based attacks : The application running in the cloud may experience a number of attacks that degrade its functionality and result in the disclosure of information for nefarious intentions. Malware infusion and stenography attacks, shared designs, online services, and convention‐based attacks are the three main applications‐based threats 57 …”

Section: Threats In Cloud Computingmentioning

confidence: 99%

Data security techniques in cloud computing based on machine learning algorithms and cryptographic algorithms: Lightweight algorithms and genetics algorithms

Thabit

Can

Wani

et al. 2023

Concurrency and Computation

View full text Add to dashboard Cite

SummaryCloud computing (CC) refers to the on‐demand availability of network resources, particularly data storage and processing power, without requiring special or direct administration by users. CC, which just made its debut as a collection of public and private data centers, provides clients with a unified platform throughout the Internet. Cloud computing has revolutionized the world, opening up new horizons with bright potential due to its performance, accessibility, low cost, and many other benefits. Due to the exponential rise of cloud computing, systems based on cloud computing now require an effective data security mechanism. Comprehensive security policies, corporate security culture, and cloud security solutions are used to ensure the level of cloud data security. Many techniques exist to protect data communication in the cloud environment, including encryption. Encryption algorithms play an important role in information security systems and various cloud computing‐based systems. Current researchers have focused on lightweight cryptography, genetics‐based cryptography, and machine learning (ML) algorithms for security in CC. This review study analyses CC security threats, problems, and solutions that use one or more algorithms. The work discusses several lightweight cryptographies, genetics‐based cryptography and different ML algorithms that are used to overcome cloud security issues, including supervised, unsupervised, semi‐supervised, and reinforcement learning. Moreover, we enlist future research directions to secure CC models.

show abstract

Section: Threats In Cloud Computingmentioning

confidence: 99%

Data security techniques in cloud computing based on machine learning algorithms and cryptographic algorithms: Lightweight algorithms and genetics algorithms

Thabit

Can

Wani

et al. 2023

Concurrency and Computation

View full text Add to dashboard Cite

show abstract

“…Literatürdeki çalışmaların çoğu belirli bir saldırı tipine yönelik yapılmış olup, web hizmetlerinin saldırı toleransları açıkça ortaya konmamıştır. Çalışmada [3] çeşitlendirme ve yansıtma tekniklerine dayalı, risk analizi de içeren bir saldırı tolerans çerçevesi sunulmuştur. Uygulama güvenliği kapsamında yapılan bir diğer çalışmada [4] ise uygulama tasarımı aşamasında kullanılmak üzere, bulut güvenlik metriklerini de içerecek şekilde çalışabilen bir risk değerlendirme çerçevesi sunulmuştur.…”

Section: Uygulama Güvenliği (Application Security)unclassified

A Review on Challenges in Cloud Computing Security and Recent Researchs

GÜLBURUN

Dener

2022

Bilişim Teknolojileri Dergisi

View full text Add to dashboard Cite

Bulut bilişim sistemleri, kişi ve organizasyonlar tarafından ihtiyaç duyulan farklı seviye ve nitelikteki bilg i sistemleri kaynaklarının, talebe bağlı olarak istenilen zaman ve miktarda ihtiyaç sahibine sunulabildiği, çoğunlukla internet üzerinden erişilebilir kılınan, özellikle değişken iş yüklerine sahip organizasyonların ihtiyaçlarına en iyi şekilde cevap verebilen sistemlerdir. Bulut bilişim sistemlerinin kullanımının artmasına paralel olarak hem bulut biliş im platformlarına hem de bu platformlardan servis alan organizasyonlara yönelik saldırılar artış göstermiştir. Çalışmad a, öncelikle, farklı kuruluşlar tarafından hazırlanan bulut bilişim güvenlik raporları incelenerek, bulut bilişim kapsamında karşılaşılan temel tehditler ortaya konmuştur. Daha sonra Web of Science veri tabanı temel alınarak bulut biliş im güvenliği kapsamında yapılan güncel çalışmalar incelenmiştir.

show abstract

“…Other diversity solutions may work also in a detection-reaction manner. For example, Ouffoué et al [110,178] use diversification to create attack tolerant web services. They modeled the services to extract different implementations using variation in style, encoding, and language.…”

mentioning

confidence: 99%

Cyber-Resilience Evaluation of Cyber-Physical Systems

Segovia

Rubio‐Hernan

Cavalli

et al. 2020

2020 IEEE 19th International Symposium on Network Computing and Applications (NCA)

View full text Add to dashboard Cite

Concerns for the resilience of Cyber-Physical Systems (CPS) in critical infrastructure are growing. CPS integrate sensing, computation, control and networking into physical objects and mission-critical services, connecting traditional infrastructure to internet technologies.While this integration increases service efficiency, it has to face the possibility of new threats posed by the new functionalities. This leads to cyber-threats, such as denial-of-service, modification of data, information leakage, spreading of malware, and many others.Cyber-resilience refers to the ability of a CPS to prepare, absorb, recover, and adapt to the adverse effects associated with cyber-threats, e.g., physical degradation of the CPS performance resulting from a cyber-attack. Cyber-resilience aims at ensuring CPS survival, by keeping the core functionalities of the CPS in case of extreme events. The literature on cyber-resilience is rapidly increasing, leading to a broad variety of research works addressing this new topic. In this article, we create a systematization of knowledge about existing scientific efforts of making CPS cyber-resilient. We systematically survey recent literature addressing cyber-resilience with a focus on techniques that may be used on CPS. We first provide preliminaries and background on CPS and threats, and subsequently survey state-of-the-art approaches that have been proposed by recent research work applicable to CPS. In particular, we aim at differentiating research work from traditional risk management approaches, based on the general acceptance that it is unfeasible to prevent and mitigate all possible risks threatening a CPS. We also discuss questions and research challenges, with a focus on the practical aspects of cyber-resilience, such as the use of metrics and evaluation methods, as well as testing and validation environments.

show abstract

A Framework for the Attack Tolerance of Cloud Applications Based on Web Services

Cited by 5 publications

References 42 publications

Data security techniques in cloud computing based on machine learning algorithms and cryptographic algorithms: Lightweight algorithms and genetics algorithms

Data security techniques in cloud computing based on machine learning algorithms and cryptographic algorithms: Lightweight algorithms and genetics algorithms

A Review on Challenges in Cloud Computing Security and Recent Researchs

Cyber-Resilience Evaluation of Cyber-Physical Systems

Contact Info

Product

Resources

About