Anti‐virus in‐the‐cloud service: are we ready for the security evolution?

Yan, Wei; Ansari, Nirwan

doi:10.1002/sec.352

Cited by 8 publications

(5 citation statements)

References 8 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Numerous researchers have proposed risk assessment methods in the cloud computing environment. Some of these studies focused on specific security problems, such as insider attacks, virtualization threats [], data transmission with cloud computing service‐level agreement , anti‐virus in the cloud service , denial of service attacks in cloud , and identity management . In addition, frameworks, which are used to assess security risks in cloud computing environments as a whole process, have also been proposed.…”

Section: Security Risk Assessment In Cloud Computingmentioning

confidence: 99%

Security risk assessment framework for cloud computing environments

Albakri

Shanmugam

Samy

et al. 2014

Security Comm Networks

View full text Add to dashboard Cite

Cloud computing has become today's most common technology buzzword. Despite the promises of cloud computing to decrease computing implementation costs and deliver computing as a service, which allows clients to pay only for what they need and use, cloud computing also raises many security concerns. Most popular risk assessment standards, such as ISO27005, NIST SP800‐30, and AS/NZS 4360, assume that an organization's assets are fully managed by the organization itself and that all security management processes are imposed by the organization. These assumptions, however, do not apply to cloud computing environments. Hence, this paper proposes a security risk assessment framework that can enable cloud service providers to assess security risks in the cloud computing environment and allow cloud clients to contribute in risk assessment. The proposed framework provides a more realistic and accurate risk assessment outcome by considering the cloud clients' evaluation of security risk factors and avoiding the complexity that can result from the involvement of clients in whole risk assessment process. Copyright © 2014 John Wiley & Sons, Ltd.

show abstract

Section: Security Risk Assessment In Cloud Computingmentioning

confidence: 99%

Security risk assessment framework for cloud computing environments

Albakri

Shanmugam

Samy

et al. 2014

Security Comm Networks

View full text Add to dashboard Cite

show abstract

“…According to the anti-virus operation policy, it is possible to check whether the anti-virus software is operating normally. Further, security auditing enables an update history review of the anti-virus engine and signature [6].…”

Section: ) Anti-virus Security Functionmentioning

confidence: 99%

Empirical Study on Anti-Virus Architecture for Container Platforms

et al. 2020

View full text Add to dashboard Cite

Container platforms provide many functions for diverse applications and are used to build and operate various information services. They have been extended not only to Linux and Unix-based servers but also to Windows and macOS-based desktops and laptops. Many systems use anti-virus software to minimize damage caused by malware. Most anti-virus software provide real-time malware detection functions and block the execution of malware by enforcing access denial functions for malware that cannot be deleted or for original files that cannot be restored. However, current anti-virus technologies are not designed for container platforms. Therefore, they cannot detect malware in containers in real time; nor can they block malware execution or user access to malware owing to the isolation feature provided by container platforms. To resolve these issues, we propose a functionally-isolated anti-virus architecture for container platforms. The proposed anti-virus architecture separates the functions of a legacy anti-virus engine to ensure compatibility with the isolation features of a container platform. By implementation, it was confirmed that the proposed anti-virus architecture can detect in real-time the entry of malware in a container platform and block the execution of, and user access to unrecoverable malware-infected files. The performance of the proposed functionally-isolated anti-virus architecture is similar to that of legacy anti-virus technology and was verified to be sufficiently effective.

show abstract

“…The growth in complexity of pervasive software-intensive systems goes along the increased concern in the security of such systems, especially for mobile applications. Several recent proposals for testing in the cloud include approaches to virtualize, simulate and discover network attacks, protocols vulnerability and other security concerns [135], [147], [161], [66], [98].…”

Section: Testing In the Cloudmentioning

confidence: 99%

“…In turn, test case specification and generation [29], and the definition of the most appropriate configurations to be tested [156], [140], [39], are still crucial questions in the cloud context. Some authors target the issues related to frameworks for parallel tests execution [116], problems on effective and efficient allocation of the available resources [30], [52], [92], [42], specific testing aspects such as security [161], [66] or Android devices and applications [99].…”

Section: A Systematic Review On Cloud Testing 1:17mentioning

confidence: 99%

A Systematic Review on Cloud Testing

et al. 2019

View full text Add to dashboard Cite

A systematic literature review is presented that surveyed the topic of cloud testing over the period 2012--2017. Cloud testing can refer either to testing cloud-based systems (testing of the cloud) or to leveraging the cloud for testing purposes (testing in the cloud): both approaches (and their combination into testing of the cloud in the cloud) have drawn research interest. An extensive paper search was conducted by both automated query of popular digital libraries and snowballing, which resulted in the final selection of 147 primary studies. Along the survey, a framework has been incrementally derived that classifies cloud testing research among six main areas and their topics. The article includes a detailed analysis of the selected primary studies to identify trends and gaps, as well as an extensive report of the state-of-the-art as it emerges by answering the identified Research Questions. We find that cloud testing is an active research field, although not all topics have received enough attention and conclude by presenting the most relevant open research challenges for each area of the classification framework.

show abstract

Anti‐virus in‐the‐cloud service: are we ready for the security evolution?

Cited by 8 publications

References 8 publications

Security risk assessment framework for cloud computing environments

Security risk assessment framework for cloud computing environments

Empirical Study on Anti-Virus Architecture for Container Platforms

A Systematic Review on Cloud Testing

Contact Info

Product

Resources

About