Cloud Security Auditing: Challenges and Emerging Approaches

Ryoo, Jungwoo; Rizvi, Syed S.; Aiken, William; Kissell, John

doi:10.1109/msp.2013.132

Cited by 55 publications

(15 citation statements)

References 3 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In Attribute Based Encryption (ABE) system, a user's keys and cipher texts are used for encryption and a particular key can decrypt a particular cipher text. This is done when match between the attributes of the cipher text and the user's key [28,29].…”

Section: Attribute Based Encryption (Abe)mentioning

confidence: 99%

An Invincible Rudimentary Architecture for Data Security in Cloud Environment Using Multi Cloud

Velmurugan*¹,

Winster²

2019

IJITEE

View full text Add to dashboard Cite

Cloud is a distributed access of shared pool of resources that can provide the efficient service on demand basics to cloud user by the service providers. The important functions of cloud computing are storage and computation. The cloud user can use the cloud functions without any computing resources. Because of the popularity of cloud computing, providing security to the stored data is a major concern. In the literature, there are various works which have been proposed to provide the efficient security to the stored data in cloud environment. This paper provides the details of need of security in cloud environment, various categories of security threats, mechanisms, cloud architecture, multi-cloud and various security algorithms in detailed manner. The main attention of this paper is to point out the works on security in cloud computing, show the proposed architecute of multi cloud instead of single cloud and the way for the future work for the efficient design of cloud secure service system.

show abstract

Section: Attribute Based Encryption (Abe)mentioning

confidence: 99%

An Invincible Rudimentary Architecture for Data Security in Cloud Environment Using Multi Cloud

Velmurugan*¹,

Winster²

2019

IJITEE

View full text Add to dashboard Cite

show abstract

“…Finally, data on the intrusion model will allow for the formulation of relevant rules for conducting an audit of network security [6]. Moreover, these rules will be updated as data is updated from the honeypot servers.…”

Section: Introductionmentioning

confidence: 99%

Trap method in ensuring data security

Shkirdov

Sagatov

Dmitrenko³

2019

Proceedings of the v International Conference Information Technology and Nanotechnology 2019

View full text Add to dashboard Cite

This paper presents the results of data analysis from a geographically distributed honeypot network. Such honeypot servers were deployed in Samara, Rostov on Don, Crimea and the USA two years ago. Methods for processing statistics are discussed in detail for secure remote access SSH. Lists of attacking addresses are highlighted, and their geographical affiliation is determined. Rank distributions were used as the basis for statistical analysis. The intensity of requests to each of the 10 installed services was then calculated.

show abstract

“…Virtualization technology has been brought in to optimize utilization of resources for multi-tenant usage model. However, these fundamental properties of cloud computing make cloud-based attacks hard to prevent and crimes difficult to investigate [3]. Virtualization offers advantages and introduces new challenges to the field of digital forensics as well.…”

Section: Introductionmentioning

confidence: 99%

A Digital Forensic Framework for Cloud Based on VMI

Yang¹,

Ren²,

Bai³

et al. 2017

dtcse

View full text Add to dashboard Cite

Abstract. Traditional digital forensic methods become exceedingly feeble in cloud due to the fact that the basic infrastructure turns to virtualized environment. Leveraging properties of virtualization, virtual machine introspection has showed potential for cloud forensic. In this paper, we propose a novel framework, which contains a trustworthy independent agency, to provide memory digital forensic analysis (DFA) for virtual machines (VMs) in cloud. With the assistance of cloud platform, memory dump files can be obtained and transferred to the agency for further DFA, where information of VMs can be extracted using the proper tools. We described the constructional design of the framework. Test results showed the versatility of DFA and ability of malware detection. The framework indicates DFA can be purchased as a service only when there is a need in order to reduce the expenditures on maintaining exclusive facility and furnish standard procedure to multiple cloud platforms.

show abstract

Cloud Security Auditing: Challenges and Emerging Approaches

Cited by 55 publications

References 3 publications

An Invincible Rudimentary Architecture for Data Security in Cloud Environment Using Multi Cloud

An Invincible Rudimentary Architecture for Data Security in Cloud Environment Using Multi Cloud

Trap method in ensuring data security

A Digital Forensic Framework for Cloud Based on VMI

Contact Info

Product

Resources

About