Cloudstrike: Chaos Engineering for Security and Resiliency in Cloud Infrastructure

Torkura, Kennedy A.

doi:10.36227/techrxiv.12456299.v1

Cited by 1 publication

(3 citation statements)

References 18 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…To provide a concrete illustration of the contemporary cloud security issues, we present a realistic running example based on the Capital One data breach [36,40]. We used this running example for a related article [55] and we have decided to reuse it here since the topics are interrelated. The running example depicts the cyber-attacks against Capital One's AWS infrastructure between April -July 2019.…”

Section: Running Example -The Capital One Data Breachmentioning

confidence: 99%

“…• Security Chaos Engineering (SCE) [53,55] techniques are employed to validate that the changes do not introduce vulnerabilities to the cloud infrastructure. This could be done either in the development or production environment.…”

Section: Change Control Managementmentioning

confidence: 99%

“…These is achieved by causing random actions including creation, deletion and modification of re-sources in the cloud test-bed. The fault injection is implemented with CloudStrike, a tool we designed based on the principles of chaos engineering [53,55]. CloudStrike employs three chaos modes: LOW,MEDIUM and HIGH, corresponding to random alterations in magnitudes of 30 %, 60 % and 90 % respectively, for these experiments, we used the MEDIUM chaos mode.…”

Section: Performance Evaluation -Aws Environmentmentioning

confidence: 99%

See 2 more Smart Citations

Continuous auditing and threat detection in multi-cloud infrastructure

Torkura

Sukmana

Cheng

et al. 2021

Computers & Security

View full text Add to dashboard Cite

Efficient change control and configuration management is imperative for addressing the emerging security threats in cloud infrastructure. These threats majorly exploit misconfiguration vulnerabilities e.g. excessive permissions, disabled logging features and publicly accessible cloud storage buckets. Traditional security tools and mechanisms are unable to effectively and continuously track changes in cloud infrastructure owing to transience and unpredictability of cloud events. Therefore, novel tools that are proactive, agile and continuous are imperative. This paper proposes CSBAuditor, a novel cloud security system that continuously monitors cloud infrastructure, to detect malicious activities and unauthorized changes. CSBAuditor leverages two concepts: state transition analysis and reconciler pattern to overcome the aforementioned security issues. Furthermore, security metrics are used to compute severity scores for detected vulnerabilities using a novel scoring system: Cloud Security Scoring System. CSBAuditor has been evaluated using various strategies including security chaos engineering fault injection strategies on Amazon Web Services (AWS) and Google Cloud Platform (GCP). CSBAuditor effectively detects misconfigurations in real-time with a detection rate of over 98%. Also, the performance overhead is within acceptable limits.

show abstract

Section: Running Example -The Capital One Data Breachmentioning

confidence: 99%

Section: Change Control Managementmentioning

confidence: 99%

Section: Performance Evaluation -Aws Environmentmentioning

confidence: 99%

See 1 more Smart Citation