Handling Compromised Components in an IaaS Cloud Installation

Abstract

This paper presents an approach to handle compromised components in the OpenStack Infrastructure-as-a-Service cloud environment. We present two specific use cases; a compromised service process and the introduction of a bogus component, and we describe several approaches for containment, eradication and recovery after an incident. Our experiments show that traditional incident handling procedures are applicable for cloud computing, but need some modification to function optimally.

Language

English

Author(s)

Aryan Taheri Monfared
Martin Gilje Jaatun

Affiliation

Uninett AS
SINTEF Digital / Software Engineering, Safety and Security

Year

2012

Published in

The Journal of Cloud Computing: Advances, Systems and Applications (JoCCASA)

ISSN

2192-113X

Publisher

Springer

Volume

External resources

https://www.journalofcloudcomputing.com/content/1/1/16/abstract
https://www.journalofcloudcomputing.com/content/pdf/2192-113x-1-16.pdf

DOI

https://doi.org/10.1186/2192-113x-1-16

View this publication at Cristin

Contact us

Our services

Career

Sustainability

Management and board

Institutes

Other units

About us

Follow us