Daniel Ladouceur, Bimmy Pujari, Edward Gleeck, Joel Coffman
{"title":"云环境中相互审核的技术","authors":"Daniel Ladouceur, Bimmy Pujari, Edward Gleeck, Joel Coffman","doi":"10.1145/3368235.3368875","DOIUrl":null,"url":null,"abstract":"Mutual auditability offers visibility between a cloud service provider (CSP) and cloud service customer (CSC), informing both of the risks posed by their association with the other. In this work, we develop and experiment with two systems designed to enable such auditability: a specialized network-based intrusion detection system (NIDS) implementation, traditional-based intrusion system (TBIS), that gives CSPs insight into the malicious activity by clients' virtual machines (VMs) without undermining the CSC's privacy, and a complementary system, hypervisor-based intrusion system (HBIS), that provides visibility into malicious activities of co-resident CSCs by detecting side channel attacks. In order to ensure that our design does not introduce new vulnerabilities into the cloud environment, we examine the potential of using these auditing tools as attack vectors themselves and potential mitigations if such vulnerabilities are found.","PeriodicalId":166357,"journal":{"name":"Proceedings of the 12th IEEE/ACM International Conference on Utility and Cloud Computing Companion","volume":"53 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2019-12-02","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Techniques for Mutual Auditability in a Cloud Environment\",\"authors\":\"Daniel Ladouceur, Bimmy Pujari, Edward Gleeck, Joel Coffman\",\"doi\":\"10.1145/3368235.3368875\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Mutual auditability offers visibility between a cloud service provider (CSP) and cloud service customer (CSC), informing both of the risks posed by their association with the other. In this work, we develop and experiment with two systems designed to enable such auditability: a specialized network-based intrusion detection system (NIDS) implementation, traditional-based intrusion system (TBIS), that gives CSPs insight into the malicious activity by clients' virtual machines (VMs) without undermining the CSC's privacy, and a complementary system, hypervisor-based intrusion system (HBIS), that provides visibility into malicious activities of co-resident CSCs by detecting side channel attacks. In order to ensure that our design does not introduce new vulnerabilities into the cloud environment, we examine the potential of using these auditing tools as attack vectors themselves and potential mitigations if such vulnerabilities are found.\",\"PeriodicalId\":166357,\"journal\":{\"name\":\"Proceedings of the 12th IEEE/ACM International Conference on Utility and Cloud Computing Companion\",\"volume\":\"53 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2019-12-02\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Proceedings of the 12th IEEE/ACM International Conference on Utility and Cloud Computing Companion\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1145/3368235.3368875\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 12th IEEE/ACM International Conference on Utility and Cloud Computing Companion","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3368235.3368875","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Techniques for Mutual Auditability in a Cloud Environment
Mutual auditability offers visibility between a cloud service provider (CSP) and cloud service customer (CSC), informing both of the risks posed by their association with the other. In this work, we develop and experiment with two systems designed to enable such auditability: a specialized network-based intrusion detection system (NIDS) implementation, traditional-based intrusion system (TBIS), that gives CSPs insight into the malicious activity by clients' virtual machines (VMs) without undermining the CSC's privacy, and a complementary system, hypervisor-based intrusion system (HBIS), that provides visibility into malicious activities of co-resident CSCs by detecting side channel attacks. In order to ensure that our design does not introduce new vulnerabilities into the cloud environment, we examine the potential of using these auditing tools as attack vectors themselves and potential mitigations if such vulnerabilities are found.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
