Analysis of cloud computing attacks and countermeasures

Document Type

Conference Proceeding

Source of Publication

International Conference on Advanced Communication Technology, ICACT

Publication Date

3-1-2016

Abstract

© 2016 Global IT Research Institute (GiRI). Business enterprises are competing to get their applications up and running faster with improved manageability and less maintenance by reassigning the ability to IT specialists to adjust resources in order to meet business fluctuating needs. This can be achieved through utilizing the Cloud Computing Model which is distinguished by 'pay as you go' model. The model offers solutions of storage, convenient and on-demand access to a shared pool of configurable computing resources. As with any novel technology, Cloud Computing is subject to security threats and vulnerabilities including network threats, information threats and underlying infrastructure threats. In this paper, we present a framework by which penetration testing is conducted to highlight possible vulnerabilities within our private Cloud Computing infrastructure, simulate attacks to exploit discovered vulnerabilities such as Denial of Service (DoS) and Man-in-the-Cloud attacks, apply countermeasures to prevent such attacks, and then to exemplify a recommended best practice protection mechanism which will contribute to the Cloud Computing security.

ISBN

9788996865063

ISSN

1738-9445

Publisher

Institute of Electrical and Electronics Engineers (IEEE)

Volume

2016-March

First Page

117

Last Page

123

Disciplines

Computer Sciences

Keywords

Cloud Computing, DDOS, Man in the Cloud, OpenStack

Scopus ID

84962856946

Indexed in Scopus

yes

Open Access

no

Link to Full Text

Share

COinS