Analysis of cloud computing attacks and countermeasures
Source of Publication
International Conference on Advanced Communication Technology, ICACT
© 2016 Global IT Research Institute (GiRI). Business enterprises are competing to get their applications up and running faster with improved manageability and less maintenance by reassigning the ability to IT specialists to adjust resources in order to meet business fluctuating needs. This can be achieved through utilizing the Cloud Computing Model which is distinguished by 'pay as you go' model. The model offers solutions of storage, convenient and on-demand access to a shared pool of configurable computing resources. As with any novel technology, Cloud Computing is subject to security threats and vulnerabilities including network threats, information threats and underlying infrastructure threats. In this paper, we present a framework by which penetration testing is conducted to highlight possible vulnerabilities within our private Cloud Computing infrastructure, simulate attacks to exploit discovered vulnerabilities such as Denial of Service (DoS) and Man-in-the-Cloud attacks, apply countermeasures to prevent such attacks, and then to exemplify a recommended best practice protection mechanism which will contribute to the Cloud Computing security.
Institute of Electrical and Electronics Engineers (IEEE)
Cloud Computing, DDOS, Man in the Cloud, OpenStack
Jabir, Raja Mohamed; Khanji, Salam Ismail Rasheed; Ahmad, Liza Abdallah; Alfandi, Omar; and Said, Huwida, "Analysis of cloud computing attacks and countermeasures" (2016). All Works. 490.
Indexed in Scopus