TY - GEN
T1 - Multi-cloud applications security monitoring
AU - Carvallo, Pamela
AU - Cavalli, Ana R.
AU - Mallouli, Wissam
AU - Rios, Erkuden
N1 - Publisher Copyright:
© Springer International Publishing AG 2017.
PY - 2017
Y1 - 2017
N2 - The issue of data security and privacy in multi-cloud based environments requires different solutions for implementing and enforcing security policies. In these environments, many security aspects must be faced, such as security-by-design, risk management, data privacy and isolation, and vulnerability scans. Moreover, it also becomes necessary to have a system that interrelates and operates all security controls which are configured and executed independently on each component of the application (service) being secured and monitored. In addition, thanks to the large diffusion of cloud computing systems, new attacks are emerging, so threat detection systems play a key role in the security schemes, identifying possible attacks. These systems handle an enormous volume of information as they detect unknown malicious activities by monitoring different events from different points of observation, as well as adapting to new attack strategies and considering techniques to detect malicious behaviors and react accordingly. To target this issue, we propose in the context of the MUSA EU Horizon 2020 project [1], a security assurance platform that allows monitoring the multi-cloud application deployed in different Cloud Server Providers (CSPs). It detects potential deviations from security Server Level Agreements (A formal, negotiated document that defines in quantitative and qualitative terms the service being offered to a Cloud Service Client (CSC). For more information see [8, 17].) (SLAs) and triggers countermeasures to enforce security during application runtime.
AB - The issue of data security and privacy in multi-cloud based environments requires different solutions for implementing and enforcing security policies. In these environments, many security aspects must be faced, such as security-by-design, risk management, data privacy and isolation, and vulnerability scans. Moreover, it also becomes necessary to have a system that interrelates and operates all security controls which are configured and executed independently on each component of the application (service) being secured and monitored. In addition, thanks to the large diffusion of cloud computing systems, new attacks are emerging, so threat detection systems play a key role in the security schemes, identifying possible attacks. These systems handle an enormous volume of information as they detect unknown malicious activities by monitoring different events from different points of observation, as well as adapting to new attack strategies and considering techniques to detect malicious behaviors and react accordingly. To target this issue, we propose in the context of the MUSA EU Horizon 2020 project [1], a security assurance platform that allows monitoring the multi-cloud application deployed in different Cloud Server Providers (CSPs). It detects potential deviations from security Server Level Agreements (A formal, negotiated document that defines in quantitative and qualitative terms the service being offered to a Cloud Service Client (CSC). For more information see [8, 17].) (SLAs) and triggers countermeasures to enforce security during application runtime.
KW - Cloud computing
KW - Detection
KW - Security monitoring
KW - Service level agreement
UR - http://www.scopus.com/inward/record.url?scp=85019176947&partnerID=8YFLogxK
U2 - 10.1007/978-3-319-57186-7_54
DO - 10.1007/978-3-319-57186-7_54
M3 - Conference contribution
AN - SCOPUS:85019176947
SN - 9783319571850
T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
SP - 748
EP - 758
BT - Green, Pervasive, and Cloud Computing - 12th International Conference, GPC 2017, Proceedings
A2 - Au, Man Ho Allen
A2 - Choo, Kim-Kwang Raymond
A2 - Li, Kuan-Ching
A2 - Castiglione, Arcangelo
A2 - Palmieri, Francesco
PB - Springer Verlag
T2 - 12th International Conference on Green, Pervasive and Cloud Computing, GPC 2017
Y2 - 11 May 2017 through 14 May 2017
ER -