An Approach for the Automated Analysis of Network Access Controls in Cloud Computing Infrastructures

被引:0
|
作者
Probst, Thibaut [1 ]
Alata, Eric [1 ]
Kaaniche, Mohamed [1 ]
Nicomette, Vincent [1 ]
机构
[1] CNRS, LAAS, F-31400 Toulouse, France
来源
NETWORK AND SYSTEM SECURITY | 2014年 / 8792卷
关键词
security; accessibility analysis; cloud computing; firewall; network;
D O I
暂无
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
This paper describes an approach for automated security analysis of network access controls in operational Infrastructure as a Service (IaaS) cloud computing environments. Our objective is to provide automated and experimental methods to analyze firewall access control mechanisms aiming at protecting cloud architectures. In order to determine the accessibilities in virtual infrastructure networks and detect unforeseen misconfigurations, we present an approach combining static and dynamic analyses, along with the analysis of discrepancies in the compared results. Our approach is sustained by experiments carried out on a VMware-based cloud platform.
引用
收藏
页码:1 / 14
页数:14
相关论文
共 50 条
  • [1] An Approach to a Cloud Computing Network
    Aymerich, Francesco Maria
    Fenu, Gianni
    Surcis, Simone
    [J]. 2008 FIRST INTERNATIONAL CONFERENCE ON THE APPLICATIONS OF DIGITAL INFORMATION AND WEB TECHNOLOGIES, VOLS 1 AND 2, 2008, : 120 - +
  • [2] Performance of Network Virtualization in Cloud Computing Infrastructures: The OpenStack Case
    Callegati, Franco
    Cerroni, Walter
    Contoli, Chiara
    Santandrea, Giuliano
    [J]. 2014 IEEE 3RD INTERNATIONAL CONFERENCE ON CLOUD NETWORKING (CLOUDNET), 2014, : 132 - 137
  • [3] Comparative analysis of architectures for monitoring cloud computing infrastructures
    Calero, Jose M. Alcaraz
    Gutierrez Aguado, Juan
    [J]. FUTURE GENERATION COMPUTER SYSTEMS-THE INTERNATIONAL JOURNAL OF ESCIENCE, 2015, 47 : 16 - 30
  • [4] Cloud Computing Based Radio Access Network
    [J]. China Communications, 2015, (11) : 4 - 5
  • [5] Cloud Computing Based Radio Access Network
    Peng Mugen
    Lau, Vincent
    Yu Wei
    Wang Chonggang
    [J]. CHINA COMMUNICATIONS, 2015, 12 (11) : III - IV
  • [6] Automated Simulation of Gas-Phase Reactions on Distributed and Cloud Computing Infrastructures
    Rampino, Sergio
    Storchi, Loriano
    Lagana, Antonio
    [J]. COMPUTATIONAL SCIENCE AND ITS APPLICATIONS - ICCSA 2017, PT III, 2017, 10406 : 60 - 73
  • [7] Cloud Computing and Network Analysis
    de la Torre, Cesar
    Carlos Polo, Juan
    [J]. INFORMATION SYSTEMS ARCHITECTURE AND TECHNOLOGY, ISAT 2018, PT I, 2019, 852 : 190 - 198
  • [8] A complex network approach to cloud computing
    Travieso, Gonzalo
    Ruggiero, Carlos Antonio
    Bruno, Odemir Martinez
    Costa, Luciano da Fontoura
    [J]. JOURNAL OF STATISTICAL MECHANICS-THEORY AND EXPERIMENT, 2016,
  • [9] Malware Detection in Cloud Computing Infrastructures
    Watson, Michael R.
    Shirazi, Noor-ul-Hassan
    Marnerides, Angelos K.
    Mauthe, Andreas
    Hutchison, David
    [J]. IEEE TRANSACTIONS ON DEPENDABLE AND SECURE COMPUTING, 2016, 13 (02) : 192 - 205
  • [10] Toward Antifragile Cloud Computing Infrastructures
    Abid, Amal
    Khemakhem, Mouna Torjmen
    Marzouk, Soumaya
    Ben Jemaa, Maher
    Monteil, Thierry
    Drira, Khalil
    [J]. 5TH INTERNATIONAL CONFERENCE ON AMBIENT SYSTEMS, NETWORKS AND TECHNOLOGIES (ANT-2014), THE 4TH INTERNATIONAL CONFERENCE ON SUSTAINABLE ENERGY INFORMATION TECHNOLOGY (SEIT-2014), 2014, 32 : 850 - 855
12345