CloudSafe: A Tool for an Automated Security Analysis for Cloud Computing

Seongmo An, Taehoon Eom, Jong Sou Park, Jin Hong, Armstrong Nhlabatsi, Noora Fetais, Khaled M.D. Khan, Dong Seong Kim

Research output: Chapter in Book/Conference paperConference paper

Abstract

Cloud computing has been adopted widely, providing on-demand computing resources to improve performance and reduce operational costs. However, these new functionalities also bring new ways to exploit the cloud computing environment. To assess the security of the cloud, graphical security models can be used, such as Attack Graphs and Attack Trees. However, existing models do not consider all types of threats, and also automating the security assessment functions are difficult. In this paper, we propose a new security assessment tool for the cloud named CloudSafe, an automated security assessment for the cloud. The CloudSafe tool collates various tools and frameworks to automate the security assessment process. To demonstrate the applicability of the CloudSafe, we conducted security assessment in Amazon AWS, where our experimental results showed that we can effectively gather security information of the cloud and carry out security assessment to produce security reports. Users and cloud service providers can use the security report generated by the CloudSafe to understand the security posture of the cloud being used/provided.
Original languageEnglish
Title of host publicationProceedings 2019 18th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/13th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE)
Place of PublicationUnited States
PublisherIEEE, Institute of Electrical and Electronics Engineers
Pages602-609
Number of pages8
ISBN (Electronic)978-1-7281-2777-4
ISBN (Print)978-1-7281-2778-1
DOIs
Publication statusPublished - 2019
Event18th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/13th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE 2019) - Rotorua, New Zealand
Duration: 5 Aug 20198 Aug 2019

Conference

Conference18th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/13th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE 2019)
Abbreviated titleTrustCom/BigDataSE 2019
CountryNew Zealand
CityRotorua
Period5/08/198/08/19

Fingerprint

Cloud computing
Costs

Cite this

An, S., Eom, T., Park, J. S., Hong, J., Nhlabatsi, A., Fetais, N., ... Kim, D. S. (2019). CloudSafe: A Tool for an Automated Security Analysis for Cloud Computing. In Proceedings 2019 18th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/13th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE) (pp. 602-609). United States: IEEE, Institute of Electrical and Electronics Engineers. https://doi.org/10.1109/TrustCom/BigDataSE.2019.00086
An, Seongmo ; Eom, Taehoon ; Park, Jong Sou ; Hong, Jin ; Nhlabatsi, Armstrong ; Fetais, Noora ; Khan, Khaled M.D. ; Kim, Dong Seong. / CloudSafe : A Tool for an Automated Security Analysis for Cloud Computing. Proceedings 2019 18th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/13th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE). United States : IEEE, Institute of Electrical and Electronics Engineers, 2019. pp. 602-609
@inproceedings{6b6576ce2c2b4fe2af416ab5c672df51,
title = "CloudSafe: A Tool for an Automated Security Analysis for Cloud Computing",
abstract = "Cloud computing has been adopted widely, providing on-demand computing resources to improve performance and reduce operational costs. However, these new functionalities also bring new ways to exploit the cloud computing environment. To assess the security of the cloud, graphical security models can be used, such as Attack Graphs and Attack Trees. However, existing models do not consider all types of threats, and also automating the security assessment functions are difficult. In this paper, we propose a new security assessment tool for the cloud named CloudSafe, an automated security assessment for the cloud. The CloudSafe tool collates various tools and frameworks to automate the security assessment process. To demonstrate the applicability of the CloudSafe, we conducted security assessment in Amazon AWS, where our experimental results showed that we can effectively gather security information of the cloud and carry out security assessment to produce security reports. Users and cloud service providers can use the security report generated by the CloudSafe to understand the security posture of the cloud being used/provided.",
author = "Seongmo An and Taehoon Eom and Park, {Jong Sou} and Jin Hong and Armstrong Nhlabatsi and Noora Fetais and Khan, {Khaled M.D.} and Kim, {Dong Seong}",
year = "2019",
doi = "10.1109/TrustCom/BigDataSE.2019.00086",
language = "English",
isbn = "978-1-7281-2778-1",
pages = "602--609",
booktitle = "Proceedings 2019 18th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/13th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE)",
publisher = "IEEE, Institute of Electrical and Electronics Engineers",
address = "United States",

}

An, S, Eom, T, Park, JS, Hong, J, Nhlabatsi, A, Fetais, N, Khan, KMD & Kim, DS 2019, CloudSafe: A Tool for an Automated Security Analysis for Cloud Computing. in Proceedings 2019 18th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/13th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE). IEEE, Institute of Electrical and Electronics Engineers, United States, pp. 602-609, 18th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/13th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE 2019), Rotorua, New Zealand, 5/08/19. https://doi.org/10.1109/TrustCom/BigDataSE.2019.00086

CloudSafe : A Tool for an Automated Security Analysis for Cloud Computing. / An, Seongmo; Eom, Taehoon; Park, Jong Sou; Hong, Jin; Nhlabatsi, Armstrong; Fetais, Noora; Khan, Khaled M.D.; Kim, Dong Seong.

Proceedings 2019 18th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/13th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE). United States : IEEE, Institute of Electrical and Electronics Engineers, 2019. p. 602-609.

Research output: Chapter in Book/Conference paperConference paper

TY - GEN

T1 - CloudSafe

T2 - A Tool for an Automated Security Analysis for Cloud Computing

AU - An, Seongmo

AU - Eom, Taehoon

AU - Park, Jong Sou

AU - Hong, Jin

AU - Nhlabatsi, Armstrong

AU - Fetais, Noora

AU - Khan, Khaled M.D.

AU - Kim, Dong Seong

PY - 2019

Y1 - 2019

N2 - Cloud computing has been adopted widely, providing on-demand computing resources to improve performance and reduce operational costs. However, these new functionalities also bring new ways to exploit the cloud computing environment. To assess the security of the cloud, graphical security models can be used, such as Attack Graphs and Attack Trees. However, existing models do not consider all types of threats, and also automating the security assessment functions are difficult. In this paper, we propose a new security assessment tool for the cloud named CloudSafe, an automated security assessment for the cloud. The CloudSafe tool collates various tools and frameworks to automate the security assessment process. To demonstrate the applicability of the CloudSafe, we conducted security assessment in Amazon AWS, where our experimental results showed that we can effectively gather security information of the cloud and carry out security assessment to produce security reports. Users and cloud service providers can use the security report generated by the CloudSafe to understand the security posture of the cloud being used/provided.

AB - Cloud computing has been adopted widely, providing on-demand computing resources to improve performance and reduce operational costs. However, these new functionalities also bring new ways to exploit the cloud computing environment. To assess the security of the cloud, graphical security models can be used, such as Attack Graphs and Attack Trees. However, existing models do not consider all types of threats, and also automating the security assessment functions are difficult. In this paper, we propose a new security assessment tool for the cloud named CloudSafe, an automated security assessment for the cloud. The CloudSafe tool collates various tools and frameworks to automate the security assessment process. To demonstrate the applicability of the CloudSafe, we conducted security assessment in Amazon AWS, where our experimental results showed that we can effectively gather security information of the cloud and carry out security assessment to produce security reports. Users and cloud service providers can use the security report generated by the CloudSafe to understand the security posture of the cloud being used/provided.

U2 - 10.1109/TrustCom/BigDataSE.2019.00086

DO - 10.1109/TrustCom/BigDataSE.2019.00086

M3 - Conference paper

SN - 978-1-7281-2778-1

SP - 602

EP - 609

BT - Proceedings 2019 18th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/13th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE)

PB - IEEE, Institute of Electrical and Electronics Engineers

CY - United States

ER -

An S, Eom T, Park JS, Hong J, Nhlabatsi A, Fetais N et al. CloudSafe: A Tool for an Automated Security Analysis for Cloud Computing. In Proceedings 2019 18th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/13th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE). United States: IEEE, Institute of Electrical and Electronics Engineers. 2019. p. 602-609 https://doi.org/10.1109/TrustCom/BigDataSE.2019.00086