Files in this item



application/pdfUILU-ENG-14-2202.pdf (1MB)
(no description provided)PDF


Title:An Actor-Centric, Asset-Based Monitor Deployment Model for Cloud Computing
Author(s):Thakore, Uttam; Weaver, Gabriel A.; Sanders, William H.
Subject(s):Cloud computing
Monitor deployment
Threat model
Actor model
Abstract:Effective monitoring is essential for the security of cloud systems. Although many monitoring tools exist in the cloud domain, there is little guidance on how to deploy monitors to make the most of collected monitor data and increase the likelihood of detecting breaches of security. We introduce an actor-centric, asset-based monitor deployment model for the cloud that enables practitioners to reason about monitor deployment in terms of the security of the cloud assets that they own. We define an actor model that consolidates several roles in the literature to three roles that are motivated by security. We then develop an architectural model that identifies the assets that can be owned by each of those actors, and use it to drive an asset-based cloud threat model. Using our threat model, we claim that a cloud practitioner can reason about monitor deployment to more efficiently deploy monitors and increase its chances of detecting intrusions. We demonstrate the utility of our model with a cloud scenario based on Netflix’s use of Amazon Web Services.
Issue Date:2014-07
Publisher:Coordinated Science Laboratory, University of Illinois at Urbana-Champaign
Series/Report:Coordinated Science Laboratory Report no. UILU-ENG-14-2202
Genre:Technical Report
Sponsor:Air Force Research Laboratory & Air Force Office of Scientific Research/FA8750-11-2-0084
Date Available in IDEALS:2016-07-07

This item appears in the following Collection(s)

Item Statistics