ThreatRiskEvaluator: A Tool for Assessing Threat-Specific Security Risks in the Cloud
| Author | Nhlabatsi A. |
| Author | Hussein A. |
| Author | Fernandez R. |
| Author | Fetais N. |
| Author | Hong J. |
| Author | Kim D. |
| Author | Khan K.M. |
| Available date | 2020-04-09T07:35:02Z |
| Publication Date | 2019 |
| Publication Name | 2019 International Conference on Cyber Security for Emerging Technologies, CSET 2019 |
| Resource | Scopus |
| Abstract | In cloud computing, security risks posed to individual clients are different based on their specific security requirements. In current practice, cloud providers usually apply generic protection mechanisms that may not be effective in addressing specific threats for different clients. In this paper, we describe a tool, called 'ThreatRiskEvaluator' that assesses security risks that are specific and relevant to specific cloud clients. The tool implements a novel risk analysis mechanism that utilizes various security-related properties of the cloud such as vulnerability information, the probability of an attack, as well as client-specific security requirements. The method enables cloud providers to make fine-grained decisions for selecting specific protection mechanisms to tackle specific risks posed to individual clients based on their security needs against specific threats. - 2019 IEEE. |
| Sponsor | ACKNOWLEDGMENT This paper was made possible by Grant NPRP 8-531-1-111 from Qatar National Research Fund (QNRF). The statements made herein are solely the responsibility of the authors. |
| Language | en |
| Publisher | Institute of Electrical and Electronics Engineers Inc. |
| Subject | Cloud computing risk assessment security risk security threats vulnerability |
| Type | Conference Paper |
Files in this item
| Files | Size | Format | View |
|---|---|---|---|
|
There are no files associated with this item. |
|||
This item appears in the following Collection(s)
-
Network & Distributed Systems [64 items ]