ThreatRiskEvaluator: A Tool for Assessing Threat-Specific Security Risks in the Cloud
المؤلف | Nhlabatsi A. |
المؤلف | Hussein A. |
المؤلف | Fernandez R. |
المؤلف | Fetais N. |
المؤلف | Hong J. |
المؤلف | Kim D. |
المؤلف | Khan K.M. |
تاريخ الإتاحة | 2020-04-09T07:35:02Z |
تاريخ النشر | 2019 |
اسم المنشور | 2019 International Conference on Cyber Security for Emerging Technologies, CSET 2019 |
المصدر | Scopus |
الملخص | In cloud computing, security risks posed to individual clients are different based on their specific security requirements. In current practice, cloud providers usually apply generic protection mechanisms that may not be effective in addressing specific threats for different clients. In this paper, we describe a tool, called 'ThreatRiskEvaluator' that assesses security risks that are specific and relevant to specific cloud clients. The tool implements a novel risk analysis mechanism that utilizes various security-related properties of the cloud such as vulnerability information, the probability of an attack, as well as client-specific security requirements. The method enables cloud providers to make fine-grained decisions for selecting specific protection mechanisms to tackle specific risks posed to individual clients based on their security needs against specific threats. - 2019 IEEE. |
راعي المشروع | ACKNOWLEDGMENT This paper was made possible by Grant NPRP 8-531-1-111 from Qatar National Research Fund (QNRF). The statements made herein are solely the responsibility of the authors. |
اللغة | en |
الناشر | Institute of Electrical and Electronics Engineers Inc. |
الموضوع | Cloud computing risk assessment security risk security threats vulnerability |
النوع | Conference |
الملفات في هذه التسجيلة
الملفات | الحجم | الصيغة | العرض |
---|---|---|---|
لا توجد ملفات لها صلة بهذه التسجيلة. |
هذه التسجيلة تظهر في المجموعات التالية
-
الشبكات وخدمات البنية التحتية للمعلومات والبيانات [70 items ]