Change search
ReferencesLink to record
Permanent link

Direct link
Securing the IaaS Service Model of Cloud Computing Against Compromised Components
Norwegian University of Science and Technology, Faculty of Information Technology, Mathematics and Electrical Engineering, Department of Telematics.
2011 (English)MasteroppgaveStudent thesis
Abstract [en]
Cloud Computing is a new computing model, and its security aspects require special considerations. New characteristics of the cloud model have introduced new security challenges, and made some of the existing security techniques incompatible. Moreover, existing cloud environments are closed, operated by commercial providers, and their security mechanisms are proprietary as well as confidential. In other words, there is not much chance of observing how a real cloud environment is working, and how their providers adapt security measures to the new model. Therefore, we have chosen an open source cloud platform to build our own cloud environment. The OpenStack cloud software met our requirements, but it was not mature enough. We have done a deep analysis of this platform, identified potential attack targets in it, and discuss impacts of a successful attack. In order to secure our environment, the National Institute of Standards and Technology (NIST) incident handling guideline has been applied to the cloud model, and corresponding actions for each phase has been performed. To complete our study, we have proposed a set of cloud specific approaches that fulfill the incident handling requirements. These approaches address challenges identified in the guideline adaptation process. Additionally, we have studied the feasibility and compatibility of each approach against our deployed environment. Additionally, we also have submitted a paper to IEEE CloudCom 2011 conference, based on my thesis. A draft version of the paper is included in Appendix A.
Place, publisher, year, edition, pages
Institutt for telematikk , 2011. , 184 p.
Keyword [no]
ntnudaim:6107, MSSECMOB Master in Security and Mobile Computing,
URN: urn:nbn:no:ntnu:diva-13439Local ID: ntnudaim:6107OAI: diva2:438670
Available from: 2011-09-05 Created: 2011-09-05

Open Access in DiVA

fulltext(7443 kB)915 downloads
File information
File name FULLTEXT01.pdfFile size 7443 kBChecksum SHA-512
Type fulltextMimetype application/pdf
cover(47 kB)25 downloads
File information
File name COVER01.pdfFile size 47 kBChecksum SHA-512
Type coverMimetype application/pdf

By organisation
Department of Telematics

Search outside of DiVA

GoogleGoogle Scholar
Total: 915 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

Total: 240 hits
ReferencesLink to record
Permanent link

Direct link