cse543 computer and network security module cloud
play

CSE543 Computer and Network Security Module: Cloud Computing - PowerPoint PPT Presentation

Nov 26, 2022 •346 likes •994 views

  1. �������฀฀���฀฀�������� ��������������฀�������� � � �������฀���฀��������฀��������฀������ ����������฀��฀��������฀�������฀���฀����������� ������������฀�����฀�����������฀����������฀����฀฀�� CSE543 Computer and Network Security Module: Cloud Computing Professor Trent Jaeger Systems and Internet Infrastructure Security Laboratory (SIIS) Page 1 Friday, November 30, 12

  2. Cloud Computing Is Here Systems and Internet Infrastructure Security (SIIS) Laboratory Page 2 Friday, November 30, 12

  3. Cloud Computing Is Here Systems and Internet Infrastructure Security (SIIS) Laboratory Page 2 Friday, November 30, 12

  4. Cloud Computing Is Here Systems and Internet Infrastructure Security (SIIS) Laboratory Page 2 Friday, November 30, 12

  5. Cloud Computing Is Here Systems and Internet Infrastructure Security (SIIS) Laboratory Page 2 Friday, November 30, 12

  6. Cloud Computing Is Here Systems and Internet Infrastructure Security (SIIS) Laboratory Page 2 Friday, November 30, 12

  7. Cloud Computing Is Here Systems and Internet Infrastructure Security (SIIS) Laboratory Page 2 Friday, November 30, 12

  8. Cloud Computing Is Here Systems and Internet Infrastructure Security (SIIS) Laboratory Page 2 Friday, November 30, 12

  9. Cloud Computing Is Here Systems and Internet Infrastructure Security (SIIS) Laboratory Page 2 Friday, November 30, 12

  10. Cloud Computing Is Here Systems and Internet Infrastructure Security (SIIS) Laboratory Page 2 Friday, November 30, 12

  11. Cloud Computing Is Here Systems and Internet Infrastructure Security (SIIS) Laboratory Page 2 Friday, November 30, 12

  12. Cloud Computing Is Here Why not use it? Systems and Internet Infrastructure Security (SIIS) Laboratory Page 2 Friday, November 30, 12

  13. What’s Happening in There? Systems and Internet Infrastructure Security (SIIS) Laboratory Page 3 Friday, November 30, 12

  14. From Data Center to Cloud Systems and Internet Infrastructure Security (SIIS) Laboratory Page 4 Friday, November 30, 12

  15. From Data Center to Cloud Systems and Internet Infrastructure Security (SIIS) Laboratory Page 4 Friday, November 30, 12

  16. From Data Center to Cloud Systems and Internet Infrastructure Security (SIIS) Laboratory Page 4 Friday, November 30, 12

  17. Reasons to Doubt • History has shown they are vulnerable to attack ‣ SLAs, audits, and armed guards offer few guarantees ‣ Insiders can subvert even hardened systems Incident Attack Vector Data Loss Incidents 986 903 Accidental 770 23% 695 678 641 External Insider 54% 16% Unknown 7% ‘06 ‘07 ‘08 ‘09 ‘10 ‘11 Credit: The Open Security Foundation datalossdb.org Systems and Internet Infrastructure Security Laboratory (SIIS) Page 5 Friday, November 30, 12

  18. What is Cloud Computing? • Cloud vendor provides computing resources for rent by customers • What do you want to rent? ‣ Hosts (Infrastructure as a Service) • Rent cycles: Amazon EC2, Rackspace Cloud Servers ‣ Environment (Platform as a Service) • Rent instances: Microsoft Azure, Google App Engine ‣ Programs (Software as a Service) • Rent services: Salesforce, Google Docs • Other variations can be rented Systems and Internet Infrastructure Security Laboratory (SIIS) Page 6 Friday, November 30, 12

  19. What is Cloud Computing? Systems and Internet Infrastructure Security Laboratory (SIIS) Page 7 Friday, November 30, 12

  20. IaaS Cloud Example Cloud Client Customer Cloud API Cloud Instances Database Cloud Message Queue Node Image Volume Network Scheduler Store Store Controller Systems and Internet Infrastructure Security (SIIS) Laboratory Page 8 Friday, November 30, 12

  21. Multiple Stakeholders Client Data Are my data protected? Clients Cloud Are my services Instance (VM) running correctly? Service Providers Is my platform secure? Cloud Node Cloud Administrators Systems and Internet Infrastructure Security (SIIS) Laboratory Page 9 Friday, November 30, 12

  22. Cloud Complexity • Cloud environment challenges ‣ Opaque, Complex, Dynamic ‣ Insiders, Instances, Co-hosting Client Service Systems and Internet Infrastructure Security Laboratory (SIIS) Page 10 Friday, November 30, 12

  23. Cloud Complexity • Cloud environment challenges ‣ Opaque, Complex, Dynamic ‣ Insiders, Instances, Co-hosting Cloud Cloud Cloud Client Node Node Platform Cloud Cloud Node Node Systems and Internet Infrastructure Security Laboratory (SIIS) Page 10 Friday, November 30, 12

  24. Cloud Complexity • Cloud environment challenges ‣ Opaque, Complex, Dynamic ‣ Insiders, Instances, Co-hosting Cloud Cloud Client Node Node Cloud Cloud Node Node Systems and Internet Infrastructure Security Laboratory (SIIS) Page 10 Friday, November 30, 12

  25. Cloud Complexity • Cloud environment challenges ‣ Opaque, Complex, Dynamic ‣ Insiders, Instances, Co-hosting VM Cloud Cloud Client Node Node Cloud Cloud Node Node Systems and Internet Infrastructure Security Laboratory (SIIS) Page 10 Friday, November 30, 12

  26. Cloud Complexity • Cloud environment challenges ‣ Opaque, Complex, Dynamic ‣ Insiders, Instances, Co-hosting VM Cloud Cloud Client Node Node Cloud Cloud Node Node Systems and Internet Infrastructure Security Laboratory (SIIS) Page 10 Friday, November 30, 12

  27. Cloud Complexity • Cloud environment challenges ‣ Opaque, Complex, Dynamic ‣ Insiders, Instances, Co-hosting VM VM Cloud Cloud Client Node Node Cloud Cloud Node Node Systems and Internet Infrastructure Security Laboratory (SIIS) Page 10 Friday, November 30, 12

  28. Cloud Complexity • Cloud environment challenges ‣ Opaque, Complex, Dynamic ‣ Insiders, Instances, Co-hosting VM VM Cloud Cloud Client Node Node Cloud Cloud Node Node Systems and Internet Infrastructure Security Laboratory (SIIS) Page 10 Friday, November 30, 12

  29. Cloud Complexity • Cloud environment challenges ‣ Opaque, Complex, Dynamic ‣ Insiders, Instances, Co-hosting VM VM VM Cloud Cloud Client Node Node VM Cloud Cloud Node Node Systems and Internet Infrastructure Security Laboratory (SIIS) Page 10 Friday, November 30, 12

  30. Cloud Complexity • Cloud environment challenges ‣ Opaque, Complex, Dynamic ‣ Insiders, Instances, Co-hosting VM VM Cloud Cloud Client Node Node VM VM Cloud Cloud Node Node Systems and Internet Infrastructure Security Laboratory (SIIS) Page 10 Friday, November 30, 12

  31. Insider Threats • May trust the cloud vendor company ‣ But, do you trust all its employees? • Insiders can control platform ‣ Determine what software runs consumers’ code • Insiders can monitor execution ‣ Log instance operation from remote • Insiders may have physical access ‣ Can monitor hardware, access physical memory, and tamper secure co-processors Systems and Internet Infrastructure Security Laboratory (SIIS) Page 11 Friday, November 30, 12

  32. Insider’s Physical Access Systems and Internet Infrastructure Security Laboratory (SIIS) Page 12 Friday, November 30, 12

  33. Cloud Nodes Server Systems and Internet Infrastructure Security Laboratory (SIIS) Page 13 Friday, November 30, 12

  34. Cloud Nodes • Clouds manages node provisioning ‣ Administers PKI for machine identities ‣ Network installs a master disk image and customizes Server Systems and Internet Infrastructure Security Laboratory (SIIS) Page 13 Friday, November 30, 12

  35. Cloud Nodes • Clouds manages node provisioning ‣ Administers PKI for machine identities ‣ Network installs a master disk image and customizes PKI Server Systems and Internet Infrastructure Security Laboratory (SIIS) Page 13 Friday, November 30, 12

  36. Cloud Nodes • Clouds manages node provisioning ‣ Administers PKI for machine identities ‣ Network installs a master disk image and customizes PKI Server Systems and Internet Infrastructure Security Laboratory (SIIS) Page 13 Friday, November 30, 12

  37. Cloud Nodes • Clouds manages node provisioning ‣ Administers PKI for machine identities ‣ Network installs a master disk image and customizes Server Systems and Internet Infrastructure Security Laboratory (SIIS) Page 13 Friday, November 30, 12

  38. Cloud Nodes • Clouds manages node provisioning ‣ Administers PKI for machine identities ‣ Network installs a master disk image and customizes Server Systems and Internet Infrastructure Security Laboratory (SIIS) Page 13 Friday, November 30, 12

  39. Cloud Nodes • Clouds manages node provisioning ‣ Administers PKI for machine identities ‣ Network installs a master disk image and customizes Server Systems and Internet Infrastructure Security Laboratory (SIIS) Page 13 Friday, November 30, 12

  40. Cloud Nodes • Clouds manages node provisioning ‣ Administers PKI for machine identities ‣ Network installs a master disk image and customizes Cloud Server Node Systems and Internet Infrastructure Security Laboratory (SIIS) Page 13 Friday, November 30, 12

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

CSE543 Computer and Network Security Module: Network Security Professor Patrick McDaniel Fall

CSE543 Computer and Network Security Module: Network Security Professor Patrick McDaniel Fall

CSE543 Computer and Network Security Module: Network Security Professor Patrick McDaniel Fall 204 1 CSE543 - Introduction to Computer and Network Security Page Networking Fundamentally about transmitting information between two (or more)

636 views • 47 slides
CSE543 Computer and Network Security Module: Network Security Professor Trent Jaeger CSE543 -

CSE543 Computer and Network Security Module: Network Security Professor Trent Jaeger CSE543 -

439 views • 25 slides
CSE543 Computer and Network Security Module: Network Security Professor Trent Jaeger CSE543 -

CSE543 Computer and Network Security Module: Network Security Professor Trent Jaeger CSE543 -

305 views • 28 slides
CSE543 Computer and Network Security Module: Network Security Professor Trent Jaeger CSE543 -

CSE543 Computer and Network Security Module: Network Security Professor Trent Jaeger CSE543 -

257 views • 25 slides
CSE543 Computer and Network Security Module: Network Security Professor Trent Jaeger CSE543 -

CSE543 Computer and Network Security Module: Network Security Professor Trent Jaeger CSE543 -

682 views • 50 slides
CSE543 - Computer and Network Security Module: Web Security Professor Trent Jaeger 1 CSE543 -

CSE543 - Computer and Network Security Module: Web Security Professor Trent Jaeger 1 CSE543 -

801 views • 54 slides
CSE543 - Computer and Network Security Module: Web Security Professor Trent Jaeger 1 CSE543 -

CSE543 - Computer and Network Security Module: Web Security Professor Trent Jaeger 1 CSE543 -

1.05k views • 50 slides
CSE543 Computer and Network Security Module: Malware Professor Trent Jaeger CSE543 -

CSE543 Computer and Network Security Module: Malware Professor Trent Jaeger CSE543 -

616 views • 33 slides
CSE543 - Computer and Network Security Module: Virtualization Professor Trent Jaeger 1 CSE543

CSE543 - Computer and Network Security Module: Virtualization Professor Trent Jaeger 1 CSE543

618 views • 30 slides
CSE543 - Computer and Network Security Module: Virtualization Professor Trent Jaeger 1 CSE543

CSE543 - Computer and Network Security Module: Virtualization Professor Trent Jaeger 1 CSE543

308 views • 29 slides
CSE543 Computer and Network Security Module: Malware Professor Trent Jaeger CSE543 -

CSE543 Computer and Network Security Module: Malware Professor Trent Jaeger CSE543 -

586 views • 32 slides
CSE543 Computer and Network Security Module: Internet Malware Professor Trent Jaeger CSE543 -

CSE543 Computer and Network Security Module: Internet Malware Professor Trent Jaeger CSE543 -

317 views • 28 slides
CSE543 Computer and Network Security Module: Network Security Professor Trent Jaeger Fall 2010

CSE543 Computer and Network Security Module: Network Security Professor Trent Jaeger Fall 2010

929 views • 50 slides
CSE543 - Introduction to Computer and Network Security Module: Network Security Professor

CSE543 - Introduction to Computer and Network Security Module: Network Security Professor

936 views • 70 slides
CSE543 - Introduction to Computer and Network Security Module: Security Research Methods

CSE543 - Introduction to Computer and Network Security Module: Security Research Methods

274 views • 25 slides
CSE543 - Introduction to Computer and Network Security Module: Operating System Security

CSE543 - Introduction to Computer and Network Security Module: Operating System Security

350 views • 33 slides
Study of the ionosphere irregularities caused by Space Weather activity on the base of GNSS

Study of the ionosphere irregularities caused by Space Weather activity on the base of GNSS

14th International Ionospheric Effects Symposium May 12-14, 2015 Study of the ionosphere irregularities caused by Space Weather activity on the base of GNSS measurements Iurii Cherniak Space Radio Research Center, University of Warmia and

379 views • 18 slides
Data Collection with the DE-12 Camera Nikolaus Grigorieff Brandeis University & TSRI

Data Collection with the DE-12 Camera Nikolaus Grigorieff Brandeis University & TSRI

Data Collection with the DE-12 Camera Nikolaus Grigorieff Brandeis University & TSRI Exposure Series 1 2 3 8 electrons/ 2 8 electrons/ 2 8 electrons/ 2 Rotavirus DLP Mapping Rotations Exposure 1 2 Longest vectors

773 views • 19 slides
Obtaining Provably Secure Services from Formally Verified Remote Attestation Gene Tsudik 1 Joint

Obtaining Provably Secure Services from Formally Verified Remote Attestation Gene Tsudik 1 Joint

Obtaining Provably Secure Services from Formally Verified Remote Attestation Gene Tsudik 1 Joint work with: Ivan De Oliveira Nunes 1 , Karim Eldefrawy 2 , Norrathep Rattanavipanon 1 University of California Irvine 1 , SRI International 2 1 In

847 views • 48 slides
Legislating for No More Bad Investments Philip Sutton, Strategist Talk outline

Legislating for No More Bad Investments Philip Sutton, Strategist Talk outline

Legislating for No More Bad Investments Philip Sutton, Strategist Talk outline Introduction to the NMBI Act for passage by State and Territory governments Change paradigm (going for the package) The campaign for the

450 views • 10 slides
Parallel Gauss Sieve Algorithm : Solving the Ideal T.Takagi Lattice Challenge of 128 dimensions

Parallel Gauss Sieve Algorithm : Solving the Ideal T.Takagi Lattice Challenge of 128 dimensions

Parallel Gauss Sieve Algorithm T.Ishiguro, S.Kiyomoto, Y.Miyake, Parallel Gauss Sieve Algorithm : Solving the Ideal T.Takagi Lattice Challenge of 128 dimensions Outline Background Proposed Tsukasa Ishiguro 1 Shinsaku Kiyomoto 1 Algorithm

528 views • 32 slides
Permanents and the Jones polynomial Iain Moffatt 1 Martin Loebl 2 1 University of South Alabama 2

Permanents and the Jones polynomial Iain Moffatt 1 Martin Loebl 2 1 University of South Alabama 2

Permanents and the Jones polynomial Iain Moffatt 1 Martin Loebl 2 1 University of South Alabama 2 Charles University Summer Combo in Vermont, 13 th July 2012 Permanents Determinant of an n n matrix A = [ a ij ] n det ( A ) := sgn (

735 views • 40 slides
Naming and Addressing Jeff Chase Duke University Name Spaces OS-level Address spaces

Naming and Addressing Jeff Chase Duke University Name Spaces OS-level Address spaces

Naming and Addressing Jeff Chase Duke University Name Spaces OS-level Address spaces File tree and file pathname File descriptors Networks Ethernet/LAN MAC addresses (48-bit) IP addresses (32-bit or 64-bit in

766 views • 42 slides
1 Profile:- The saying, Roti, kapda, aur makaan, got an imperative extension couple of

1 Profile:- The saying, Roti, kapda, aur makaan, got an imperative extension couple of

1 Profile:- The saying, Roti, kapda, aur makaan, got an imperative extension couple of decades ago when IT started playing a decisive role in our day-to-day life. IT has come a long way in probably the shortest span of time, compared to

751 views • 33 slides

More recommend