including security monitoring in cloud service level
play

Including Security Monitoring in Cloud Service Level Agreement (SLA) - PowerPoint PPT Presentation

Aug 17, 2022 •669 likes •1.26k views

Including Security Monitoring in Cloud Service Level Agreement (SLA) Amir Teshome Supervisors Louis Rilling Christine Morin July 5, 2016 Amir Teshome Including Security Monitoring in Cloud SLA 1 / 11 Introduction SLAs & Security

  1. Including Security Monitoring in Cloud Service Level Agreement (SLA) Amir Teshome Supervisors Louis Rilling Christine Morin July 5, 2016 Amir Teshome Including Security Monitoring in Cloud SLA 1 / 11

  2. Introduction SLAs & Security Monitoring Challenges IDS Evaluation Conclusion and Future Work Contents Challenges on including security monitoring into SLA Amir Teshome Including Security Monitoring in Cloud SLA 1 / 11

  3. Introduction SLAs & Security Monitoring Challenges IDS Evaluation Conclusion and Future Work Contents Challenges on including security monitoring into SLA IDS evaluation method (used as SLA verification mechanism) Amir Teshome Including Security Monitoring in Cloud SLA 1 / 11

  4. Introduction SLAs & Security Monitoring Challenges IDS Evaluation Conclusion and Future Work Introduction Clients outsource VM 1 VM 2 VM 3 VM 4 VM 5 VM 6 their information system User Portal Amir Teshome Including Security Monitoring in Cloud SLA 2 / 11

  5. Introduction SLAs & Security Monitoring Challenges IDS Evaluation Conclusion and Future Work Introduction Clients outsource VM 1 VM 2 VM 3 VM 4 VM 5 VM 6 their information system Loss of full control User Portal Amir Teshome Including Security Monitoring in Cloud SLA 2 / 11

  6. Introduction SLAs & Security Monitoring Challenges IDS Evaluation Conclusion and Future Work Introduction Clients outsource VM 1 VM 2 VM 3 VM 4 VM 5 VM 6 their information system Loss of full control User Portal Lack of trust in service providers and security concerns was a reason for 40% of small and medium businesses not to join the cloud.[2014 study] Amir Teshome Including Security Monitoring in Cloud SLA 2 / 11

  7. Introduction SLAs & Security Monitoring Challenges Security Monitoring IDS Evaluation Conclusion and Future Work Security Monitoring Security Monitoring 1 Security Monitoring is the collection, analysis, and escalation of indications and warnings to detect and respond to intrusions. 1“Tao of Network Security Monitoring, Beyond Intrusion Detection” by Richard Bejtlich Amir Teshome Including Security Monitoring in Cloud SLA 3 / 11

  8. Introduction SLAs & Security Monitoring Challenges Security Monitoring IDS Evaluation Conclusion and Future Work Security Monitoring Security Monitoring 1 Security Monitoring is the collection, analysis, and escalation of indications and warnings to detect and respond to intrusions. Detect suspicious behaviors and take action before severe damage. 1“Tao of Network Security Monitoring, Beyond Intrusion Detection” by Richard Bejtlich Amir Teshome Including Security Monitoring in Cloud SLA 3 / 11

  9. Introduction SLAs & Security Monitoring Challenges Security Monitoring IDS Evaluation Conclusion and Future Work Security Monitoring Security Monitoring 1 Security Monitoring is the collection, analysis, and escalation of indications and warnings to detect and respond to intrusions. Detect suspicious behaviors and take action before severe damage. Intrusion Detection Systems (IDS) and logs from firewalls are used as monitoring systems. 1“Tao of Network Security Monitoring, Beyond Intrusion Detection” by Richard Bejtlich Amir Teshome Including Security Monitoring in Cloud SLA 3 / 11

  10. Introduction SLAs & Security Monitoring Challenges Security Monitoring IDS Evaluation Conclusion and Future Work Service Level Agreement (SLA) SLA: An agreement between cloud providers and customers It describes: Amir Teshome Including Security Monitoring in Cloud SLA 4 / 11

  11. Introduction SLAs & Security Monitoring Challenges Security Monitoring IDS Evaluation Conclusion and Future Work Service Level Agreement (SLA) SLA: An agreement between cloud providers and customers It describes: Provided service Amir Teshome Including Security Monitoring in Cloud SLA 4 / 11

  12. Introduction SLAs & Security Monitoring Challenges Security Monitoring IDS Evaluation Conclusion and Future Work Service Level Agreement (SLA) SLA: An agreement between cloud providers and customers It describes: Provided service Rights and obligations Amir Teshome Including Security Monitoring in Cloud SLA 4 / 11

  13. Introduction SLAs & Security Monitoring Challenges Security Monitoring IDS Evaluation Conclusion and Future Work Service Level Agreement (SLA) SLA: An agreement between cloud providers and customers It describes: Provided service Rights and obligations Penalties Amir Teshome Including Security Monitoring in Cloud SLA 4 / 11

  14. Introduction SLAs & Security Monitoring Challenges Security Monitoring IDS Evaluation Conclusion and Future Work Service Level Agreement (SLA) SLA: An agreement between cloud providers and customers It describes: Provided service Rights and obligations Penalties But don’t include the security monitoring aspect of an Information System Amir Teshome Including Security Monitoring in Cloud SLA 4 / 11

  15. Introduction SLAs & Security Monitoring Challenges IDS Evaluation Conclusion and Future Work Challenges Include security monitoring In Service Level Agreement Amir Teshome Including Security Monitoring in Cloud SLA 5 / 11

  16. Introduction SLAs & Security Monitoring Challenges IDS Evaluation Conclusion and Future Work Challenges Include security monitoring In Service Level Agreement Malleability of virtual infrastructures Amir Teshome Including Security Monitoring in Cloud SLA 5 / 11

  17. Introduction SLAs & Security Monitoring Challenges IDS Evaluation Conclusion and Future Work Challenges Include security monitoring In Service Level Agreement Malleability of virtual infrastructures Difficulty of expressing security monitoring properties using precise terms Amir Teshome Including Security Monitoring in Cloud SLA 5 / 11

  18. Introduction SLAs & Security Monitoring Challenges IDS Evaluation Conclusion and Future Work Challenges Include security monitoring In Service Level Agreement Malleability of virtual infrastructures Difficulty of expressing security monitoring properties using precise terms SLA enforcement is done at the lower level Amir Teshome Including Security Monitoring in Cloud SLA 5 / 11

  19. Introduction SLAs & Security Monitoring Challenges IDS Evaluation Conclusion and Future Work Challenges Include security monitoring In Service Level Agreement Malleability of virtual infrastructures Difficulty of expressing security monitoring properties using precise terms SLA enforcement is done at the lower level Lack of methods to evaluate security monitoring setups Amir Teshome Including Security Monitoring in Cloud SLA 5 / 11

  20. Introduction SLAs & Security Monitoring Challenges IDS Evaluation Conclusion and Future Work Challenges Include security monitoring In Service Level Agreement Malleability of virtual infrastructures Difficulty of expressing security monitoring properties using precise terms SLA enforcement is done at the lower level Lack of methods to evaluate security monitoring setups Amir Teshome Including Security Monitoring in Cloud SLA 5 / 11

  21. Introduction SLAs & Security Monitoring Challenges IDS Evaluation Conclusion and Future Work Proposed Directions Specify security monitoring requirements Amir Teshome Including Security Monitoring in Cloud SLA 6 / 11

  22. Introduction SLAs & Security Monitoring Challenges IDS Evaluation Conclusion and Future Work Proposed Directions Specify security monitoring requirements Given the requirements Amir Teshome Including Security Monitoring in Cloud SLA 6 / 11

  23. Introduction SLAs & Security Monitoring Challenges IDS Evaluation Conclusion and Future Work Proposed Directions Specify security monitoring requirements Given the requirements Automatically configure and deploy Amir Teshome Including Security Monitoring in Cloud SLA 6 / 11

  24. Introduction SLAs & Security Monitoring Challenges IDS Evaluation Conclusion and Future Work Proposed Directions Specify security monitoring requirements Given the requirements Automatically configure and deploy Verify if the specified SLA is respected or not Amir Teshome Including Security Monitoring in Cloud SLA 6 / 11

  25. Introduction SLAs & Security Monitoring Challenges IDS Evaluation Conclusion and Future Work Proposed Directions Specify security monitoring requirements Given the requirements Automatically configure and deploy Verify if the specified SLA is respected or not If not to take action Amir Teshome Including Security Monitoring in Cloud SLA 6 / 11

  26. Introduction SLAs & Security Monitoring Challenges IDS Evaluation Conclusion and Future Work Proposed Directions Specify security monitoring requirements Given the requirements Automatically configure and deploy Verify if the specified SLA is respected or not If not to take action Amir Teshome Including Security Monitoring in Cloud SLA 6 / 11

  27. Introduction SLAs & Security Monitoring Challenges IDS Evaluation Conclusion and Future Work State of the art Focus on specific monitoring probe (IDS) Amir Teshome Including Security Monitoring in Cloud SLA 7 / 11

  28. Introduction SLAs & Security Monitoring Challenges IDS Evaluation Conclusion and Future Work State of the art Focus on specific monitoring probe (IDS) IDS evaluation method, used for SLA verification Amir Teshome Including Security Monitoring in Cloud SLA 7 / 11

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Security Monitoring and Enforcement for the Cloud Model Aryan TaheriMonfared

Security Monitoring and Enforcement for the Cloud Model Aryan TaheriMonfared

Infrastructure Architecture for a Cloud IaaS Provider Software Defined Networking and Network Virtualization Network Monitoring Security Enforcement Inter-Domain Routing for Virtualized Networks Security Monitoring and Enforcement for the

795 views • 42 slides
CloudWatcher: Network Security Monitoring Using OpenFlow in Dynamic Cloud Networks (or: How to

CloudWatcher: Network Security Monitoring Using OpenFlow in Dynamic Cloud Networks (or: How to

CloudWatcher: Network Security Monitoring Using OpenFlow in Dynamic Cloud Networks (or: How to Provide Security Monitoring as a Service in Clouds?) Seungwon Shin Guofei Gu SUCCESS Lab SUCCESS Lab Texas A&M University Texas A&M

314 views • 6 slides
KAFKA STREAMS CLOUD MONITORING AWS CLOUD MONITORING AWS APP CLOUD MONITORING AWS HTTP APP

KAFKA STREAMS CLOUD MONITORING AWS CLOUD MONITORING AWS APP CLOUD MONITORING AWS HTTP APP

FROM USE CASE TO PRODUCTION KAFKA STREAMS CLOUD MONITORING AWS CLOUD MONITORING AWS APP CLOUD MONITORING AWS HTTP APP CLOUD MONITORING AWS METRICS NRDB HTTP APP CLOUD MONITORING SCHDLR JOBS AWS NRDB METRICS HTTP WORKER CLOUD

1.43k views • 124 slides
Cloud-iQ New features including xSP reporting Crayon Channel Team Cloud-iQ updates The Cloud-iQ

Cloud-iQ New features including xSP reporting Crayon Channel Team Cloud-iQ updates The Cloud-iQ

Cloud-iQ New features including xSP reporting Crayon Channel Team Cloud-iQ updates The Cloud-iQ Platform is Crayons Cloud Service Scaling Engine. Offering best in class self- provisioning, billing and reporting capabilities to

346 views • 12 slides
All Your Cluster-Grids Are Belong to Us: Monitoring the (in)Security of Infrastructure Monitoring

All Your Cluster-Grids Are Belong to Us: Monitoring the (in)Security of Infrastructure Monitoring

All Your Cluster-Grids Are Belong to Us: Monitoring the (in)Security of Infrastructure Monitoring Systems Andrei Costin EURECOM, France 1 st Workshop on Security & Privacy in the Cloud (SPC) 30 Sep 2015, Florence Italy Agenda

640 views • 63 slides
Can You Trust Your Encrypted Cloud? An Assessment of SpiderOakONEs Security Anders Dalskov

Can You Trust Your Encrypted Cloud? An Assessment of SpiderOakONEs Security Anders Dalskov

Can You Trust Your Encrypted Cloud? An Assessment of SpiderOakONEs Security Anders Dalskov Claudio Orlandi Aarhus University RWC 2018 Agenda I A Threat Model for Encrypted Cloud Storage (ECS). I A high-level look into a modern ECS service

770 views • 47 slides
resolution over SLA issues between these parties be identified as unresolvable by either party

resolution over SLA issues between these parties be identified as unresolvable by either party

4. Performance Specifications 4.1 Goals and intentions of Service Level Agreements and Public Service Monitoring Goals of Service Level Agreements: Service Level Agreements are set between ICANN and Registry Operators to ensure predictable

247 views • 12 slides
Chapter 9 Cloud Security Contents Security in an interconnected world, cloud security

Chapter 9 Cloud Security Contents Security in an interconnected world, cloud security

Chapter 9 Cloud Security Contents Security in an interconnected world, cloud security risks. Attacks in a cloud environment, top threats. Security, a major concern for cloud users. Privacy. Trust. Operating systems

661 views • 38 slides
A cloud robotics architecture for an emergency management and monitoring service in a smart city

A cloud robotics architecture for an emergency management and monitoring service in a smart city

A cloud robotics architecture for an emergency management and monitoring service in a smart city environment G. Ermacora, A. Toma, B. Bona, M. Chiaberge, M. Silvagni, M. Gaspardone, R. Antonini Fly4smartcity Cloud computing + UAV (Smart) city

511 views • 14 slides
A Blockchain based Witness Model for Trustworthy Cloud Service Level Agreement Enforcement Huan

A Blockchain based Witness Model for Trustworthy Cloud Service Level Agreement Enforcement Huan

A Blockchain based Witness Model for Trustworthy Cloud Service Level Agreement Enforcement Huan Zhou , Xue Ouyang, Zhijie Ren, Jinshu Su, Cees de Laat, Zhiming Zhao Paris 1/May/2019 Outline Cloud SLA / Blockchain: background and challenges

931 views • 30 slides
Security Service Challenge & Security Monitoring Jinny Chien Academia Sinica Grid Computing

Security Service Challenge & Security Monitoring Jinny Chien Academia Sinica Grid Computing

Enabling Grids for E-sciencE Security Service Challenge & Security Monitoring Jinny Chien Academia Sinica Grid Computing OSCT Security Workshop on 7 th March in Taipei www.eu-egee.org 1 Jinny Chien, ASGC Training and Dissemination

1.05k views • 39 slides
Cloud Security Today Presenter: Jason Sheffield Topics What are the issues today? What is the

Cloud Security Today Presenter: Jason Sheffield Topics What are the issues today? What is the

Cloud Security Today Presenter: Jason Sheffield Topics What are the issues today? What is the Cloud? How the Cloud is delivered: Iaas, PaaS and SaaS Cloud security challenges and risk Current Cloud security report Cloud security technology

302 views • 27 slides
Y O U R D A T A . O U R T E C H N O L O G Y . Data Monitoring in The Cloud Connect all of your

Y O U R D A T A . O U R T E C H N O L O G Y . Data Monitoring in The Cloud Connect all of your

Y O U R D A T A . O U R T E C H N O L O G Y . Data Monitoring in The Cloud Connect all of your data collection devices to our cloud and get the capacity of real time analysis and monitoring through web and mobile applications or using our

415 views • 4 slides
Changing the Face of Database Cloud Services with Personalized Service Level Agreements Jennifer

Changing the Face of Database Cloud Services with Personalized Service Level Agreements Jennifer

Changing the Face of Database Cloud Services with Personalized Service Level Agreements Jennifer Ortiz, Victor Teixeira de Almeida, Magdalena Balazinska University of Washington, Computer Science and Engineering PETROBRAS S.A., Rio de Janerio,

1.57k views • 66 slides
Outline Get Off of My Cloud 8271 discussion of cloud computing security (combined)

Outline Get Off of My Cloud 8271 discussion of cloud computing security (combined)

Outline Get Off of My Cloud 8271 discussion of cloud computing security (combined) Administrative discussions Stephen McCamant University of Minnesota Multi-Cloud Oblivious Storage Old and new topics in security Cloud threats, old and new

645 views • 8 slides
1 1.2. Guidelines for Information Security of Cloud Computing Category Main contents of measure

1 1.2. Guidelines for Information Security of Cloud Computing Category Main contents of measure

Agenda Related Polices to Cloud Computing I. Guidelines for Information Security of Cloud II. Computing Cloud Security Certification Scheme in KOREA Cloud Security Certification Program in Korea III. April. 11, 2017 Jungduk (JD) KIM, Ph.

403 views • 5 slides
Everything youve ever wanted to know about Receiver Operating Characteristic Curves but were

Everything youve ever wanted to know about Receiver Operating Characteristic Curves but were

Everything youve ever wanted to know about Receiver Operating Characteristic Curves but were afraid to ask Jim Muirhead Sept. 29, 2008 Outline Historical context and uses of Receiver Operating Characteristic curves (ROC) Empirical

464 views • 29 slides
RESS Presentation to AASB Fall Boardsmanship Academy Sarah Sledge, sarah@ceequity.org, Executive

RESS Presentation to AASB Fall Boardsmanship Academy Sarah Sledge, sarah@ceequity.org, Executive

RESS Presentation to AASB Fall Boardsmanship Academy Sarah Sledge, sarah@ceequity.org, Executive Director, CEE Dr. Barbara L. Adams, badams.aas@gmail.com Adams Analytic Solutions September 16, 2018 Coalition for Education Equity Background

640 views • 42 slides
Implementing Legacy Implementing Legacy Statistical Algorithms in a Statistical Algorithms in a

Implementing Legacy Implementing Legacy Statistical Algorithms in a Statistical Algorithms in a

Implementing Legacy Implementing Legacy Statistical Algorithms in a Statistical Algorithms in a Spreadsheet Environment Spreadsheet Environment Stephen W. Liddle Liddle John S. Lawson Stephen W. John S. Lawson Information Systems Faculty

467 views • 30 slides
Ji Macek JV e , a. s. VVER 2013, Experience and perspectives after Fukushima,

Ji Macek JV e , a. s. VVER 2013, Experience and perspectives after Fukushima,

Safety Analyses for Power Uprate of VVER-1000/320 Temeln Ji Macek JV e , a. s. VVER 2013, Experience and perspectives after Fukushima, Praha, Czech Republic, 11-13 November, 2013 CONTENT Introduction Methodology and range

871 views • 56 slides
External Validity In order to test our RH: we have to decide on a research design, sample

External Validity In order to test our RH: we have to decide on a research design, sample

Bivariate RH:s, Research Designs and Validity... A RH: is a guess about the relationships between behaviors External Validity In order to test our RH: we have to decide on a research design, sample participants, collect data,

254 views • 9 slides
Agenda Item E.5.b Enforcement Consultants Comments on Supplemental Public Comment 1, June 2018

Agenda Item E.5.b Enforcement Consultants Comments on Supplemental Public Comment 1, June 2018

Agenda Item E.5.a Supplemental EC Presentation 1 June 2018 Agenda Item E.5.b Enforcement Consultants Comments on Supplemental Public Comment 1, June 2018 Midwater Trawlers Cooperative Letter TRat Retention and Disposition Requirement

276 views • 12 slides
A Game-Theoretic Approach to Decentralized Optimal Power Allocation for Cellular Networks Shruti

A Game-Theoretic Approach to Decentralized Optimal Power Allocation for Cellular Networks Shruti

Introduction Model Decentralized mechanism Conclusion A Game-Theoretic Approach to Decentralized Optimal Power Allocation for Cellular Networks Shruti Sharma Ph.D. candidate, Electrical Engineering and Computer Science and Demos Teneketzis

986 views • 40 slides
Cash Preservation Cost Reduction Disciplined Capital Allocation Steve Letwin President &

Cash Preservation Cost Reduction Disciplined Capital Allocation Steve Letwin President &

Cash Preservation Cost Reduction Disciplined Capital Allocation Steve Letwin President & Chief Executive Officer TSX: IMG NYSE: IAG May 2013 Cautionary Statement This presentation contains forward-looking statements. All statements, other

428 views • 28 slides

More recommend