KEMBAR78
Cloud Monitoring And Forensic Using Security Metrics | PPT
Sandeep Saxena, profile picture
Uploaded bySandeep Saxena
PPT, PDF765 views

Cloud Monitoring And Forensic Using Security Metrics

This document presents a methodology for cloud monitoring and forensics using security metrics. It discusses previous research on cloud security issues and architectural services. The proposed methodology monitors consumer activity, detects malicious activity using signatures, and activates an automated forensic system to store activity metrics. When malicious activity is detected, remote access is stopped and administrators are notified to collect data for legal processing. A generic architecture is proposed that uses host-based intrusion detection for monitoring network communications and a six-step process for cloud monitoring and forensics.

Downloaded 30 times
CLOUD MONITORING AND FORENSIC USING SECURITY METRICS Presented By: Sandeep Saxena Co-Author: Goutam Sanyal Galgotias college of Engineering & Technology, Greater Noida, India
Contents  INTRODUCTION  ANALYSIS OF PREVIOUS RESEARCHES  PROPOSED METHODOLOGY  PROPOSED GENERIC MODEL FOR CLOUD MONITORING AND FORENSICS  CONCLUSION AND FUTURE WORK  REFRENCES
Introduction Cloud computing is a new emerging technology in the era of science. This immediately brings up several important questions like-  Why we use cloud computing?  Is it real, or just another catchphrase?  How does it affect us? Cloud Computing : Cloud paradigm is used to enable expedient, on-demand network (cloud) access to a public pool of configurable computing resources ( e.g. networks, services, storage, application and services) that can be fast stipulated and released with minimal management effort or service provider interaction.
2 types of cloud: 1. Public Cloud 2. Private cloud Figure 1 : Public cloud ( Service Provider) and Private Cloud ( On- Premises)
Analysis of Previous Research Validation security design is based on model and methodology approaches. For example NIST  Security made presents telecommunication architecture as combination of 3 layers: a. Infrastructure level: The set of hardware and software components that provide telecommunication functionality. b. Service level: Billed customer traffic flows. c. Application level: It motivates users to pay for the control layer services.
 Security Issues : Confidentiality , Integrity , Availability  For such issues , we need to monitor the user’s activity as prevention measure to provide security to other users on network.  Monitoring and Forensic is major concern of security for taking appropriate action against intruder or attackers.  Architectural services of cloud computing: a) Software-as-a-Service (SaaS): Salesforce.com, GoogleApps etc. b) Platform-as-a-Service(PaaS):Google Apps Engine c) Infrastructure-as-a-service(IaaS): Amazon web services
 According to Jennifer Bayuk : Iaas service provides secure network and storage services and Saas provides secure application service.  According to D.Zissis and D.Lekkas : Trusted third part implemented to provide strong authentication for financial transaction, authorization, data confidentiality and non repudiation.  According to Gary C. Kessler: Find root cause of forensics.  According to M. Tayor: Forensic experts install packet sniffers and monitoring tools on targeted machine to collect information. In private cloud it would be easy but in a public cloud it will be more difficult.
Proposed Methodology Monitor Consumer Activity and Save Session log Records Find any Malicious activity Match with Signature Automated Forensic System will be activated to Store All Activities and Data in Metrics Stop Remote Access OR outside the cloud services ( at the same time massage send to consumer on phone and Email ) Administrator check security metrics and collect Data then send to higher authority for legal Processing Figure 2 : Monitoring and Forensic Methodology
Proposed Generic Model for Cloud Computing and Forensics  Here we proposed an complete architecture to provide service to our consumer included secure monitoring and forensic system.  Service level agreement ( SLA ) : Signed by Consumer.  In our architecture , we used Host- based IDS for monitoring of incoming and outgoing network communication on consumer system. IDS includes both anomaly detection and misuse detection techniques for identifying activities on host system.  It includes 6 steps which are shows in figure 2.
Figure 3: Generic architecture for cloud monitoring and forensic
Conclusion and Future work  We proposed a forensic methodology to assure the confidentiality of user of cloud.  Create security matrix and audit trail for investigation.  Establish service level agreement (SLA) with customer.  In future, focus on rule base security matrix and integrity of user’s data.
References [1] Cary Landis and Dan Blacharski,“Cloud Computing Made Easy” , Version 0.3. [2] G. Stoneburner, “Underlying Technical Models for Information Technology Security,” National Institute of Standards and Technology, 2001 [3] G. McGraw, Software Security: Addison-Wesley,2006 [4] Google App Engine, http://appengine.google.com [5]Amazon Elastic Compute Cloud(EC2), http://www.amazon.com/ec2 [6]Gary C. Kessler, “Anti-Forensic and the Digital Investigator” Champlain College Burlington, VT , USA Edith Cowan University, Mount Lawley, WA, Australia
[7] CSA cloud Security Alliance, top Threats to cloud Computing V1.0, 2010 [8] Shaftab Ahmad and M. yahin Akhtar Raja, “Tackling Cloud Security Issues And Forensic Model”, IEEE 2010 [9] Jennifer Bayuk, “Cloud Security Metrics”, 6th International Conference on System of Systems Engineering, Albuquerque, New Mexico, USA –June 27- 30,2011 (IEEE) [10] D. Zissis and D. Lekkas , “Addressing Cloud Computing Security issues”, Future Generation Computer System (2011) Elsevier, doi:10.1016/j.future.2010.12.006 [11] M.Tayor, J. Haggerty, D. Gresty and R. Hegarty, “Digital evidence in cloud computing systems”, Computer Law and Security Review 26 (2010)
THANK YOU

More Related Content

PPTX
Cyber Security in AI (Artificial Intelligence)
byHarsh Bhanushali
 
PDF
Cloud Forensics- An IS Approach
byIOSR Journals
 
DOC
Log Management for PCI Compliance [OLD]
byAnton Chuvakin
 
PPTX
Role of Forensic Triage In Cyber Security Trends 2021
byAmrit Chhetri
 
PDF
Developed security and privacy algorithms for cyber physical system
byIJECEIAES
 
PPTX
[CB21] Keynote1:Shaking the Cybersecurity Kaleidoscope – An Immersive Look in...
byCODE BLUE
 
PDF
Security Issues and Challenges in Internet of Things – A Review
byIJERA Editor
 
PDF
Cyber security maturity model- IT/ITES
byPriyanka Aash
 
Cyber Security in AI (Artificial Intelligence)
byHarsh Bhanushali
 
Cloud Forensics- An IS Approach
byIOSR Journals
 
Log Management for PCI Compliance [OLD]
byAnton Chuvakin
 
Role of Forensic Triage In Cyber Security Trends 2021
byAmrit Chhetri
 
Developed security and privacy algorithms for cyber physical system
byIJECEIAES
 
[CB21] Keynote1:Shaking the Cybersecurity Kaleidoscope – An Immersive Look in...
byCODE BLUE
 
Security Issues and Challenges in Internet of Things – A Review
byIJERA Editor
 
Cyber security maturity model- IT/ITES
byPriyanka Aash
 

What's hot

PDF
Reference Security Architecture for Mobility- Insurance
byPriyanka Aash
 
PDF
Guardians of the future what should we do to secure future cyberspace
byAladdin Dandis
 
PPTX
Cloudbrew 2019 - Threat hunting with the Microsoft Cloud
byTom Janetscheck
 
PDF
A Novel Security Approach for Communication using IOT
byIJEACS
 
PPTX
Iot cyber security
bysajid mehmood
 
PDF
IoT Security Challenges and Solutions
byIntel® Software
 
PDF
IoT security and privacy: main challenges and how ISOC-OTA address them
byRadouane Mrabet
 
DOCX
What operational technology cyber security is?
bysohailAhmad304
 
PDF
Io t security_review_blockchain_solutions
byShyam Goyal
 
PDF
Intrusion Detection System (IDS): Anomaly Detection using Outlier Detection A...
byDrjabez
 
PDF
A Collaborative Intrusion Detection System for Cloud Computing
byijsrd.com
 
PPTX
First line of defense for cybersecurity : AI
byAhmed Banafa
 
PPTX
Summer internship - Cybersecurity
byAbhilashYadav14
 
PPTX
Practical risk management for the multi cloud
byUlf Mattsson
 
PDF
76 s201918
byIJRAT
 
PDF
IRJET- Authentication and Context Awareness Access Control in Internet of Things
byIRJET Journal
 
PDF
A survey on secure communication protocols for io t systems
byVishwesh Nagamalla
 
PDF
A Study and Comparative analysis of Conditional Random Fields for Intrusion d...
byIJORCS
 
PDF
IRJET- Crypto-Currencies How Secure are they?
byIRJET Journal
 
PDF
ABANACLE_5x8_brochure - USA
byCatherine Moji Renner
 
Reference Security Architecture for Mobility- Insurance
byPriyanka Aash
 
Guardians of the future what should we do to secure future cyberspace
byAladdin Dandis
 
Cloudbrew 2019 - Threat hunting with the Microsoft Cloud
byTom Janetscheck
 
A Novel Security Approach for Communication using IOT
byIJEACS
 
Iot cyber security
bysajid mehmood
 
IoT Security Challenges and Solutions
byIntel® Software
 
IoT security and privacy: main challenges and how ISOC-OTA address them
byRadouane Mrabet
 
What operational technology cyber security is?
bysohailAhmad304
 
Io t security_review_blockchain_solutions
byShyam Goyal
 
Intrusion Detection System (IDS): Anomaly Detection using Outlier Detection A...
byDrjabez
 
A Collaborative Intrusion Detection System for Cloud Computing
byijsrd.com
 
First line of defense for cybersecurity : AI
byAhmed Banafa
 
Summer internship - Cybersecurity
byAbhilashYadav14
 
Practical risk management for the multi cloud
byUlf Mattsson
 
76 s201918
byIJRAT
 
IRJET- Authentication and Context Awareness Access Control in Internet of Things
byIRJET Journal
 
A survey on secure communication protocols for io t systems
byVishwesh Nagamalla
 
A Study and Comparative analysis of Conditional Random Fields for Intrusion d...
byIJORCS
 
IRJET- Crypto-Currencies How Secure are they?
byIRJET Journal
 
ABANACLE_5x8_brochure - USA
byCatherine Moji Renner
 

Viewers also liked

PPT
Security Metrics
byConferencias FIST
 
PDF
11.cyber forensics in cloud computing
byAlexander Decker
 
PDF
Cloud Application Logging for Forensics
byRaffael Marty
 
PPTX
Adding event reconstruction to a cloud forensic readiness
byVictor Kebande
 
PDF
Cloud Computing Forensic Science
byDavid Sweigert
 
PDF
Memory forensics using VMI for cloud computing
byPriyanka Aash
 
DOC
Updated CV
byPrabhasini Sahu
 
DOCX
Babadook
byjupton1
 
PDF
MEDIA ICMI EDISI 11
byICMI Pusat
 
PDF
Performance Analysis of Mobile Security Protocols: Encryption and Authenticat...
byCSCJournals
 
PPTX
Mobile security
byStefaan
 
PPT
Looking for Information Vacuums
byInfo Ops HQ
 
PPTX
Mobile security
byMphasis
 
PDF
Mobile Application Security by Design
byDMI
 
PPTX
Cloud Computing Security Issues
byStelios Krasadakis
 
PPT
Mobile Apps Security
byXavier Mertens
 
PPSX
Cloud Forensics
bysdavis532
 
PDF
(130928) #fitalk cloud storage forensics - dropbox
byINSIGHT FORENSIC
 
PPTX
Cloud Computing : Security and Forensics
byGovind Maheswaran
 
PPT
Mobile forensics
bynoorashams
 
Security Metrics
byConferencias FIST
 
11.cyber forensics in cloud computing
byAlexander Decker
 
Cloud Application Logging for Forensics
byRaffael Marty
 
Adding event reconstruction to a cloud forensic readiness
byVictor Kebande
 
Cloud Computing Forensic Science
byDavid Sweigert
 
Memory forensics using VMI for cloud computing
byPriyanka Aash
 
Updated CV
byPrabhasini Sahu
 
Babadook
byjupton1
 
MEDIA ICMI EDISI 11
byICMI Pusat
 
Performance Analysis of Mobile Security Protocols: Encryption and Authenticat...
byCSCJournals
 
Mobile security
byStefaan
 
Looking for Information Vacuums
byInfo Ops HQ
 
Mobile security
byMphasis
 
Mobile Application Security by Design
byDMI
 
Cloud Computing Security Issues
byStelios Krasadakis
 
Mobile Apps Security
byXavier Mertens
 
Cloud Forensics
bysdavis532
 
(130928) #fitalk cloud storage forensics - dropbox
byINSIGHT FORENSIC
 
Cloud Computing : Security and Forensics
byGovind Maheswaran
 
Mobile forensics
bynoorashams
 

Similar to Cloud Monitoring And Forensic Using Security Metrics

PDF
Rp059 Icect2012 E694
bySandeep Saxena
 
PDF
Iaetsd cloud computing and security challenges
byIaetsd Iaetsd
 
PDF
Research Paper Digital Forensics on Google Cloud Platform
bySamuel Borthwick
 
PDF
Cloud Breach - Forensics Audit Planning
byValdez Ladd MBA, CISSP, CISA,
 
RTF
Secure third party cloud computing services a proposal by shibwabo anyembe
byShibwabo Christopher Anyembe
 
PPT
htcia-5-2015
byTony Godfrey
 
PDF
Project 3
byPriyanka Goswami
 
PDF
IRJET- A Survey on SaaS-Attacks and Digital Forensic
byIRJET Journal
 
PDF
A SECURITY FRAMEWORK IN CLOUD COMPUTING INFRASTRUCTURE
byIJNSA Journal
 
PDF
A SECURITY FRAMEWORK IN CLOUD COMPUTING INFRASTRUCTURE
byIJNSA Journal
 
PDF
IRJET- SAAS Attacks Defense Mechanisms and Digital Forensic
byIRJET Journal
 
PDF
Eb31854857
byIJERA Editor
 
PDF
DESIGN AND IMPLEMENT A NEW CLOUD SECURITY METHOD BASED ON MULTI CLOUDS ON OPE...
bycscpconf
 
PDF
Design and implement a new cloud security method based on multi clouds on ope...
bycsandit
 
PPT
4831586.ppt
byahmad21315
 
PPT
Cloudcomputingoct2009 100301142544-phpapp02
byabhisheknayak29
 
PDF
Challenges and Proposed Solutions for Cloud Forensic
byIJERA Editor
 
PDF
Trust based Mechanism for Secure Cloud Computing Environment: A Survey
byinventionjournals
 
PDF
International Journal of Computational Engineering Research(IJCER)
byijceronline
 
PPTX
What is Cloud Security, and Can I Have Some?
byJohn Kinsella
 
Rp059 Icect2012 E694
bySandeep Saxena
 
Iaetsd cloud computing and security challenges
byIaetsd Iaetsd
 
Research Paper Digital Forensics on Google Cloud Platform
bySamuel Borthwick
 
Cloud Breach - Forensics Audit Planning
byValdez Ladd MBA, CISSP, CISA,
 
Secure third party cloud computing services a proposal by shibwabo anyembe
byShibwabo Christopher Anyembe
 
htcia-5-2015
byTony Godfrey
 
Project 3
byPriyanka Goswami
 
IRJET- A Survey on SaaS-Attacks and Digital Forensic
byIRJET Journal
 
A SECURITY FRAMEWORK IN CLOUD COMPUTING INFRASTRUCTURE
byIJNSA Journal
 
A SECURITY FRAMEWORK IN CLOUD COMPUTING INFRASTRUCTURE
byIJNSA Journal
 
IRJET- SAAS Attacks Defense Mechanisms and Digital Forensic
byIRJET Journal
 
Eb31854857
byIJERA Editor
 
DESIGN AND IMPLEMENT A NEW CLOUD SECURITY METHOD BASED ON MULTI CLOUDS ON OPE...
bycscpconf
 
Design and implement a new cloud security method based on multi clouds on ope...
bycsandit
 
4831586.ppt
byahmad21315
 
Cloudcomputingoct2009 100301142544-phpapp02
byabhisheknayak29
 
Challenges and Proposed Solutions for Cloud Forensic
byIJERA Editor
 
Trust based Mechanism for Secure Cloud Computing Environment: A Survey
byinventionjournals
 
International Journal of Computational Engineering Research(IJCER)
byijceronline
 
What is Cloud Security, and Can I Have Some?
byJohn Kinsella
 

Cloud Monitoring And Forensic Using Security Metrics

  • 1.
    CLOUD MONITORING AND FORENSIC USING SECURITY METRICS Presented By: Sandeep Saxena Co-Author: Goutam Sanyal Galgotias college of Engineering & Technology, Greater Noida, India
  • 2.
    Contents  INTRODUCTION  ANALYSIS OF PREVIOUS RESEARCHES  PROPOSED METHODOLOGY  PROPOSED GENERIC MODEL FOR CLOUD MONITORING AND FORENSICS  CONCLUSION AND FUTURE WORK  REFRENCES
  • 3.
    Introduction Cloud computing isa new emerging technology in the era of science. This immediately brings up several important questions like-  Why we use cloud computing?  Is it real, or just another catchphrase?  How does it affect us? Cloud Computing : Cloud paradigm is used to enable expedient, on-demand network (cloud) access to a public pool of configurable computing resources ( e.g. networks, services, storage, application and services) that can be fast stipulated and released with minimal management effort or service provider interaction.
  • 4.
    2 types ofcloud: 1. Public Cloud 2. Private cloud Figure 1 : Public cloud ( Service Provider) and Private Cloud ( On- Premises)
  • 5.
    Analysis of PreviousResearch Validation security design is based on model and methodology approaches. For example NIST  Security made presents telecommunication architecture as combination of 3 layers: a. Infrastructure level: The set of hardware and software components that provide telecommunication functionality. b. Service level: Billed customer traffic flows. c. Application level: It motivates users to pay for the control layer services.
  • 6.
    Security Issues : Confidentiality , Integrity , Availability  For such issues , we need to monitor the user’s activity as prevention measure to provide security to other users on network.  Monitoring and Forensic is major concern of security for taking appropriate action against intruder or attackers.  Architectural services of cloud computing: a) Software-as-a-Service (SaaS): Salesforce.com, GoogleApps etc. b) Platform-as-a-Service(PaaS):Google Apps Engine c) Infrastructure-as-a-service(IaaS): Amazon web services
  • 7.
    According to Jennifer Bayuk : Iaas service provides secure network and storage services and Saas provides secure application service.  According to D.Zissis and D.Lekkas : Trusted third part implemented to provide strong authentication for financial transaction, authorization, data confidentiality and non repudiation.  According to Gary C. Kessler: Find root cause of forensics.  According to M. Tayor: Forensic experts install packet sniffers and monitoring tools on targeted machine to collect information. In private cloud it would be easy but in a public cloud it will be more difficult.
  • 8.
    Proposed Methodology Monitor Consumer Activity and Save Session log Records Find any Malicious activity Match with Signature Automated Forensic System will be activated to Store All Activities and Data in Metrics Stop Remote Access OR outside the cloud services ( at the same time massage send to consumer on phone and Email ) Administrator check security metrics and collect Data then send to higher authority for legal Processing Figure 2 : Monitoring and Forensic Methodology
  • 9.
    Proposed Generic Modelfor Cloud Computing and Forensics  Here we proposed an complete architecture to provide service to our consumer included secure monitoring and forensic system.  Service level agreement ( SLA ) : Signed by Consumer.  In our architecture , we used Host- based IDS for monitoring of incoming and outgoing network communication on consumer system. IDS includes both anomaly detection and misuse detection techniques for identifying activities on host system.  It includes 6 steps which are shows in figure 2.
  • 10.
    Figure 3: Genericarchitecture for cloud monitoring and forensic
  • 11.
    Conclusion and Futurework  We proposed a forensic methodology to assure the confidentiality of user of cloud.  Create security matrix and audit trail for investigation.  Establish service level agreement (SLA) with customer.  In future, focus on rule base security matrix and integrity of user’s data.
  • 12.
    References [1] Cary Landisand Dan Blacharski,“Cloud Computing Made Easy” , Version 0.3. [2] G. Stoneburner, “Underlying Technical Models for Information Technology Security,” National Institute of Standards and Technology, 2001 [3] G. McGraw, Software Security: Addison-Wesley,2006 [4] Google App Engine, http://appengine.google.com [5]Amazon Elastic Compute Cloud(EC2), http://www.amazon.com/ec2 [6]Gary C. Kessler, “Anti-Forensic and the Digital Investigator” Champlain College Burlington, VT , USA Edith Cowan University, Mount Lawley, WA, Australia
  • 13.
    [7] CSA cloudSecurity Alliance, top Threats to cloud Computing V1.0, 2010 [8] Shaftab Ahmad and M. yahin Akhtar Raja, “Tackling Cloud Security Issues And Forensic Model”, IEEE 2010 [9] Jennifer Bayuk, “Cloud Security Metrics”, 6th International Conference on System of Systems Engineering, Albuquerque, New Mexico, USA –June 27- 30,2011 (IEEE) [10] D. Zissis and D. Lekkas , “Addressing Cloud Computing Security issues”, Future Generation Computer System (2011) Elsevier, doi:10.1016/j.future.2010.12.006 [11] M.Tayor, J. Haggerty, D. Gresty and R. Hegarty, “Digital evidence in cloud computing systems”, Computer Law and Security Review 26 (2010)
  • 14.