Authors:
Doudou Fall
;
Takeshi Okada
;
Noppawat Chaisamran
;
Youki Kadobayoshi
and
Suguru Yamaguchi
Affiliation:
Internet Engineering Laboratory, Japan
Keyword(s):
Cloud Computing, Security, Vulnerability Tree, IaaS, Quantification, Reliability.
Related
Ontology
Subjects/Areas/Topics:
Cloud Computing
;
Cloud Computing Architecture
;
Cloud Computing Enabling Technology
;
Cloud Risk, Challenges, and Governance
;
Fundamentals
;
Virtualization Technologies
Abstract:
It is a truism to single out the inherent security issues of cloud computing as the main hurdle to its adoption.
Particularly, infrastructure clouds are composed of multiple components and applications where vulnerabilities
are regularly discovered. We propose a probabilistic security quantification method, which allows quantifying
the security level of a given Infrastructure as a Service cloud environment. We translate the vulnerable IaaS
environment into a vulnerability tree that we built basing on fault tree analysis, which is a well established
modeling tool. The analysis of the vulnerability tree leads us to the security quantification formula.