Security Risks in Cloud Computing-Reference-Cited by-同舟云学术

Security Risks in Cloud Computing

Published:2014 Issue: Volume: Page:936-952
ISSN:
Container-title:Software Design and Development
language:
Short-container-title:

Author:

Zapata Belén Cruz¹,Alemán José Luis Fernández¹

Affiliation:

1. University of Murcia, Spain

Abstract

Any software system is exposed to potential attack. The recent and continuous appearance of vulnerabilities in software systems makes security a vital issue if these systems are to succeed. The detection of potential vulnerabilities thus signifies that a set of policies can be established to minimize their impact. This therefore implies identifying the risks and data to be protected, and the design of an action plan with which to manage incidents and recovery. The purpose of this chapter is to provide an analysis of the most common vulnerabilities in recent years, focusing on those vulnerabilities which are specific to cloud computing. These specific vulnerabilities need to be identified in order to avoid them by providing prevention mechanisms, and the following questions have therefore been posed: What kinds of vulnerabilities are increasing? Has any kind of vulnerability been reduced in recent years? What is the evolution of their severity?

Publisher

IGI Global

Reference26 articles.

1. Alhazmi, O. H., Woo, S. W., & Malaiya, Y. K. (2006). Security vulnerability categories in major software systems. In Proceedings of the Third IASTED International Conference on Communication, Network, and Information Security (pp. 138-143). Cambridge, MA: IASTED/ACTA Press.

2. Arora, A., Krishnan, R., Telang, R., & Yang, Y. (2004). Impact of vulnerability disclosure and patch availability - An empirical analysis. Third Workshop on the Economics of Information Security.

3. Bugiel, S., Nürnberger, S., Pöppelmann, T., Sadeghi, A. R., & Schneider, T. (2011). AmazonIA: When elasticity snaps back. In Proceedings of the 18th ACM Conference on Computer and Communications Security, (pp 389-400). New York, NY: ACM.

4. Cellan-Jones, R. (2009). The sidekick cloud disaster. BBC News. Retrieved January 14, 2012, from http://www.bbc.co.uk/blogs/technology/2009/10/the_sidekick_cloud_disaster.html

5. Cloud Security Alliance. (2010). Top threats to cloud computing v1.0. Retrieved January 14, 2012, from https://cloudsecurityalliance.org/topthreats/csathreats.v1.0.pdf