Paper Info
Title
Auditing Security Compliance of the Virtualized Infrastructure in the Cloud: Application to OpenStack.
Abstract
Cloud service providers typically adopt the multi-tenancy model to optimize resources usage and achieve the promised cost-effectiveness. Sharing resources between different tenants and the underlying complex technology increase the necessity of transparency and accountability. In this regard, auditing security compliance of the provider's infrastructure against standards, regulations and customers' policies takes on an increasing importance in the cloud to boost the trust between the stakeholders. However, virtualization and scalability make compliance verification challenging. In this work, we propose an automated framework that allows auditing the cloud infrastructure from the structural point of view while focusing on virtualization-related security properties and consistency between multiple control layers. Furthermore, to show the feasibility of our approach, we integrate our auditing system into OpenStack, one of the most used cloud infrastructure management systems. To show the scalability and validity of our framework, we present our experimental results on assessing several properties related to auditing inter-layer consistency, virtual machines co-residence, and virtual resources isolation.
Year
DOI
Venue
2016
10.1145/2857705.2857721
CODASPY
Keywords
Field
DocType
Cloud, Virtualization, OpenStack, Security Auditing, Formal Verification, Co-residence, Isolation
Virtualization,Audit,Virtual machine,Computer science,Computer security,Cloud computing security,Shared resource,Management system,Scalability,Cloud computing
Conference
ISBN
Citations 
PageRank 
978-1-4503-3935-3
6
0.44
References 
Authors
11
6
Name
Order
Citations
PageRank
Taous Madi1935.51
Suryadipta Majumdar2265.26
Yushun Wang360.44
Yosr Jarraya417314.52
Makan Pourzandi521628.31
Lingyu Wang61440121.43