Modeling and Mitigating the Insider Threat of Remote Administrators in Clouds - 32th IFIP Annual Conference on Data and Applications Security and Privacy (DBSec)
Conference Papers Year : 2018

Modeling and Mitigating the Insider Threat of Remote Administrators in Clouds

Abstract

As today’s cloud providers strive to attract customers with better services and less downtime in a highly competitive market, they increasingly rely on remote administrators including those from third party providers for fulfilling regular maintenance tasks. In such a scenario, the privileges granted for remote administrators to complete their assigned tasks may allow an attacker with stolen credentials of an administrator, or a dishonest remote administrator, to pose severe insider threats to both the cloud tenants and provider. In this paper, we take the first step towards understanding and mitigating such a threat. Specifically, we model the maintenance task assignments and their corresponding security impact due to privilege escalation. We then mitigate such impact through optimizing the task assignments with respect to given constraints. The simulation results demonstrate the effectiveness of our solution in various situations.
Fichier principal
Vignette du fichier
470961_1_En_1_Chapter.pdf (2.05 Mo) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-01954402 , version 1 (13-12-2018)

Licence

Identifiers

Cite

Nawaf Alhebaishi, Lingyu Wang, Sushil Jajodia, Anoop Singhal. Modeling and Mitigating the Insider Threat of Remote Administrators in Clouds. 32th IFIP Annual Conference on Data and Applications Security and Privacy (DBSec), Jul 2018, Bergamo, Italy. pp.3-20, ⟨10.1007/978-3-319-95729-6_1⟩. ⟨hal-01954402⟩
72 View
83 Download

Altmetric

Share

More