|
Instructors: Prof. Ph. D. Neeraj Suri
Event type:
Seminar
Org-unit: Dept. 20 - Computer Science
Displayed in timetable as:
Security and the Cloud - The Issues and Metrics
Subject:
Crediting for:
Hours per week:
3
Language of instruction:
German and English
Min. | Max. participants:
- | -
Course Contents:
Side-channel attacks, Covert-channel attacks, Threat modelling, Cloud security, security compliance, cloud audit, security metrics, P2P security, critical infrastructure protection, security policies, etc.
Official Course Description:
Cloud computing represents an appealing service model for various businesses and private users. With its on-demand availability of remotely-located computing infrastructures, platforms and software, the Cloud's advantages are apparent. Despite the provided cost-effective services, the Cloud is often considered insecure, due to the usage of shared resources among the co-located Cloud tenants.
Security practitioners agree that the co-residence among mutually untrusted customers is an obstacle on the way to the Cloud's adoption. A variety of attacks have been demonstrated in the academic world managing to break the strong isolation that the Cloud Providers are assumed to guarantee to their customers. Security metrics can help to quantitatively assess the security provided by a system in order to identify its vulnerabilities, and aid the process of providing a prioritized set of corrective actions based on technical and economic factors. The use of security metrics is increasingly gaining traction in the ICT sector, and despite the different criticisms about its feasibility, has already proven successful in different scenarios (e.g. critical infrastructure protection, Peer-to-Peer (P2P), etc.). Addressing the security of the Cloud taking into consideration its different aspects is the aim of this seminar.
The topics relevant to the seminar include (but are not restricted to): challenges for conducting attacks in the Cloud; side- and covert-channel attacks in the Cloud, challenges and best-practices for applying existing security metrics techniques and technologies in the Cloud; security metrics and the convergence between the Cloud, P2P and, the Internet of Things and Services; architectures and protocols for assessing the Cloud’s security level; industrial efforts towards measuring and improving the security in the Cloud (e.g. the Cloud Security Alliance); real-time security metrics to improve the Cloud’s authentication and dependability level; analyzing the trade-offs between security and performance in the Cloud.
Details regarding the timeline and the deliverables of the seminar are given on the course website.
Additional Information:
Course website: https://www.deeds.informatik.tu-darmstadt.de/index.php?id=13650
|
