Presentation is loading. Please wait.

Presentation is loading. Please wait.

Threat Modeling for Cloud Computing (some slides are borrowed from Dr. Ragib Hasan) Keke Chen 1.

Published byErika Austin Modified over 8 years ago

Similar presentations

Presentation on theme: "Threat Modeling for Cloud Computing (some slides are borrowed from Dr. Ragib Hasan) Keke Chen 1."— Presentation transcript:

1 Threat Modeling for Cloud Computing (some slides are borrowed from Dr. Ragib Hasan) Keke Chen 1

2 Threats, vulnerabilities, and enemies 2 Goal Learn the cloud computing threat model by examining the assets, vulnerabilities, entry points, and actors in a cloud Technique Apply different threat modeling schemes

3 Threat Model A threat model helps in analyzing a security problem, design mitigation strategies, and evaluate solutions Steps: Identify attackers, assets, threats and other components Rank the threats Choose mitigation strategies Build solutions based on the strategies 3

4 Threat Model Basic components  Assets / potentially attacked targets  Attacker modeling Choose what attacker to consider Attacker motivation and capabilities  Vulnerabilities / threats 4

5 Recall: Cloud Computing Stack 5

6 Recall: Cloud Architecture 6 Client SaaS / PaaS Provider Cloud Provider (IaaS)

7 Assets – targets under attack 7

8 Assets  Confidentiality: Data stored in the cloud Configuration of VMs running on the cloud Identity of the cloud users Location of the VMs running client code 8

9 Assets  Integrity Data stored in the cloud Computations performed on the cloud 9

10 Assets  Availability Cloud infrastructure SaaS / PaaS 10

11 Attackers 11

12 Who is the attacker? 12 Insider? Malicious employees at client Malicious employees at Cloud provider Cloud provider itself Outsider? Intruders Network attackers?

13 Attacker Capability: Malicious Insiders  At client Learn passwords/authentication information Gain control of the VMs  At cloud provider Log client communication 13

14 Attacker Capability: Cloud Provider  What can the attacker do? Can read unencrypted data Can possibly peek into VMs, or make copies of VMs Can monitor network communication, application patterns 14

15 Attacker motivation: Cloud Provider  Why? Gain information about client data Gain information on client behavior Use the information to improve services Sell the information to gain financial benefits 15

16 Attacker Capability: Outside attacker  What can the attacker do? Listen to network traffic (passive) Insert malicious traffic (active) Probe cloud structure (active) Launch DoS 16

17 Attacker goals: Outside attackers  Intrusion  Network analysis (network security)  Man in the middle: public key example  Cartography: making map (original meaning), inference based on linked events/objects 17 AMB Req. pk_B Ret. Pk_B Ret. Pk_B’ AMB Pk_B’(m)Pk_B(m’) Pk_A’(r) Pk_A(r’) Pk_A: public key by A Pk_B: public key by B Pk_A’,Pk_B’: false public keys by M

18 Threats – methods doing attacks 18

19 Organizing the threats using STRIDE  Spoofing identity  Tampering with data  Repudiation (refuse to do with, dispute)  Information disclosure  Denial of service  Escalation of privilege 19

20 Spoofing identity  illegally obtaining access and use of another person’s authentication information Man in the middle URL phishing Email address spoofing (email spam) 20

21 Tampering with data  Malicious modification of the data  Often hard and costly to detect you might not find the modified data until some time has passed; once you find one tampered item, you’ll have to thoroughly check all the other data on your systems 21

22 Repudiation  a legitimate transaction will be disowned by one of the participants You sign a document first; and refused to confirm the signature Need a trusted third party to mitigate 22

23 Information/data disclosure  an attacker can gain access, without permission, to data that the owner doesn’t want him or her to have. 23

24 Denial of service  an explicit attempt to prevent legitimate users from using a service or system. It involves the overuse of legitimate resources.  You can stop all such attacks by removing the resource used by the attacker, but then real users can’t use the resource either. 24

25 Escalation of privilege  an unprivileged user gains privileged access. E.g. unprivileged user who contrives a way to be added to the Administrators group 25

26 Mitigation techniques 26

27 Typical threats (contd.) 27

28 Threat tree: a thread analysis and modeling method 28

Download ppt "Threat Modeling for Cloud Computing (some slides are borrowed from Dr. Ragib Hasan) Keke Chen 1."

Similar presentations

Ragib Hasan Johns Hopkins University en.600.412 Spring 2010 Lecture 3 02/15/2010 Security and Privacy in Cloud Computing.

Ragib Hasan Johns Hopkins University en Spring 2010 Lecture 3 02/15/2010 Security and Privacy in Cloud Computing.
Cryptography and Network Security 2 nd Edition by William Stallings Note: Lecture slides by Lawrie Brown and Henric Johnson, Modified by Andrew Yang.

Cryptography and Network Security 2 nd Edition by William Stallings Note: Lecture slides by Lawrie Brown and Henric Johnson, Modified by Andrew Yang.
Ragib Hasan University of Alabama at Birmingham CS 491/691/791 Fall 2012 Lecture 2 08/21/2012 Security and Privacy in Cloud Computing.

Ragib Hasan University of Alabama at Birmingham CS 491/691/791 Fall 2012 Lecture 2 08/21/2012 Security and Privacy in Cloud Computing.
September 10, 2012Introduction to Computer Security ©2004 Matt Bishop Slide #1-1 Chapter 1: Introduction Components of computer security Threats Policies.

September 10, 2012Introduction to Computer Security ©2004 Matt Bishop Slide #1-1 Chapter 1: Introduction Components of computer security Threats Policies.
Security and Trust in E- Commerce. The E-commerce Security Environment: The Scope of the Problem  Overall size of cybercrime unclear; amount of losses.

Security and Trust in E- Commerce. The E-commerce Security Environment: The Scope of the Problem  Overall size of cybercrime unclear; amount of losses.
1 Computer Security Instructor: Dr. Bo Sun. 2 Course Objectives Understand basic issues, concepts, principles, and mechanisms in computer network security.

1 Computer Security Instructor: Dr. Bo Sun. 2 Course Objectives Understand basic issues, concepts, principles, and mechanisms in computer network security.
Ragib Hasan Johns Hopkins University en.600.412 Spring 2011 Lecture 11 04/25/2011 Security and Privacy in Cloud Computing.

Ragib Hasan Johns Hopkins University en Spring 2011 Lecture 11 04/25/2011 Security and Privacy in Cloud Computing.
1 Topic 1 – Lesson 3 Network Attacks Summary. 2 Questions ► Compare passive attacks and active attacks ► How do packet sniffers work? How to mitigate?

1 Topic 1 – Lesson 3 Network Attacks Summary. 2 Questions ► Compare passive attacks and active attacks ► How do packet sniffers work? How to mitigate?
Lecture 1: Overview modified from slides of Lawrie Brown.

Lecture 1: Overview modified from slides of Lawrie Brown.
Hey, You, Get Off of My Cloud

Hey, You, Get Off of My Cloud
Security Issues and Challenges in Cloud Computing

Security Issues and Challenges in Cloud Computing
INDEX  Ethical Hacking Terminology.  What is Ethical hacking?  Who are Ethical hacker?  How many types of hackers?  White Hats (Ethical hackers)

INDEX  Ethical Hacking Terminology.  What is Ethical hacking?  Who are Ethical hacker?  How many types of hackers?  White Hats (Ethical hackers)
Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.

Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.
CSA 223 network and web security Chapter one

CSA 223 network and web security Chapter one
1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.

1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.
Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.

Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.
Bharat Bhargava Computer Science Purdue University Research in Cloud Computing YounSun Cho Computer Science Purdue.

Bharat Bhargava Computer Science Purdue University Research in Cloud Computing YounSun Cho Computer Science Purdue.
Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.

Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.
CLOUD PRIVACY AND SECURITY CS 595 LECTURE 15 4/15/2015.

CLOUD PRIVACY AND SECURITY CS 595 LECTURE 15 4/15/2015.
Introduction (Pendahuluan)  Information Security.

Introduction (Pendahuluan)  Information Security.

Similar presentations

Ads by Google