Understanding cloud computing vulnerabilities

IEEE Security and Privacy

Volumn 9, Issue 2, 2011, Pages 50-57

  Grobauer, Bernd ^a   Walloschek, Tobias ^a   Stöcker, Elmar ^a  

^a Siemens ^*  (United States)

Author keywords

cloud computing; computer systems organization; emerging technologies; network security; Risk management; security; software engineering

Indexed keywords

ARCHITECTURAL COMPONENTS; COMPUTER SYSTEMS ORGANIZATION; COMPUTING SECURITY; EMERGING TECHNOLOGIES; REFERENCE ARCHITECTURE; RISK FACTORS; SECURITY; SECURITY ISSUES;

COMPUTER SYSTEMS; NETWORK MANAGEMENT; NETWORK SECURITY; RISK ANALYSIS; RISK MANAGEMENT; SOFTWARE ENGINEERING;

CLOUD COMPUTING;

EID: 79953657305     PISSN: 15407993     EISSN: None     Source Type: Journal    
DOI: 10.1109/MSP.2010.115     Document Type: Article

References (5)

1. ISO/IEC 27005:2007 Information Technology-Security Techniques-Information Security Risk Management, Int'l Org. Standardization, 2007.
2. P. Mell and T. Grance, "Effectively and Securely Using the Cloud Computing Paradigm (v0.25)," presentation, US Nat'l Inst. Standards and Technology, 2009; http:// csrc.nist.gov/groups/SNS/cloud-computing.
3. European Network and Information Security Agency (ENISA), Cloud Computing: Benefits, Risks and Recommendations for Information Security, Nov. 2009; www. enisa.europa.eu/act/rm/f iles/del iverables/cloud -computing-risk-assessment/at-download/fullReport.
4. L. Youseff, M. Butrico, and D. Da Silva, "Towards a Unified Ontology of Cloud Computing," Proc. Grid Computing Environments Workshop (GCE), IEEE Press, 2008; doi: 10.1109/GCE.2008.4738443.
5. E. Grosse, "Security at Scale," invited talk, ACM Cloud Security Workshop (CCSW), 2010; http://wn. com/2010-Google-Faculty-Summit- Security-at-Scale.