All your cluster-grids are belong to us: Monitoring the (in)security of infrastructure monitoring systems

2015 IEEE Conference on Communications and NetworkSecurity, CNS 2015

Volumn , Issue , 2015, Pages 550-558

  Costin, Andrei ^a  

^a EURECOM   (France)

Author keywords

[No Author keywords available]

Indexed keywords

ELECTRIC POWER SYSTEM SECURITY; MONITORING;

CLUSTER GRIDS; HIGH PERFORMANCE COMPUTING SYSTEMS; INFRASTRUCTURE MONITORING; MONITORING SYSTEM; MONITORING TOOLS; OR-NETWORKS; SYSTEM ADMINISTRATORS;

NETWORK SECURITY;

EID: 84966309009     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/CNS.2015.7346868     Document Type: Conference Paper

References (56)

1. Arachni scanner. http://arachni-scanner. com.
2. Argus. http://argus. Tcp4me. com/.
3. Cacti. http://www. cacti. net/.
4. Collectd. http://collectd. org/.
5. CVEs for Linux Kernel 2. 6. 32. http://cvedetails. com/version-search. php? vendor=linux&product=&version=2. 6. 32.
6. Ganglia. http://ganglia. info/.
7. Grsecurity. https://grsecurity. net/.
8. Monit. http://mmonit. com/monit/.
9. Munin. http://munin-monitoring. org/.
10. Nagios. http://www. nagios. org/.
11. Observium. http://www. observium. org.
12. Shodan search engine. http://shodan. io.
13. Statistics for websites using framework technologies. http://trends. Builtwith. com/framework.
14. SUNY Buffalo HPC. http://casc. org/meetings/10sep/Furlani. ppt.
15. Usage of server-side programming languages for websites. http:// w3techs. com/technologies/overview/programming language/all.
16. Zabbix. http://www. zabbix. com/.
17. Zenoss. http://www. zenoss. com/.
18. J. Bau, E. Bursztein, D. Gupta, and J. Mitchell. State of the Art: Automated Black-Box Web Application Vulnerability Testing. In IEEE Symposium on Security and Privacy, 2010.
19. R. Bhadauria and S. Sanyal. Survey on security issues in cloud computing and associated mitigation techniques. ArXiv:1204. 0764, 2012.
20. L. Bruno, M. Graziano, D. Balzarotti, and A. Francillon. Through the looking-glass, and what eve found there. In USENIX Workshop on Offensive Technologies (WOOT). USENIX Association, 2014.
21. S. Christey and R. A. Martin. Vulnerability type distributions in CVE. Mitre Report, 2007.
22. J. Dahse and T. Holz. Simulation of Built-in PHP Features for Precise Static Code Analysis. In ISOC Network and Distributed System Security Symposium (NDSS), 2014.
23. Firehost. The Superfecta Report Special Edition. 2013.
24. P. Fogla, M. I. Sharif, R. Perdisci, O. M. Kolesnikov, and W. Lee. Polymorphic Blending Attacks. In USENIX Security Symposium, 2006.
25. J. T. Giffin, S. Jha, and B. P. Miller. Automated discovery of mimicry attacks. In International Symposium on Recent Advances in Intrusion Detection (RAID). Springer, 2006.
26. L. Y. L. J. Z. Haiyan. The application of cacti in the campus network traffic monitoring [j]. Computer & Telecommunication, 2008.
27. J. Idziorek. Exploiting cloud utility models for profit and ruin. 2012.
28. J. Idziorek and M. Tannian. Exploiting cloud utility models for profit and ruin. In Cloud Computing (CLOUD), 2011 IEEE International Conference on. IEEE, 2011.
29. W. Jansen and T. Grance. Nist sp 800-144. guidelines on security and privacy in public cloud computing. 2011.
30. M. Johns. Code-injection Vulnerabilities in Web ApplicationsExemplified at Cross-site Scripting. it-Information Technology Methoden und innovative Anwendungen der Informatik und Informationstechnik, 2011.
31. N. Jovanovic, C. Kruegel, and E. Kirda. Pixy: A Static Analysis Tool for Detecting Web Application Vulnerabilities (Short Paper). In IEEE Symposium on Security and Privacy, 2006.
32. H. G. Kayacik and A. N. Zincir-Heywood. Mimicry attacks demystified: What can attackers do to evade detection? In Privacy, Security and Trust, 2008. PST'08. Sixth Annual Conference on. IEEE, 2008.
33. O. Kolesnikov and W. Lee. Advanced polymorphic worms: Evading IDS by blending in with normal traffic. 2005.
34. C. Kruegel, E. Kirda, D. Mutz, W. Robertson, and G. Vigna. Automating mimicry attacks using static binary analysis. In USENIX Security Symposium. USENIX Association, 2005.
35. G. LI, L.-x. ZHOU, X.-l. WANG, S.-c. QI, H.-q. YAO, and J.-y. SUN. Application of open source systems in the seismic monitoring network [j]. Northwestern Seismological Journal, 2011.
36. M. L. Massie, B. N. Chun, and D. E. Culler. The ganglia distributed monitoring system: design, implementation, and experience. Parallel Computing, 2004.
37. D. Molnar and S. E. Schechter. Self Hosting vs. Cloud Hosting: Accounting for the Security Impact of Hosting in the Cloud. In Workshop on Economics of Information Security (WEIS), 2010.
38. M. Montanari and R. H. Campbell. Attack-resilient compliance monitoring for large distributed infrastructure systems. In Network and System Security (NSS), 2011 5th International Conference on. IEEE, 2011.
39. M. Moses. Network and service reconnaissance. 2013.
40. S. Pearson and A. Benameur. Privacy, security and trust issues arising from cloud computing. In Cloud Computing Technology and Science (CloudCom), Second International Conference on. IEEE, 2010.
41. M. Pourzandi, D. Gordon, W. Yurcik, and G. A. Koenig. Clusters and security: distributed security for distributed systems. In Cluster Computing and the Grid, 2005. CCGrid 2005. IEEE International Symposium on. IEEE, 2005.
42. U. B. M. Project. Millennium project web page. http://www. millennium. Berkeley. edu, 1999.
43. T. Ristenpart, E. Tromer, H. Shacham, and S. Savage. Hey, you, get off of my cloud: exploring information leakage in third-party compute clouds. In ACM Conference on Computer and Communications Security (CCS). ACM, 2009.
44. S. Sengupta, V. Kaulgud, and V. S. Sharma. Cloud computing security-trends and research directions. In Services (SERVICES), 2011 IEEE World Congress on. IEEE, 2011.
45. P. Sharma, S. K. Sood, and S. Kaur. Security issues in cloud computing. In High Performance Architecture and Grid Computing. Springer, 2011.
46. E. Skoudis and T. Liston. Counter hack reloaded: A step-by-step guide to computer attacks and effective defenses. Prentice Hall Press, 2005.
47. J. Somorovsky, M. Heiderich, M. Jensen, J. Schwenk, N. Gruschka, and L. Lo Iacono. All Your Clouds Are Belong to Us: Security Analysis of Cloud Management Interfaces. In Proceedings of the 3rd ACM Workshop on Cloud Computing Security Workshop, 2011.
48. K. Tan, J. McHugh, and K. Killourhy. Hiding intrusions: From the abnormal to the normal and beyond. In Information Hiding. Springer, 2003.
49. K. Vieira, A. Schulter, C. Westphall, and C. Westphall. Intrusion detection for grid and cloud computing. It Professional, 2009.
50. P. Vogt, F. Nentwich, N. Jovanovic, E. Kirda, C. Kruegel, and G. Vigna. Cross Site Scripting Prevention with Dynamic Data Tainting and Static Analysis. In ISOC Network and Distributed System Security Symposium (NDSS), 2007.
51. D. Wagner and P. Soto. Mimicry attacks on host-based intrusion detection systems. In ACM Conference on Computer and Communications Security (CCS). ACM, 2002.
52. WhiteHat. Website Security Statistics Report. WhiteHat Report, 2013.
53. W. Yurcik and C. Liu. A first step toward detecting SSH identity theft in HPC cluster environments: discriminating masqueraders based on command behavior. In Cluster Computing and the Grid, 2005. CCGrid 2005. IEEE International Symposium on. IEEE, 2005.
54. W. Yurcik, X. Meng, and N. Kiyanclar. Nvisioncc: A visualization framework for high performance cluster security. In Proceedings of the 2004 ACM workshop on Visualization and data mining for computer security. ACM, 2004.
55. M. Zalewski. Silence on the wire: A field guide to passive reconnaissance and indirect attacks. No Starch Press, 2005.
56. Y. Zhang, A. Juels, A. Oprea, and M. K. Reiter. Homealone: Coresidency detection in the cloud via side-channel analysis. In IEEE Symposium on Security and Privacy. IEEE, 2011.