Presentation is loading. Please wait.

Presentation is loading. Please wait.

Threat Modeling for Cloud Computing

Published by锡 祁 Modified over 6 years ago

Similar presentations

Presentation on theme: "Threat Modeling for Cloud Computing"— Presentation transcript:

1 Threat Modeling for Cloud Computing
(some slides are borrowed from Dr. Ragib Hasan) Keke Chen

2 Threats, vulnerabilities, and enemies
Goal Learn the cloud computing threat model by examining the assets, vulnerabilities, entry points, and actors in a cloud Technique Apply different threat modeling schemes

3 Threat Model A threat model helps in analyzing a security problem, design mitigation strategies, and evaluate solutions Steps: Identify attackers, assets, threats and other components Rank the threats Choose mitigation strategies Build solutions based on the strategies

4 Threat Model Basic components Assets / potentially attacked targets
Attacker modeling Choose what attacker to consider Attacker motivation and capabilities Vulnerabilities / threats

5 Recall: Cloud Computing Stack

6 Recall: Cloud Architecture
SaaS / PaaS Provider Client Cloud Provider (IaaS)

7 Assets – targets under attack

8 Assets Confidentiality: Data stored in the cloud
Configuration of VMs running on the cloud Identity of the cloud users Location of the VMs running client code

9 Assets Integrity Data stored in the cloud
Computations performed on the cloud

10 Assets Availability Cloud infrastructure SaaS / PaaS

11 Attackers

12 Who is the attacker? Insider? Outsider? Malicious employees at client
Malicious employees at Cloud provider Cloud provider itself Outsider? Intruders Network attackers?

13 Attacker Capability: Malicious Insiders
At client Learn passwords/authentication information Gain control of the VMs At cloud provider Log client communication

14 Attacker Capability: Cloud Provider
What can the attacker do? Can read unencrypted data Can possibly peek into VMs, or make copies of VMs Can monitor network communication, application patterns

15 Attacker motivation: Cloud Provider
Why? Gain information about client data Gain information on client behavior Use the information to improve services Sell the information to gain financial benefits

16 Attacker Capability: Outside attacker
What can the attacker do? Listen to network traffic (passive) Insert malicious traffic (active) Probe cloud structure (active) Launch DoS

17 Attacker goals: Outside attackers
Intrusion Network analysis (network security) Man in the middle: public key example Cartography: making map (original meaning), inference based on linked events/objects Req. pk_B Req. pk_B Pk_A: public key by A Pk_B: public key by B Pk_A’,Pk_B’: false public keys by M A M B Ret. Pk_B’ Ret. Pk_B Pk_B’(m) Pk_B(m’) A M B Pk_A(r’) Pk_A’(r)

18 Threats – methods doing attacks

19 Organizing the threats using STRIDE
Spoofing identity Tampering with data Repudiation (refuse to do with, dispute) Information disclosure Denial of service Escalation of privilege

20 Spoofing identity illegally obtaining access and use of another person’s authentication information Man in the middle URL phishing address spoofing ( spam)

21 Tampering with data Malicious modification of the data
Often hard and costly to detect you might not find the modified data until some time has passed; once you find one tampered item, you’ll have to thoroughly check all the other data on your systems

22 Repudiation a legitimate transaction will be disowned by one of the participants You sign a document first; and refused to confirm the signature Need a trusted third party to mitigate

23 Information/data disclosure
an attacker can gain access, without permission, to data that the owner doesn’t want him or her to have.

24 Denial of service an explicit attempt to prevent legitimate users from using a service or system. It involves the overuse of legitimate resources. You can stop all such attacks by removing the resource used by the attacker, but then real users can’t use the resource either.

25 Escalation of privilege
an unprivileged user gains privileged access. E.g. unprivileged user who contrives a way to be added to the Administrators group

26 Mitigation techniques
Threat type Mitigation technique Spoofing identity Authentication Protect secrets Do not store secrets Tampering with data Authorization Hashes Message authentication codes Digital signatures Tamper-resistant protocols Repudiation Audit trails

27 Typical threats (contd.)
Threat type Mitigation technique Information disclosure Authorization Privacy-enhanced protocols Encryption Protect secrets Do not store secrets Denial of service Authentication Filtering Throttling Quality of service Escalation of privilege Principle of least privilege

28 Threat tree: a thread analysis and modeling method

Download ppt "Threat Modeling for Cloud Computing"

Similar presentations

Network Security Chapter 1 - Introduction.

Network Security Chapter 1 - Introduction.
Cryptography and Network Security 2 nd Edition by William Stallings Note: Lecture slides by Lawrie Brown and Henric Johnson, Modified by Andrew Yang.

Cryptography and Network Security 2 nd Edition by William Stallings Note: Lecture slides by Lawrie Brown and Henric Johnson, Modified by Andrew Yang.
Lesson Title: Threat Modeling Dale R. Thompson Computer Science and Computer Engineering Dept. University of Arkansas 1 This.

Lesson Title: Threat Modeling Dale R. Thompson Computer Science and Computer Engineering Dept. University of Arkansas 1 This.
Ragib Hasan University of Alabama at Birmingham CS 491/691/791 Fall 2012 Lecture 2 08/21/2012 Security and Privacy in Cloud Computing.

Ragib Hasan University of Alabama at Birmingham CS 491/691/791 Fall 2012 Lecture 2 08/21/2012 Security and Privacy in Cloud Computing.
1 Computer Security Instructor: Dr. Bo Sun. 2 Course Objectives Understand basic issues, concepts, principles, and mechanisms in computer network security.

1 Computer Security Instructor: Dr. Bo Sun. 2 Course Objectives Understand basic issues, concepts, principles, and mechanisms in computer network security.
1 Topic 1 – Lesson 3 Network Attacks Summary. 2 Questions ► Compare passive attacks and active attacks ► How do packet sniffers work? How to mitigate?

1 Topic 1 – Lesson 3 Network Attacks Summary. 2 Questions ► Compare passive attacks and active attacks ► How do packet sniffers work? How to mitigate?
Security Issues and Challenges in Cloud Computing

Security Issues and Challenges in Cloud Computing
Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.

Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.
IT 221: Introduction to Information Security Principles Lecture 1: Introduction to IT Security For Educational Purposes Only Revised: August 28, 2002.

IT 221: Introduction to Information Security Principles Lecture 1: Introduction to IT Security For Educational Purposes Only Revised: August 28, 2002.
CSA 223 network and web security Chapter one

CSA 223 network and web security Chapter one
Security+ Guide to Network Security Fundamentals

Security+ Guide to Network Security Fundamentals
1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.

1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.
Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.

Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.
Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.
Security Overview. 2 Objectives Understand network security Understand security threat trends and their ramifications Understand the goals of network.

Security Overview. 2 Objectives Understand network security Understand security threat trends and their ramifications Understand the goals of network.
Authors: Thomas Ristenpart, et at.

Authors: Thomas Ristenpart, et at.
Network Infrastructure Security. LAN Security Local area networks facilitate the storage and retrieval of programs and data used by a group of people.

Network Infrastructure Security. LAN Security Local area networks facilitate the storage and retrieval of programs and data used by a group of people.
Threat Modeling for Cloud Computing (some slides are borrowed from Dr. Ragib Hasan) Keke Chen 1.

Threat Modeling for Cloud Computing (some slides are borrowed from Dr. Ragib Hasan) Keke Chen 1.
Computer Security Tran, Van Hoai Department of Systems & Networking Faculty of Computer Science & Engineering HCMC University of Technology.

Computer Security Tran, Van Hoai Department of Systems & Networking Faculty of Computer Science & Engineering HCMC University of Technology.
Ragib Hasan Johns Hopkins University en.600.412 Spring 2010 Lecture 2 02/01/2010 Security and Privacy in Cloud Computing.

Ragib Hasan Johns Hopkins University en Spring 2010 Lecture 2 02/01/2010 Security and Privacy in Cloud Computing.

Similar presentations

Ads by Google