Online services are increasingly becoming a composition of different cloud services, making incident-handling difficult, as Cloud Service Providers (CSPs) with end-user customers need information from other providers about incidents that occur at upstream CSPs to inform their users. In this paper, we argue the need for commonly agreed-upon incident information exchanges between providers to improve accountability of CSPs, and present both such a format and a prototype implementing it. The solution can handle simple incident information natively as well as embed standard representation formats for incident-sharing, such as IODEF and STIX. Preliminary interviews show a desire for such a solution. The discussion considers both technical challe...
This paper is from the SANS Institute Reading Room site. Reposting is not permitted without express ...
Interoperability and lacks in communication and information sharing are amongst the most common flaw...
Part 4: Special Session: Toward Trusted Cloud EcosystemsInternational audienceProtecting systems, ap...
Online services are increasingly becoming a composition of different cloud services, making incident...
In recent years, the use of cloud computing has increased significantly. More and more organizations...
With the ongoing advancements in Cloud Computing, new technologies and standards are being developed...
This paper presents an approach to handle compromised components in an Infrastructure-as-a-Service C...
In this chapter, we consider whether the outsourcing of incident management is a viable technologica...
Cyber-physical systems (CPSs) are part of many critical infrastructures such as industrial automatio...
Over the past few years, the number of attacks against IT systems and the resulting incidents has st...
Information technology (IT)-enabled financial services are typically delivered by a network of inter...
Important for cloud services the cloud computing share throw multiple clients , and it is more impor...
Cloud computing is increasingly playing an important role in the service provisioning domain given t...
Security concerns are often mentioned amongst the reasons why organizations hesitate to adopt Cloud ...
Cloud computing providers‘ and customers‘ services are not only exposed to existing security risks, ...
This paper is from the SANS Institute Reading Room site. Reposting is not permitted without express ...
Interoperability and lacks in communication and information sharing are amongst the most common flaw...
Part 4: Special Session: Toward Trusted Cloud EcosystemsInternational audienceProtecting systems, ap...
Online services are increasingly becoming a composition of different cloud services, making incident...
In recent years, the use of cloud computing has increased significantly. More and more organizations...
With the ongoing advancements in Cloud Computing, new technologies and standards are being developed...
This paper presents an approach to handle compromised components in an Infrastructure-as-a-Service C...
In this chapter, we consider whether the outsourcing of incident management is a viable technologica...
Cyber-physical systems (CPSs) are part of many critical infrastructures such as industrial automatio...
Over the past few years, the number of attacks against IT systems and the resulting incidents has st...
Information technology (IT)-enabled financial services are typically delivered by a network of inter...
Important for cloud services the cloud computing share throw multiple clients , and it is more impor...
Cloud computing is increasingly playing an important role in the service provisioning domain given t...
Security concerns are often mentioned amongst the reasons why organizations hesitate to adopt Cloud ...
Cloud computing providers‘ and customers‘ services are not only exposed to existing security risks, ...
This paper is from the SANS Institute Reading Room site. Reposting is not permitted without express ...
Interoperability and lacks in communication and information sharing are amongst the most common flaw...
Part 4: Special Session: Toward Trusted Cloud EcosystemsInternational audienceProtecting systems, ap...