book

Cloud Security: A Comprehensive Guide to Secure Cloud Computing

Name: Cloud Security: A Comprehensive Guide to Secure Cloud Computing
ISBN: 9780470589878

by Ronald L. Krutz, Russell Dean Vines

August 2010

Intermediate to advanced

384 pages

9h 45m

English

Wiley

Read now

Unlock full access

Copyright
About the Authors
Credits
Acknowledgments
Foreword
Introduction
Overview of the Book and TechnologyHow This Book Is OrganizedWho Should Read This BookSummary
1. Cloud Computing Fundamentals
1.1. What Is Cloud Computing?1.1.1. What Cloud Computing Isn't1.1.2. Alternative Views1.2. Essential Characteristics1.2.1. On-Demand Self-Service1.2.2. BroadNetwork Access1.2.3. Location-Independent Resource Pooling1.2.4. Rapid Elasticity1.2.5. Measured Service1.3. Architectural Influences1.3.1. High-Performance Computing1.3.2. Utility and Enterprise Grid Computing1.3.3. Autonomic Computing1.3.4. Service Consolidation1.3.5. Horizontal Scaling1.3.6. Web Services1.3.7. High-Scalability Architecture1.4. Technological Influences1.4.1. Universal Connectivity1.4.2. Commoditization1.4.3. Excess Capacity1.4.4. Open-Source Software1.4.5. Virtualization1.5. Operational Influences1.5.1. Consolidation1.5.2. Outsourcing1.5.2.1. Outsourcing Legal Issues1.5.2.2. Business Process Outsourcing (BPO) Issues1.5.3. IT Service Management1.5.4. Automation1.6. Summary1.7. Notes
2. Cloud Computing Architecture
2.1. Cloud Delivery Models2.1.1. The SPI Framework2.1.1.1. SPI Evolution2.1.1.2. The SPI Framework vs. the Traditional IT Model2.1.2. Cloud Software as a Service (SaaS)2.1.2.1. Benefits of the SaaS Model2.1.3. Cloud Platform as a Service (PaaS)2.1.4. Cloud Infrastructure as a Service (IaaS)2.2. Cloud Deployment Models2.2.1. Public Clouds2.2.2. Community Clouds2.2.3. Private Clouds2.2.4. Hybrid Clouds2.2.5. Alternative Deployment Models2.2.5.1. The Linthicum Model2.2.5.2. The Jericho Cloud Cube Model2.2.5.2.1. Internal (I)/External (E)2.2.5.2.2. Proprietary (P)/Open (O)2.2.5.2.3. Perimeterized (Per)/De-perimeterized (D-p) Architectures2.2.5.2.4. Insourced / Outsource2.3. Expected Benefits2.3.1. Flexibility and Resiliency2.3.2. Reduced Costs2.3.3. Centralization of Data Storage2.3.4. Reduced Time to Deployment2.3.5. Scalability2.4. Summary2.5. Notes
3. Cloud Computing Software Security Fundamentals
3.1. Cloud Information Security Objectives3.1.1. Confidentiality, Integrity, and Availability3.1.2. Confidentiality3.1.3. Integrity3.1.4. Availability3.2. Cloud Security Services3.2.1. Authentication3.2.2. Authorization3.2.3. Auditing3.2.4. Accountability3.3. Relevant Cloud Security Design Principles3.3.1. Least Privilege3.3.2. Separation of Duties3.3.3. Defense in Depth3.3.4. Fail Safe3.3.5. Economy of Mechanism3.3.6. Complete Mediation3.3.7. Open Design3.3.8. Least Common Mechanism3.3.9. Psychological Acceptability3.3.10. Weakest Link3.3.11. Leveraging Existing Components3.4. Secure Cloud Software Requirements3.4.1. Secure Development Practices3.4.1.1. Handling Data3.4.1.2. Code Practices3.4.1.3. Language Options3.4.1.4. Input Validation and Content Injection3.4.1.5. Physical Security of the System3.4.2. Approaches to Cloud Software Requirements Engineering3.4.2.1. A Resource Perspective on Cloud Software Security Requirements3.4.2.2. Goal-Oriented Software Security Requirements3.4.2.3. Monitoring Internal and External Requirements3.4.3. Cloud Security Policy Implementation and Decomposition3.4.3.1. Implementation Issues3.4.3.2. Decomposing Critical Security Issues into Secure Cloud Software Requirements3.4.3.2.1. Confidentiality3.4.3.2.2. Integrity3.4.3.2.3. Availability3.4.3.2.4. Authentication and Identification3.4.3.2.5. Authorization3.4.3.2.6. Auditing3.4.4. NIST 33 Security Principles3.5. Secure Cloud Software Testing3.5.1. Testing for Security Quality Assurance3.5.1.1. Conformance Testing3.5.1.2. Functional Testing3.5.1.3. Performance Testing3.5.1.4. Security Testing3.5.1.4.1. Fault Injection3.5.1.4.2. Source Code Fault Injection3.5.1.4.3. Binary Fault Injection3.5.1.4.4. Dynamic Code Analysis3.5.1.4.5. Property-Based Testing3.5.1.4.6. Black Box Debugging3.5.1.4.7. Interoperability Testing3.5.2. Cloud Penetration Testing3.5.3. Legal and Ethical Implications3.5.3.1. The Three Pre-Test Phases3.5.3.1.1. Footprinting3.5.3.1.2. Scanning3.5.3.1.3. Enumerating3.5.3.2. Penetration Testing Tools and Techniques3.5.3.2.1. Port Scanners3.5.3.2.2. Vulnerability Scanners3.5.3.2.3. Password Crackers3.5.3.2.4. Trojan Horses3.5.3.2.5. Buffer Overflows3.5.3.2.6. SQL Injection Attack3.5.3.2.7. Cross-Site Scripting (XSS)3.5.3.2.8. Social Engineering3.5.4. Regression Testing3.6. Cloud Computing and Business Continuity Planning/Disaster Recovery3.6.1. Definitions3.6.1.1. General Principles and Practices3.6.1.2. Disaster Recovery Planning3.6.1.2.1. Disaster Recovery Plan Testing3.6.1.2.2. Management Roles3.6.1.3. Business Continuity Planning3.6.1.3.1. The BIA3.6.1.3.2. The Vulnerability Assessment3.6.2. Using the Cloud for BCP/DRP3.6.2.1. Redundancy Provided by the Cloud3.6.2.2. Secure Remote Access3.6.2.3. Integration into Normal Business Processes3.7. Summary3.8. Notes
4. Cloud Computing Risk Issues
4.1. The CIA Triad4.1.1. Confidentiality4.1.2. Integrity4.1.3. Availability4.1.4. Other Important Concepts4.2. Privacy and Compliance Risks4.2.1. The Payment Card Industry Data Security Standard (PCI DSS)4.2.2. Information Privacy and Privacy Laws4.2.2.1. Privacy Legislation4.2.2.2. Health Insurance Portability and Accountability Act (HIPAA)4.2.2.3. HITECH Act4.2.2.4. Platform for Privacy Preferences (P3P)4.2.2.5. PATRIOT Act4.2.2.6. Federal Information Security Management Act (FISMA)4.2.2.7. Other Privacy-Related Acts4.2.2.8. European Union (EU) Principles4.3. Threats to Infrastructure, Data, and Access Control4.3.1. Common Threats and Vulnerabilities4.3.1.1. Logon Abuse4.3.1.2. Inappropriate System Use4.3.1.3. Eavesdropping4.3.1.4. Network Intrusion4.3.1.5. Denial-of-Service (DoS) Attacks4.3.1.6. Session Hijacking Attacks4.3.1.7. Fragmentation Attacks4.3.2. Cloud Access Control Issues4.3.2.1. Database Integrity Issues4.4. Cloud Service Provider Risks4.4.1. Back-Door4.4.2. Spoofing4.4.3. Man-in-the-Middle4.4.4. Replay4.4.5. TCP Hijacking4.4.6. Social Engineering4.4.7. Dumpster Diving4.4.8. Password Guessing4.4.9. Trojan Horses and Malware4.5. Summary4.6. Notes

5. Cloud Computing Security Challenges
5.1. Security Policy Implementation5.1.1. Policy Types5.1.1.1. Senior Management Statement of Policy5.1.1.2. Regulatory Policies5.1.1.3. Advisory Policies5.1.1.4. Informative Policies5.1.2. Computer Security Incident Response Team (CSIRT)5.2. Virtualization Security Management5.2.1. Virtual Threats5.2.1.1. Hypervisor Risks5.2.1.1.1. Rogue Hypervisors5.2.1.1.2. External Modification of the Hypervisor5.2.1.1.3. VM Escape5.2.1.2. Increased Denial of Service Risk5.2.2. VM Security Recommendations5.2.2.1. Best Practice Security Techniques5.2.2.1.1. Hardening the Host Operating System5.2.2.1.2. Limiting Physical Access to the Host5.2.2.1.3. Using Encrypted Communications5.2.2.1.4. Disabling Background Tasks5.2.2.1.5. Updating and Patching5.2.2.1.6. Enabling Perimeter Defense on the VM5.2.2.1.7. Implementing File Integrity Checks5.2.2.1.8. Maintaining Backups5.2.3. VM-Specific Security Techniques5.2.3.1. Hardening the Virtual Machine5.2.3.1.1. Harden the Hypervisor5.2.3.1.2. Root Secure the Monitor5.2.3.1.3. Implement Only One Primary Function per VM5.2.3.1.4. Firewall Any Additional VM Ports5.2.3.1.5. Harden the Host Domain5.2.3.1.6. Use Unique NICs for Sensitive VMs5.2.3.1.7. Disconnect Unused Devices5.2.3.1.8. Additional VM Recommendations5.2.3.2. Securing VM Remote Access5.3. Summary5.4. Notes
6. Cloud Computing Security Architecture
6.1. Architectural Considerations6.1.1. General Issues6.1.1.1. Compliance6.1.1.2. Security Management6.1.1.2.1. Controls6.1.1.2.2. Complementary Actions6.1.1.3. Information Classification6.1.1.3.1. Information Classification Objectives6.1.1.3.2. Information Classification Benefits6.1.1.3.3. Information Classification Concepts6.1.1.3.4. Classification Criteria6.1.1.3.5. Information Classification Procedures6.1.1.3.6. Distribution of Classified Information6.1.1.4. Employee Termination6.1.1.5. Security Awareness, Training, and Education6.1.1.5.1. Security Awareness6.1.1.5.2. Training and Education6.1.2. Trusted Cloud Computing6.1.2.1. Trusted Computing Characteristics6.1.3. Secure Execution Environments and Communications6.1.3.1. Secure Execution Environment6.1.3.2. Secure Communications6.1.3.2.1. APIs6.1.3.2.2. Virtual Private Networks6.1.3.2.3. Remote Access VPNs6.1.3.2.4. Network-to-Network VPNs6.1.3.2.5. VPN Tunneling6.1.3.2.6. Public Key Infrastructure and Encryption Key Management6.1.3.2.7. Digital Certificates6.1.3.2.8. Directories and X.5006.1.3.2.9. The Lightweight Directory Access Protocol6.1.3.2.10. X.509 Certificates6.1.3.2.11. Certificate Revocation Lists6.1.3.2.12. Key Management6.1.3.2.13. Key Distribution6.1.3.2.14. Key Revocation6.1.3.2.15. Key Recovery6.1.3.2.16. Key Renewal6.1.3.2.17. Key Destruction6.1.3.2.18. Multiple Keys6.1.3.2.19. Distributed versus Centralized Key Management6.1.3.2.20. Further Considerations6.1.4. Microarchitectures6.2. Identity Management and Access Control6.2.1. Identity Management6.2.1.1. Passwords6.2.1.2. Tokens6.2.1.3. Memory Cards6.2.1.4. Smart Cards6.2.1.5. Biometrics6.2.1.6. Implementing Identity Management6.2.2. Access Control6.2.2.1. Controls6.2.2.2. Models for Controlling Access6.2.2.2.1. Mandatory Access Control6.2.2.2.2. Discretionary Access Control6.2.2.2.3. Nondiscretionary Access Control6.2.2.3. Single Sign-On (SSO)6.3. Autonomic Security6.3.1. Autonomic Systems6.3.2. Autonomic Protection6.3.3. Autonomic Self-Healing6.4. Summary6.5. Notes
7. Cloud Computing Life Cycle Issues
7.1. Standards7.1.1. Jericho Forum7.1.2. The Distributed Management Task Force (DMTF)7.1.2.1. The DMTF Open Virtualization Format (OVF)7.1.2.2. The DMTF Open Cloud Standards Incubator7.1.3. The International Organization for Standardization (ISO)7.1.3.1. ISO 270017.1.3.2. ISO 270027.1.3.3. ISO 270037.1.3.4. ISO 270047.1.3.5. ISO 270057.1.3.6. ISO 270067.1.3.7. International Organization for Standardization/International Electrotechnical Commission ISO/IEC 29361, ISO/IEC 29362, and ISO/IEC 29363 Standards7.1.3.8. Distributed Application Platforms and Services7.1.4. The European Telecommunications Standards Institute (ETSI)7.1.5. The Organization for the Advancement of Structured Information Standards (OASIS)7.1.6. Storage Networking Industry Association (SNIA)7.1.7. Open Grid Forum (OGF)7.1.8. The Open Web Application Security Project (OWASP)7.1.8.1. OWASP Top Ten Project7.1.8.2. OWASP Development Guide7.1.8.3. OWASP Code Review Guide7.1.8.4. OWASP Testing Guide7.2. Incident Response7.2.1. NIST Special Publication 800-617.2.1.1. Preparation7.2.1.2. Detection and Analysis7.2.1.3. Containment, Eradication, and Recovery7.2.1.4. Post-Incident Activity7.2.1.5. NIST Incident-Handling Summary7.2.2. Internet Engineering Task Force Incident-Handling Guidelines7.2.3. Layered Security and IDS7.2.3.1. Intrusion Detection7.2.3.1.1. Network-Based ID7.2.3.1.2. Host-Based ID7.2.3.1.3. Signature-Based ID7.2.3.1.4. Statistical Anomaly-Based ID7.2.3.2. IDS Issues7.2.4. Computer Security and Incident Response Teams7.2.4.1. CERT/CC7.2.4.2. FedCIRC7.2.4.3. Forum of Incident Response and Security Teams7.2.5. Security Incident Notification Process7.2.6. Automated Notice and Recovery Mechanisms7.3. Encryption and Key Management7.3.1. VM Architecture7.3.2. Key Protection Countermeasures7.3.3. Hardware Protection7.3.4. Software-Based Protection7.3.5. Data Deduplication7.3.5.1. Hashing7.4. Retirement7.4.1. VM Life Cycle7.4.1.1. Overwriting7.4.1.2. Degaussing7.4.1.3. Destruction7.4.1.4. Record Retention7.4.1.5. Data Remanence7.4.1.6. Due Care and Due Diligence7.4.1.7. Documentation Control7.5. Summary7.6. Notes
8. Useful Next Steps and Approaches
8.1. Getting Answers8.1.1. What Services Should Be Moved to the Cloud?8.1.2. What Questions Should You Ask Your Cloud Provider?8.1.3. When Should You Use a Public, Private, or Hybrid Cloud?8.2. Getting Help8.2.1. Cloud Security Alliance8.2.2. Cloud Computing Google Groups8.2.3. Cloud Computing Interoperability Forum8.2.4. Open Cloud Consortium8.3. Getting Started8.3.1. Top Ten List8.3.1.1. Assess Your Data's Sensitivity8.3.1.1.1. The Information Classification Process8.3.1.1.2. Classification Criteria8.3.1.1.3. Information Classification Procedures8.3.1.2. Analyze the Risks vs. Benefits of Cloud Computing8.3.1.2.1. Risk Management8.3.1.2.2. Trade-off Analysis8.3.1.2.3. Cloud Cube Model8.3.1.3. Define Business Objectives8.3.1.4. Understand the Underlying Structure of Your Network8.3.1.5. Implement Traditional Best Practice Security Solutions8.3.1.6. Employ Virtualization Best Practices8.3.1.7. Prevent Data Loss with Backups8.3.1.8. Monitor and Audit8.3.1.9. Seek Out Advice8.3.1.10. Employ Deception8.4. Parting Words8.5. Notes
A. Glossary of Terms and Acronyms
References

Content preview from Cloud Security: A Comprehensive Guide to Secure Cloud Computing

Chapter 4. Cloud Computing Risk Issues

Institutions will try to preserve the problem to which they are the solution.

—–Clay Shirky

In addition to the risks and threats inherent in traditional IT computing, cloud computing presents an organization with its own set of security issues.

This chapter examines cloud computing risk to privacy assurance and compliance regulations, how cloud computing presents a unique risk to "traditional" concepts of data, identity, and access management traversing infrastructure, and how those risks and threats may be unique to cloud service providers (CSP).

The CIA Triad

The three fundamental tenets of information security — confidentiality, integrity, and availability (CIA) — define an organization's security posture. All of the information security controls and safeguards, and all of the threats, vulnerabilities, and security processes are subject to the CIA yardstick.

Confidentiality

Confidentiality is the prevention of the intentional or unintentional unauthorized disclosure of contents. Loss of confidentiality can occur in many ways. For example, loss of confidentiality can occur through the intentional release of private company information or through a misapplication of network rights.

Some of the elements of telecommunications used to ensure confidentiality are as follows:

Network security protocols
Network authentication services
Data encryption services

Integrity

Integrity is the guarantee that the message sent is the message received and that the message ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Publisher Resources

ISBN: 9780470589878Purchase book

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business