On Man-In-The-Cloud (MITC) attacks: The analytical case of Linux

机译：关于“云端人”（MITC）攻击：Linux的分析案例

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

Device synchronization is a new technology integrated into the cloud which has seen widespread implementation from major cloud vendors but has not been spared of attacks by MITC attacks directed towards cloud synchronization achieved via a myriad of attack vectors. These target the synchronization token which lacks authenticity validation of the token bearer. We explore MITC in Linux systems by partitioning the cloud into abstract layers and employing a conceptual finite state machine for system security modeling and attack trees for analysis. We further deduce MITC attack properties and contrast them against conventional attacks and thus recommend mitigation techniques.

机译：设备同步是一种集成到云中的新技术，已从主要的云供应商处广泛实施，但并没有幸免于MITC攻击的攻击，而MITC攻击针对通过多种攻击媒介实现的云同步。它们以缺少令牌载体的真实性验证的同步令牌为目标。我们通过将云划分为抽象层并使用概念性有限状态机进行系统安全性建模并使用攻击树进行分析来探索Linux系统中的MITC。我们进一步推断出MITC攻击属性，并将其与常规攻击进行对比，从而推荐缓解技术。

著录项

来源
《IEEE International Conference on Intelligence and Security Informatics》|2017年|170-172|共3页
会议地点
作者
Aaron Zimba; Zhaoshun Wang;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类
关键词
Synchronization; Cloud computing; Linux; Security; Mathematical model; Google; Servers;

机译：同步;云计算; Linux;安全性;数学模型; Google;服务器;

相似文献

外文文献
中文文献
专利

1. FGMC-HADS: Fuzzy Gaussian mixture-based correntropy models for detecting zero-day attacks from linux systems [J] . Waqas Haider, Nour Moustafa, Marwa Keshk, Computers & Security . 2020,第Sepa期

机译：FGMC - HATS：基于模糊的高斯混合的矫正模型，用于检测Linux系统的零日攻击
2. Analysis of ROP Attack on Grsecurity/PaX Linux Kernel Security Variables [J] . Jie-Wu Xia International journal of instrumentation science and engineering . 2018,第2期

机译：GRSECURITY / PAX Linux内核安全变量对ROP攻击分析
3. Analysis of ROP Attack on Grsecurity/PaX Linux Kernel Security Variables [J] . Zhong Zheng Koo, Zakiah Ayop, ZaheeraZainal Abidin International Journal of Applied Engineering Research . 2017,第23aPta2期

机译：GRSECURITY / PAX Linux内核安全变量对ROP攻击分析
4. On Man-In-The-Cloud (MITC) attacks: The analytical case of Linux [C] . Aaron Zimba, Zhaoshun Wang IEEE International Conference on Intelligence and Security Informatics . 2017

机译：在云中（MITC）攻击：Linux的分析情况
5. Behavioral Patterns of Kernel Level Rootkits Attacking Containers in Linux Environment [D] . Alexander, Nidhin Samuel. 2017

机译：Linux环境中攻击容器的内核级rootkits的行为模式
6. A predictive analytics model for differentiating between transient ischemic attacks (TIA) and its mimics [O] . Alia Stanciu, Mihai Banciu, Alireza Sadighi, 2020

机译：用于区分瞬态缺血攻击（TIA）及其模拟的预测分析模型
7. Security against Fork Bomb Attack in Linux Based Systems [O] . Krunalkumar D. Shah, Krunal V. Patel 2019

机译：基于Linux系统的叉炸弹攻击的安全性
8. Defense against Kamikaze Attacks in World War II and Its Relevance to Anti-Ship Missile Defense. Volume I. An Analytical History of Kamikaze Attacks Against Ships of the United States Navy During World War II. [R] . Timenes, N. 1970

机译：第二次世界大战中对神风攻击的防御及其与反舰导弹防御的关联性。第一卷第二次世界大战期间神风攻击美国海军舰船的分析历史。

On Man-In-The-Cloud (MITC) attacks: The analytical case of Linux

摘要

著录项

相似文献

相关主题

期刊订阅