ABSTRACT
In modern days, use of service-oriented architecture (SoA) is becoming popular due to the use of public cloud. A cloud can provide storage services, computing services and infrastructure without any capital or operational expenditure. From a single user to a multi-national million dollar business can easily receive several types of services from a public cloud. There are numerous cloud providers in the market. Among the prominent ones, such as Amazon AWS, Google Cloud Platform (GCP), and Microsoft Azure etc. GCP offers a wide array of services for many organizations and individuals around the world like other cloud providers. However, the question is, all those data, confidential information, intellectual property of individual or industries safe enough? Information has become the most expensive commodity in modern days. A government can be shutdown, a transport system can be disabled, annoying spam calls, phishing emails, cyber bullying and more security threats exist around us. Can we trust a public service provider? Hence, our initiative aims at investigating that GCP is secure from inside attackers. Why we chose inside attackers? Well the idea is to check if GCP can detect and ignore an attack launched internally. In this case, it should be secure enough to prevent from outsiders as well. The research investigation would involve Distributed Denial of Service (DDoS) attacks against a local virtual machine (VM) launched from GCP. There is a broad spectrum of VMs available in GCP compute engine service.
- Legorie Rajan. 2018. "Google Cloud Platform cookbook: implement, deploy, maintain, and migrate applications on Google Cloud Platform", Birmingham, UK: Packt Publishing.Google Scholar
- Ted Hunter and Steven Porter. 2018. "Google Cloud Platform for developers: building highly scalable, resilient web services with the power of Google Cloud Platform", Birmingham, U.K.: Packt Publishing Ltd.Google Scholar
- Michael Annor-Asante and Bernardi Pranggono. 2018. Development of Smart Grid Testbed with Low-Cost Hardware and Software for Cybersecurity Research and Education. (April 2018). Retrieved April 20, 2019 from https://link.springer.com/article/10.1007/s11277-018-5766-6.Google Scholar
- Molly Sauter. 2013. "LOIC Will Tear Us Apart": The Impact of Tool Design and Media Portrayals in the Success of Activist DDOS Attacks. (March 2013). Retrieved April 20, 2019 from Google ScholarCross Ref
- Josune Hernantes, Gorka Gallardo, and Nicolas Serrano. 2015. IT Infrastructure-Monitoring Tools. (2015). Retrieved April 20, 2019 from https://ieeexplore.ieee.org/document/7140697Google Scholar
- Kazi Zunnurhain and Susan V. Vrbsky. 2010. Security Attacks and Solutions in Clouds. (December 2010). Retrieved April 30, 2019 from https://pdfs.semanticscholar.org/3f29/bcf67ddaa3991ad2c15046c51f6a309d01f8.pdfGoogle Scholar
- Kazi Zunnurhain and Susan V. Vrbsky. 2011. Security in Cloud Computing. (2011). Retrieved April 30, 2019 from https://pdfs.semanticscholar.org/d8b8/8c941fe400161123fd04300f721f6bdf26fb.pdfGoogle Scholar
- Kazi Zunnurhain and Susan V. Vrbsky. 2012. FAPA: A Model to Prevent Flooding Attacks in Clouds. (March 2012). Retrieved May 6, 2019 from http://worldcomp-proceedings.com/proc/p2013/SAM9705.pdfGoogle Scholar
- Kazi Zunnurhain. 2014. FAPA: flooding attack protection architecture in a cloud system. (2014). Retrieved April 30, 2019 from https://ir.ua.edu/handle/123456789/2128Google Scholar
Recommendations
Insider Threats to Cloud Computing: Directions for New Research Challenges
COMPSAC '12: Proceedings of the 2012 IEEE 36th Annual Computer Software and Applications ConferenceCloud computing related insider threats are often listed as a serious concern by security researchers, but to date this threat has not been thoroughly explored. We believe the fundamental nature of current insider threats will remain relatively ...
A survey and taxonomy of DoS attacks in cloud computing
Denial-of-service DoS attacks are one of the major security challenges in the emerging cloud computing models. Currently, numerous types of DoS attacks are conducted against the various cloud services and resources, which target their availability, ...
Cloud Computing Vulnerability: DDoS as Its Main Security Threat, and Analysis of IDS as a Solution Model
ITNG '14: Proceedings of the 2014 11th International Conference on Information Technology: New GenerationsCloud computing has emerged as an increasingly popular means of delivering IT-enabled business services and a potential technology resource choice for many private and government organizations in today's rapidly changing computing environment. ...
Comments