ThreatPro:Multi-Layer Threat Analysis in the Cloud

Manzoor, Salman and Gouglidis, Antonios and Bradbury, Matthew and Suri, Neeraj (2022) ThreatPro:Multi-Layer Threat Analysis in the Cloud. arXiv, abs/22. ISSN 2331-8422

Full text not available from this repository.

Abstract

Many effective Threat Analysis (TA) techniques exist that focus on analyzing threats to targeted assets (e.g., components, services). These techniques consider static interconnections among the assets. However, in dynamic environments, such as the Cloud, resources can instantiate, migrate across physical hosts, or decommission to provide rapid resource elasticity to the users. It is evident that existing TA techniques cannot address all these requirements. In addition, there is an increasing number of complex multi-layer/multi-asset attacks on Cloud systems, such as the Equifax data breach. Hence, there is a need for threat analysis approaches that are designed to analyze threats in complex, dynamic, and multi-layer Cloud environments. In this paper, we propose ThreatPro that addresses the analysis of multi-layer attacks and supports dynamic interconnections in the Cloud. ThreatPro facilitates threat analysis by developing a technology-agnostic information flow model, which represents the Cloud's functionality through a set of conditional transitions. The model establishes the basis to capture the multi-layer and dynamic interconnections during the life-cycle of a Virtual Machine (VM). Specifically, ThreatPro contributes in (a) enabling the exploration of a threat's behavior and its propagation across the Cloud, and (b) assessing the security of the Cloud by analyzing the impact of multiple threats across various operational layers/assets. Using public information on threats from the National Vulnerability Database (NVD), we validate ThreatPro's capabilities, i.e., (a) identify and trace actual Cloud attacks and (b) speculatively postulate alternate potential attack paths.

Item Type:
Journal Article
Journal or Publication Title:
arXiv
ID Code:
184278
Deposited By:
Deposited On:
17 Jan 2023 16:40
Refereed?:
Yes
Published?:
Published
Last Modified:
19 Oct 2023 14:40