Beschreibung:
This book provides a comprehensive review of the most up to date research related to cloud security auditing and discusses auditing the cloud infrastructure from the structural point of view, while focusing on virtualization-related security properties and consistency between multiple control layers. It presents an off-line automated framework for auditing consistent isolation between virtual networks in OpenStack-managed cloud spanning over overlay and layer 2 by considering both cloud layers' views. A runtime security auditing framework for the cloud with special focus on the user-level including common access control and authentication mechanisms e.g., RBAC, ABAC and SSO is covered as well.
1 Introduction.- 2 Literature Review.- 3 Auditing Security Compliance of Virtualized Infrastructure.- 4 Auditing Virtual Network Isolation across Cloud Layers.- 5 User-Level Runtime Security Auditing for the Cloud.- 6 Proactive Security Auditing in Clouds.- 7 Runtime Security Policy Enforcement in Clouds.- 8 Conclusion.