Title: Workshop on Capacity Building for Computer Emergency Readiness Team (CERT) for Africa New Approaches to Security -
1Workshop on Capacity Building for Computer
Emergency Readiness Team (CERT) for Africa New
Approaches to Security -
Cloud CERT Arun Sood Professor (Computer
Science) Co-Director, International Cyber
Center George Mason University Fairfax, VA
20124 asood_at_gmu.edu
2Cloud Computing
- On-demand service
- near instant scalability and flexibility
- Virtualization based
- near instantaneous provisioning
- Shared resources
- hardware, database, memory, etc
- service on demand, usually with a pay as you
go billing system
- Application
- Special apps
- Games like Zynga
- RD
- Startup companies
- Desktop virtualization
- General purpose
3Evolution of Architectures
Individual Servers
Data Centers
Virtualization (1 app / server)
Virtualization (N apps / server)
Cloud
40 to 45
Utilization
10 to 20
10 to 20
15 to 25
60
Security
Highest
High
Lowest
4Types of Clouds
Public Cloud Community Cloud Private Cloud
Data Location Unknown. Controllable. Shared decision. Specified. User controls.
On demand availability High. Medium. Low.
Security Low. Medium High.
5Virtualization / Cloud Security Issues
- Shared resources
- Hypervisor layer
- Memory
- Communication
- Inter VM infection
6Consider Cloud Based CERT Issues
- People, Process, Technology
- Centralized vs Distributed
- Efficient use of skilled manpower
- Policy Implementation