{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,10,22]],"date-time":"2025-10-22T18:11:15Z","timestamp":1761156675214,"version":"3.40.3"},"publisher-location":"Cham","reference-count":51,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783030184186"},{"type":"electronic","value":"9783030184193"}],"license":[{"start":{"date-parts":[[2019,1,1]],"date-time":"2019-01-01T00:00:00Z","timestamp":1546300800000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2019]]},"DOI":"10.1007\/978-3-030-18419-3_5","type":"book-chapter","created":{"date-parts":[[2019,5,1]],"date-time":"2019-05-01T23:25:20Z","timestamp":1556753120000},"page":"61-77","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":5,"title":["Cloud Security Auditing: Major Approaches and Existing Challenges"],"prefix":"10.1007","author":[{"given":"Suryadipta","family":"Majumdar","sequence":"first","affiliation":[]},{"given":"Taous","family":"Madi","sequence":"additional","affiliation":[]},{"given":"Yosr","family":"Jarraya","sequence":"additional","affiliation":[]},{"given":"Makan","family":"Pourzandi","sequence":"additional","affiliation":[]},{"given":"Lingyu","family":"Wang","sequence":"additional","affiliation":[]},{"given":"Mourad","family":"Debbabi","sequence":"additional","affiliation":[]}],"member":"297","published-online":{"date-parts":[[2019,4,14]]},"reference":[{"key":"5_CR1","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"463","DOI":"10.1007\/978-3-319-98989-1_23","volume-title":"Computer Security","author":"A Alimohammadifar","year":"2018","unstructured":"Alimohammadifar, A., et al.: Stealthy probing-based verification (SPV): an active approach to defending software defined networks against topology poisoning attacks. In: Lopez, J., Zhou, J., Soriano, M. (eds.) ESORICS 2018. LNCS, vol. 11099, pp. 463\u2013484. Springer, Cham (2018). https:\/\/doi.org\/10.1007\/978-3-319-98989-1_23"},{"key":"5_CR2","unstructured":"Amazon Web Services: Security at scale: logging in AWS. Technical report, Amazon (2013)"},{"key":"5_CR3","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"21","DOI":"10.1007\/978-3-319-14977-6_2","volume-title":"Distributed Computing and Internet Technology","author":"N Bj\u00f8rner","year":"2015","unstructured":"Bj\u00f8rner, N., Jayaraman, K.: Checking cloud contracts in Microsoft Azure. In: Natarajan, R., Barua, G., Patra, M.R. (eds.) ICDCIT 2015. LNCS, vol. 8956, pp. 21\u201332. Springer, Cham (2015). https:\/\/doi.org\/10.1007\/978-3-319-14977-6_2"},{"key":"5_CR4","doi-asserted-by":"crossref","unstructured":"Bleikertz, S., Vogel, C., Gro\u00df, T.: Cloud radar: near real-time detection of security failures in dynamic virtualized infrastructures. In: Proceedings of the 30th Annual Computer Security Applications Conference (ACSAC), pp. 26\u201335. ACM (2014)","DOI":"10.1145\/2664243.2664274"},{"key":"5_CR5","doi-asserted-by":"crossref","unstructured":"Bleikertz, S., Vogel, C., Gro\u00df, T., M\u00f6dersheim, S.: Proactive security analysis of changes in virtualized infrastructures. In: Proceedings of the 31st Annual Computer Security Applications Conference (ACSAC), pp. 51\u201360. ACM (2015)","DOI":"10.1145\/2818000.2818034"},{"key":"5_CR6","unstructured":"Cloud Security Alliance: Security guidance for critical areas of focus in cloud computing v3.0 (2011)"},{"key":"5_CR7","unstructured":"Cloud Security Alliance: Cloud control matrix CCM v3.0.1 (2014). https:\/\/cloudsecurityalliance.org\/research\/ccm\/ . Accessed 14 Feb 2018"},{"key":"5_CR8","unstructured":"Cloud Security Alliance: CSA STAR program and open certification framework in 2016 and beyond (2016). https:\/\/downloads.cloudsecurityalliance.org\/star\/csa-star-program-cert-prep.pdf . Accessed 14 Feb 2018"},{"key":"5_CR9","unstructured":"CUMULUS: Certification infrastructure for multi-layer cloud services project (CUMULUS). EU project (2012)"},{"key":"5_CR10","unstructured":"Distributed Management Task Force, Inc.: Cloud auditing data federation (2016). https:\/\/www.dmtf.org\/standards\/cadf"},{"key":"5_CR11","unstructured":"Doelitzscher, F.: Security Audit Compliance for Cloud Computing. PhD thesis, Plymouth University (2014)"},{"key":"5_CR12","doi-asserted-by":"crossref","unstructured":"Doelitzscher, F., Fischer, C., Moskal, D., Reich, C., Knahl, M., Clarke, N.: Validating cloud infrastructure changes by cloud audits. In: Eighth World Congress on Services (SERVICES), pp. 377\u2013384. IEEE (2012)","DOI":"10.1109\/SERVICES.2012.12"},{"issue":"1","key":"5_CR13","doi-asserted-by":"publisher","first-page":"47","DOI":"10.1007\/s10207-014-0239-8","volume":"14","author":"E Dolzhenko","year":"2015","unstructured":"Dolzhenko, E., Ligatti, J., Reddy, S.: Modeling runtime enforcement with mandatory results automata. Int. J. Inf. Secur. 14(1), 47\u201360 (2015)","journal-title":"Int. J. Inf. Secur."},{"key":"5_CR14","unstructured":"ENISA: European union agency for network and information security (2016). https:\/\/www.enisa.europa.eu"},{"key":"5_CR15","doi-asserted-by":"crossref","unstructured":"Foley, S.N., Neville, U.: A firewall algebra for OpenStack. In: Conference on Communications and Network Security (CNS), pp. 541\u2013549. IEEE (2015)","DOI":"10.1109\/CNS.2015.7346867"},{"key":"5_CR16","first-page":"1","volume":"4","author":"N Ghosh","year":"2014","unstructured":"Ghosh, N., Chatterjee, D., Ghosh, S.K., Das, S.K.: Securing loosely-coupled collaboration in cloud environment through dynamic detection and removal of access conflicts. IEEE Trans. Cloud Comput. 4, 1 (2014)","journal-title":"IEEE Trans. Cloud Comput."},{"key":"5_CR17","doi-asserted-by":"publisher","first-page":"540","DOI":"10.1016\/j.cose.2012.01.010","volume":"31","author":"A Gouglidis","year":"2012","unstructured":"Gouglidis, A., Mavridis, I.: domRBAC: an access control model for modern collaborative systems. Comput. Secur. 31, 540\u2013556 (2012)","journal-title":"Comput. Secur."},{"issue":"2","key":"5_CR18","doi-asserted-by":"publisher","first-page":"97","DOI":"10.1007\/s10207-013-0205-x","volume":"13","author":"A Gouglidis","year":"2014","unstructured":"Gouglidis, A., Mavridis, I., Hu, V.C.: Security policy verification for multi-domains in cloud systems. Int. J. Inf. Secur. 13(2), 97\u2013111 (2014)","journal-title":"Int. J. Inf. Secur."},{"key":"5_CR19","doi-asserted-by":"crossref","unstructured":"Hong, S., Xu, L., Wang, H., Gu, G.: Poisoning network visibility in software-defined networks: new attacks and countermeasures. In: Proceedings of 2015 Annual Network and Distributed System Security Symposium (NDSS 2015), February 2015","DOI":"10.14722\/ndss.2015.23283"},{"key":"5_CR20","unstructured":"IBM: Safeguarding the cloud with IBM security solutions. Technical report, IBM Corporation (2013)"},{"issue":"8","key":"5_CR21","doi-asserted-by":"publisher","first-page":"1685","DOI":"10.1109\/TIFS.2016.2549002","volume":"11","author":"Z Ismail","year":"2016","unstructured":"Ismail, Z., Kiennert, C., Leneutre, J., Chen, L.: Auditing a cloud provider\u2019s compliance with data backup requirements: a game theoretical analysis. IEEE Trans. Inf. Forensics Secur. 11(8), 1685\u20131699 (2016)","journal-title":"IEEE Trans. Inf. Forensics Secur."},{"key":"5_CR22","unstructured":"ISO Std IEC. ISO 27017. Information technology- Security techniques- Code of practice for information security controls based on ISO\/IEC 27002 for cloud services (DRAFT) (2012). http:\/\/www.iso27001security.com\/html\/27017.html . Accessed 14 Feb 2018"},{"key":"5_CR23","doi-asserted-by":"crossref","unstructured":"Kai, H., et al.: An efficient public batch auditing protocol for data security in multi-cloud storage. In: 8th ChinaGrid Annual Conference (ChinaGrid), pp. 51\u201356. IEEE (2013)","DOI":"10.1109\/ChinaGrid.2013.13"},{"issue":"3","key":"5_CR24","doi-asserted-by":"publisher","first-page":"19","DOI":"10.1145\/1455526.1455532","volume":"12","author":"J Ligatti","year":"2009","unstructured":"Ligatti, J., Bauer, L., Walker, D.: Run-time enforcement of nonsafety policies. ACM Trans. Inf. Syst. Secur. (TISSEC) 12(3), 19 (2009)","journal-title":"ACM Trans. Inf. Syst. Secur. (TISSEC)"},{"key":"5_CR25","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"87","DOI":"10.1007\/978-3-642-15497-3_6","volume-title":"Computer Security \u2013 ESORICS 2010","author":"J Ligatti","year":"2010","unstructured":"Ligatti, J., Reddy, S.: A theory of runtime enforcement, with results. In: Gritzalis, D., Preneel, B., Theoharidou, M. (eds.) ESORICS 2010. LNCS, vol. 6345, pp. 87\u2013100. Springer, Heidelberg (2010). https:\/\/doi.org\/10.1007\/978-3-642-15497-3_6"},{"issue":"5","key":"5_CR26","doi-asserted-by":"publisher","first-page":"955","DOI":"10.1007\/s11859-007-0039-3","volume":"12","author":"Z Lu","year":"2007","unstructured":"Lu, Z., Wen, Z., Tang, Z., Li, R.: Resolution for conflicts of inter-operation in multi-domain environment. Wuhan Univ. J. Nat. Sci. 12(5), 955\u2013960 (2007)","journal-title":"Wuhan Univ. J. Nat. Sci."},{"key":"5_CR27","doi-asserted-by":"crossref","unstructured":"Luo, Y., Luo, W., Puyang, T., Shen, Q., Ruan, A., Wu, Z.: OpenStack security modules: a least-invasive access control framework for the cloud. In: IEEE 9th International Conference on Cloud Computing (CLOUD) (2016)","DOI":"10.1109\/CLOUD.2016.0017"},{"key":"5_CR28","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/3267339","volume":"22","author":"T Madi","year":"2018","unstructured":"Madi, T., et al.: ISOTOP: auditing virtual networks isolation across cloud layers in OpenStack. ACM Trans. Priv. Secur. (TOPS) 22, 1 (2018)","journal-title":"ACM Trans. Priv. Secur. (TOPS)"},{"key":"5_CR29","doi-asserted-by":"crossref","unstructured":"Madi, T., Majumdar, S., Wang, Y., Jarraya, Y., Pourzandi, M., Wang, L.: Auditing security compliance of the virtualized infrastructure in the cloud: application to OpenStack. In: Proceedings of the Sixth ACM Conference on Data and Application Security and Privacy (CODASPY), pp. 195\u2013206. ACM (2016)","DOI":"10.1145\/2857705.2857721"},{"key":"5_CR30","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"47","DOI":"10.1007\/978-3-319-45744-4_3","volume-title":"Computer Security \u2013 ESORICS 2016","author":"S Majumdar","year":"2016","unstructured":"Majumdar, S., et al.: Proactive verification of security compliance for clouds through pre-computation: application to OpenStack. In: Askoxylakis, I., Ioannidis, S., Katsikas, S., Meadows, C. (eds.) ESORICS 2016. LNCS, vol. 9878, pp. 47\u201366. Springer, Cham (2016). https:\/\/doi.org\/10.1007\/978-3-319-45744-4_3"},{"key":"5_CR31","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"265","DOI":"10.1007\/978-3-319-66399-9_15","volume-title":"Computer Security \u2013 ESORICS 2017","author":"S Majumdar","year":"2017","unstructured":"Majumdar, S., et al.: LeaPS: learning-based proactive security auditing for clouds. In: Foley, S.N., Gollmann, D., Snekkenes, E. (eds.) ESORICS 2017. LNCS, vol. 10493, pp. 265\u2013285. Springer, Cham (2017). https:\/\/doi.org\/10.1007\/978-3-319-66399-9_15"},{"key":"5_CR32","doi-asserted-by":"crossref","unstructured":"Majumdar, S., et al.: Security compliance auditing of identity and access management in the cloud: application to OpenStack. In: 7th International Conference on Cloud Computing Technology and Science (CloudCom), pp. 58\u201365. IEEE (2015)","DOI":"10.1109\/CloudCom.2015.80"},{"issue":"5","key":"5_CR33","doi-asserted-by":"publisher","first-page":"1185","DOI":"10.1109\/TIFS.2017.2779444","volume":"13","author":"S Majumdar","year":"2018","unstructured":"Majumdar, S., et al.: User-level runtime security auditing for the cloud. IEEE Trans. Inf. Forensics Secur. 13(5), 1185\u20131199 (2018)","journal-title":"IEEE Trans. Inf. Forensics Secur."},{"key":"5_CR34","unstructured":"Narain, S.: Network configuration management via model finding. In: Proceedings of the 19th Conference on Large Installation System Administration Conference (LISA), pp. 15\u201315 (2005)"},{"key":"5_CR35","unstructured":"NIST. SP 800\u201353. Recommended Security Controls for Federal Information Systems (2003)"},{"key":"5_CR36","unstructured":"Open Data Center Alliance: Open data center alliance usage: Cloud based identity governance and auditing rev. 1.0. Technical report, Open Data Center Alliance (2012)"},{"key":"5_CR37","unstructured":"OpenStack: OpenStack Congress (2015). https:\/\/wiki.openstack.org\/wiki\/Congress . Accessed 14 Feb 2018"},{"key":"5_CR38","unstructured":"OpenStack: OpenStack open source cloud computing software (2015). http:\/\/www.openstack.org . Accessed 14 Feb 2018"},{"key":"5_CR39","unstructured":"OpenStack: OpenStack user survey (2016). https:\/\/www.openstack.org\/assets\/survey\/October2016SurveyReport.pdf . Accessed 14 Feb 2018"},{"key":"5_CR40","unstructured":"Petcu, D., Craciun, C.: Towards a security SLA-based cloud monitoring service. In: Proceedings of the 4th International Conference on Cloud Computing and Services Science (CLOSER), pp. 598\u2013603 (2014)"},{"issue":"1","key":"5_CR41","doi-asserted-by":"publisher","first-page":"69","DOI":"10.1109\/MIC.2012.14","volume":"16","author":"K Ren","year":"2012","unstructured":"Ren, K., Wang, C., Wang, Q.: Security challenges for the public cloud. IEEE Internet Comput. 16(1), 69\u201373 (2012)","journal-title":"IEEE Internet Comput."},{"issue":"1","key":"5_CR42","doi-asserted-by":"publisher","first-page":"30","DOI":"10.1145\/353323.353382","volume":"3","author":"FB Schneider","year":"2000","unstructured":"Schneider, F.B.: Enforceable security policies. Trans. Inf. Syst. Secur. (TISSEC) 3(1), 30\u201350 (2000)","journal-title":"Trans. Inf. Syst. Secur. (TISSEC)"},{"key":"5_CR43","doi-asserted-by":"crossref","unstructured":"Skowyra, R., et al.: Effective topology tampering attacks and defenses in software-defined networks. In: Proceedings of the 48th Annual IEEE\/IFIP International Conference on Dependable Systems and Networks (DSN 2015), June 2018","DOI":"10.1109\/DSN.2018.00047"},{"key":"5_CR44","unstructured":"Solanas, M., Hernandez-Castro, J., Dutta, D.: Detecting fraudulent activity in a cloud using privacy-friendly data aggregates. Technical report, arXiv preprint (2014)"},{"key":"5_CR45","doi-asserted-by":"crossref","unstructured":"Tabiban, A., Majumdar, S., Wang, L., Debbabi, M.: PERMON: an openstack middleware for runtime security policy enforcement in clouds. In: Proceedings of the 4th IEEE Workshop on Security and Privacy in the Cloud (SPC 2018), June 2018","DOI":"10.1109\/CNS.2018.8433180"},{"key":"5_CR46","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"54","DOI":"10.1007\/978-3-319-11698-3_5","volume-title":"Network and System Security","author":"B Tang","year":"2014","unstructured":"Tang, B., Sandhu, R.: Extending OpenStack access control with domain trust. In: Au, M.H., Carminati, B., Kuo, C.-C.J. (eds.) NSS 2014. LNCS, vol. 8792, pp. 54\u201369. Springer, Cham (2014). https:\/\/doi.org\/10.1007\/978-3-319-11698-3_5"},{"key":"5_CR47","doi-asserted-by":"crossref","unstructured":"Ullah, K.W., Ahmed, A.S., Ylitalo, J.: Towards building an automated security compliance tool for the cloud. In: 12th International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom), pp. 1587\u20131593. IEEE (2013)","DOI":"10.1109\/TrustCom.2013.195"},{"issue":"2","key":"5_CR48","doi-asserted-by":"publisher","first-page":"362","DOI":"10.1109\/TC.2011.245","volume":"62","author":"C Wang","year":"2013","unstructured":"Wang, C., Chow, S.S., Wang, Q., Ren, K., Lou, W.: Privacy-preserving public auditing for secure cloud storage. IEEE Trans. Comput. 62(2), 362\u2013375 (2013)","journal-title":"IEEE Trans. Comput."},{"key":"5_CR49","doi-asserted-by":"crossref","unstructured":"Wang, Y., et al.: TenantGuard: scalable runtime verification of cloud-wide VM-level network isolation. In: Proceedings of 2017 Annual Network and Distributed System Security Symposium (NDSS 2017), February 2017","DOI":"10.14722\/ndss.2017.23365"},{"issue":"4","key":"5_CR50","doi-asserted-by":"publisher","first-page":"940","DOI":"10.1109\/TIFS.2016.2646913","volume":"12","author":"Y Wang","year":"2017","unstructured":"Wang, Y., Wu, Q., Qin, B., Shi, W., Deng, R.H., Hu, J.: Identity-based data outsourcing with comprehensive auditing in clouds. IEEE Trans. Inf. Forensics Secur. 12(4), 940\u2013952 (2017)","journal-title":"IEEE Trans. Inf. Forensics Secur."},{"key":"5_CR51","doi-asserted-by":"crossref","unstructured":"Yau, S.S., Buduru, A.B., Nagaraja, V.: Protecting critical cloud infrastructures with predictive capability. In: 8th International Conference on Cloud Computing (CLOUD), pp. 1119\u20131124. IEEE (2015)","DOI":"10.1109\/CLOUD.2015.165"}],"container-title":["Lecture Notes in Computer Science","Foundations and Practice of Security"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-030-18419-3_5","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,9,17]],"date-time":"2022-09-17T07:24:26Z","timestamp":1663399466000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-030-18419-3_5"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019]]},"ISBN":["9783030184186","9783030184193"],"references-count":51,"URL":"https:\/\/doi.org\/10.1007\/978-3-030-18419-3_5","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2019]]},"assertion":[{"value":"14 April 2019","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"FPS","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Symposium on Foundations and Practice of Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Montreal, QC","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Canada","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2018","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"13 November 2018","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"15 November 2018","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"11","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"fps2018","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"http:\/\/fps2018.encs.concordia.ca\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Single-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"easychair","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"51","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"16","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"1","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"31% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"3","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"4","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"Yes","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}}]}}