{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,19]],"date-time":"2026-02-19T02:25:21Z","timestamp":1771467921917,"version":"3.50.1"},"publisher-location":"New York, NY, USA","reference-count":34,"publisher":"ACM","license":[{"start":{"date-parts":[[2010,10,8]],"date-time":"2010-10-08T00:00:00Z","timestamp":1286496000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2010,10,8]]},"DOI":"10.1145\/1866835.1866853","type":"proceedings-article","created":{"date-parts":[[2010,10,12]],"date-time":"2010-10-12T15:38:31Z","timestamp":1286897911000},"page":"93-102","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":56,"title":["Security audits of multi-tier virtual infrastructures in public infrastructure clouds"],"prefix":"10.1145","author":[{"given":"S\u00f6ren","family":"Bleikertz","sequence":"first","affiliation":[{"name":"IBM Research - Zurich, Zurich, Switzerland"}]},{"given":"Matthias","family":"Schunter","sequence":"additional","affiliation":[{"name":"IBM Research - Zurich, Zurich, Switzerland"}]},{"given":"Christian W.","family":"Probst","sequence":"additional","affiliation":[{"name":"Technical University of Denmark, Lyngby, Denmark"}]},{"given":"Dimitrios","family":"Pendarakis","sequence":"additional","affiliation":[{"name":"IBM T.J. Watson Research Center, Hawthorne, NY, USA"}]},{"given":"Konrad","family":"Eriksson","sequence":"additional","affiliation":[{"name":"InfraSight Labs, Malm\u00f6, Sweden"}]}],"member":"320","published-online":{"date-parts":[[2010,10,8]]},"reference":[{"key":"e_1_3_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.1145\/1314466.1314469"},{"key":"e_1_3_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1145\/1229285.1266999"},{"key":"e_1_3_2_1_3_1","volume-title":"The Amazon Elastic Compute Cloud (EC2).","author":"Amazon","year":"2010","unstructured":"}} Amazon . The Amazon Elastic Compute Cloud (EC2). Available at http:\/\/aws.amazon.com\/ec2\/, last accessed March 2010 , 2010. }}Amazon. The Amazon Elastic Compute Cloud (EC2). Available at http:\/\/aws.amazon.com\/ec2\/, last accessed March 2010, 2010."},{"key":"e_1_3_2_1_4_1","volume-title":"November","author":"Amazon Web Services","year":"2009","unstructured":"}} Amazon Web Services . Amazon Web Services: Overview of Security Processes , November 2009 . }}Amazon Web Services. Amazon Web Services: Overview of Security Processes, November 2009."},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-10366-7_14"},{"key":"e_1_3_2_1_6_1","volume-title":"boto - Python interface to Amazon Web Services.","author":"BOTO.","year":"2010","unstructured":"}} BOTO. boto - Python interface to Amazon Web Services. Available at http:\/\/code.google.com\/p\/boto\/, last accessed June 2010 , 2010. }}BOTO. boto - Python interface to Amazon Web Services. Available at http:\/\/code.google.com\/p\/boto\/, last accessed June 2010, 2010."},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1145\/1655008.1655022"},{"key":"e_1_3_2_1_8_1","volume-title":"Announcing Enomaly ECP High Assurance Edition for Trusted Cloud Computing.","author":"Cohen R.","year":"2010","unstructured":"}} Cohen , R. Announcing Enomaly ECP High Assurance Edition for Trusted Cloud Computing. Available at http:\/\/www.elasticvapor.com\/2010\/04\/announcing-enomaly-ecp-high-assurance.html, last accessed June 2010 , 2010. }}Cohen, R. Announcing Enomaly ECP High Assurance Edition for Trusted Cloud Computing. Available at http:\/\/www.elasticvapor.com\/2010\/04\/announcing-enomaly-ecp-high-assurance.html, last accessed June 2010, 2010."},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1145\/1165389.945464"},{"key":"e_1_3_2_1_10_1","first-page":"1","volume-title":"VizSEC","author":"Goodall J. R.","year":"2007","unstructured":"}} Goodall , J. R. Introduction to Visualization for Computer Security . In VizSEC ( 2007 ), pp. 1 -- 17 . }}Goodall, J. R. Introduction to Visualization for Computer Security. In VizSEC (2007), pp. 1--17."},{"key":"e_1_3_2_1_11_1","first-page":"139","volume-title":"Cyber Situational Awareness: Issues and Research","author":"Jajodia S.","year":"2009","unstructured":"}} Jajodia , S. , Liu , P. , Swarup , V. , and Wang , C . Cyber Situational Awareness: Issues and Research . Springer , 2009 , ch. Topological Vulnerability Analysis, pp. 139 -- 154 . }}Jajodia, S., Liu, P., Swarup, V., and Wang, C. Cyber Situational Awareness: Issues and Research. Springer, 2009, ch. Topological Vulnerability Analysis, pp. 139--154."},{"key":"e_1_3_2_1_12_1","volume-title":"Algorithms, Architectures, and Information Systems Security","author":"Jajodia S.","year":"2007","unstructured":"}} Jajodia , S. , and Noel , S . Algorithms, Architectures, and Information Systems Security . World Scientific Press , 2007 , ch. Topological Vulnerability Analysis: A Powerful New Approach for Network Attack Prevention, Detection, and Response. }}Jajodia, S., and Noel, S. Algorithms, Architectures, and Information Systems Security. World Scientific Press, 2007, ch. Topological Vulnerability Analysis: A Powerful New Approach for Network Attack Prevention, Detection, and Response."},{"key":"e_1_3_2_1_13_1","volume-title":"F. J. Private Virtual Infrastructure for Cloud Computing. In HotCloud '09: Workshop on Hot Topics in Cloud Computing","author":"Krautheim","year":"2009","unstructured":"}} Krautheim , F. J. Private Virtual Infrastructure for Cloud Computing. In HotCloud '09: Workshop on Hot Topics in Cloud Computing ( 2009 ), USENIX. }}Krautheim, F. J. Private Virtual Infrastructure for Cloud Computing. In HotCloud '09: Workshop on Hot Topics in Cloud Computing (2009), USENIX."},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"crossref","DOI":"10.21236\/ADA431826","volume-title":"An Annotated Review of Past Papers on Attack Graphs","author":"Lippmann R. P.","year":"2005","unstructured":"}} Lippmann , R. P. , and Ingols , K. W . An Annotated Review of Past Papers on Attack Graphs , 2005 . }}Lippmann, R. P., and Ingols, K. W. An Annotated Review of Past Papers on Attack Graphs, 2005."},{"key":"e_1_3_2_1_15_1","volume-title":"Fourteenth International Workshop on Security Protocols","author":"Mao W.","year":"2006","unstructured":"}} Mao , W. , Martin , A. , Jin , H. , and Zhang , H . Innovations for grid security from trusted computing . In Fourteenth International Workshop on Security Protocols ( 2006 ), LNCS, Springer-Verlag. }}Mao, W., Martin, A., Jin, H., and Zhang, H. Innovations for grid security from trusted computing. In Fourteenth International Workshop on Security Protocols (2006), LNCS, Springer-Verlag."},{"key":"e_1_3_2_1_16_1","volume-title":"October","author":"Mell P.","year":"2009","unstructured":"}} Mell , P. , and Grance , T . Effectively and Securely Using the Cloud Computing Paradigm , October 2009 . }}Mell, P., and Grance, T. Effectively and Securely Using the Cloud Computing Paradigm, October 2009."},{"key":"e_1_3_2_1_17_1","volume-title":"A Complete Guide to the Common Vulnerability Scoring System Version 2.0.","author":"Mell P.","year":"2010","unstructured":"}} Mell , P. , Scarfone , K. , and Romanosky , S . A Complete Guide to the Common Vulnerability Scoring System Version 2.0. Available at http:\/\/www.first.org\/cvss\/cvss-guide.html, last accessed June 2010 , June 2007. }}Mell, P., Scarfone, K., and Romanosky, S. A Complete Guide to the Common Vulnerability Scoring System Version 2.0. Available at http:\/\/www.first.org\/cvss\/cvss-guide.html, last accessed June 2010, June 2007."},{"key":"e_1_3_2_1_18_1","unstructured":"}}\n      Network\n      X\n      Developers\n      . Network\n      X.\n   Available at http:\/\/networkx.lanl.gov\/ last accessed \n  June\n  2010 2010.  }}NetworkX Developers. NetworkX. Available at http:\/\/networkx.lanl.gov\/ last accessed June 2010 2010."},{"key":"e_1_3_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1109\/CATCH.2009.19"},{"key":"e_1_3_2_1_20_1","volume-title":"Open Vulnerability Assessment System.","author":"Open VAS","year":"2010","unstructured":"}} Open VAS . Open VAS , Open Vulnerability Assessment System. Available at http:\/\/www.openvas.org, last accessed May 2010 , 2010. }}OpenVAS. OpenVAS, Open Vulnerability Assessment System. Available at http:\/\/www.openvas.org, last accessed May 2010, 2010."},{"key":"e_1_3_2_1_21_1","volume-title":"May","author":"Percival C.","year":"2005","unstructured":"}} Percival , C. Cache missing for fun and profit , May 2005 . }}Percival, C. Cache missing for fun and profit, May 2005."},{"key":"e_1_3_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1145\/310889.310919"},{"key":"e_1_3_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.1145\/1653662.1653687"},{"key":"e_1_3_2_1_24_1","volume-title":"Proceedings of Network and Distributed Security Symposium - NDSS '10","author":"Ristenpart T.","year":"2010","unstructured":"}} Ristenpart , T. , and Yilek , S . When Good Randomness Goes Bad: Virtual Machine Reset Vulnerabilities and Hedging Deployed Cryptography . In Proceedings of Network and Distributed Security Symposium - NDSS '10 ( 2010 ). }}Ristenpart, T., and Yilek, S. When Good Randomness Goes Bad: Virtual Machine Reset Vulnerabilities and Hedging Deployed Cryptography. In Proceedings of Network and Distributed Security Symposium - NDSS '10 (2010)."},{"key":"e_1_3_2_1_25_1","volume-title":"Towards Trusted Cloud Computing. In HotCloud '09: Workshop on Hot Topics in Cloud Computing","author":"Santos N.","year":"2009","unstructured":"}} Santos , N. , Gummadi , K. P. , and Rodrigues , R . Towards Trusted Cloud Computing. In HotCloud '09: Workshop on Hot Topics in Cloud Computing ( 2009 ), USENIX. }}Santos, N., Gummadi, K. P., and Rodrigues, R. Towards Trusted Cloud Computing. In HotCloud '09: Workshop on Hot Topics in Cloud Computing (2009), USENIX."},{"key":"e_1_3_2_1_26_1","volume-title":"Automated Generation and Analysis of Attack Graphs. In SP '02: Proceedings of the 2002 IEEE Symposium on Security and Privacy","author":"Sheyner O.","year":"2002","unstructured":"}} Sheyner , O. , Haines , J. , Jha , S. , Lippmann , R. , and Wing , J. M . Automated Generation and Analysis of Attack Graphs. In SP '02: Proceedings of the 2002 IEEE Symposium on Security and Privacy ( Washington, DC, USA , 2002 ), IEEE Computer Society, p. 273. }}Sheyner, O., Haines, J., Jha, S., Lippmann, R., and Wing, J. M. Automated Generation and Analysis of Attack Graphs. In SP '02: Proceedings of the 2002 IEEE Symposium on Security and Privacy (Washington, DC, USA, 2002), IEEE Computer Society, p. 273."},{"key":"e_1_3_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-30101-1_17"},{"key":"e_1_3_2_1_28_1","doi-asserted-by":"publisher","DOI":"10.1109\/DISCEX.2001.932182"},{"key":"e_1_3_2_1_29_1","first-page":"97","volume-title":"Sandia National Laboratories","author":"Swiler L. P.","year":"1997","unstructured":"}} Swiler , L. P. , Phillips , C. , and Gaylor , T . A Graph-Based Network-Vulnerability Analysis System . In Sandia National Laboratories , Albuquerque, New Mexico ( 1997 ), ACM Press , pp. 97 -- 3010 . }}Swiler, L. P., Phillips, C., and Gaylor, T. A Graph-Based Network-Vulnerability Analysis System. In Sandia National Laboratories, Albuquerque, New Mexico (1997), ACM Press, pp. 97--3010."},{"key":"e_1_3_2_1_30_1","volume-title":"the Network Vulnerability Scanner.","author":"Tenable Network Security","year":"2010","unstructured":"}} Tenable Network Security . Nessus , the Network Vulnerability Scanner. Available at http:\/\/www.nessus.org, last accessed March 2010 , 2010. }}Tenable Network Security. Nessus, the Network Vulnerability Scanner. Available at http:\/\/www.nessus.org, last accessed March 2010, 2010."},{"key":"e_1_3_2_1_31_1","volume-title":"PolicyVis: Firewall Security Policy Visualization and Inspection. In LISA'07: Proceedings of the 21st conference on Large Installation System Administration Conference","author":"Tran T.","year":"2007","unstructured":"}} Tran , T. , Al-Shaer , E. , and Boutaba , R . PolicyVis: Firewall Security Policy Visualization and Inspection. In LISA'07: Proceedings of the 21st conference on Large Installation System Administration Conference ( Berkeley, CA, USA , 2007 ), USENIX Association, pp. 1--16. }}Tran, T., Al-Shaer, E., and Boutaba, R. PolicyVis: Firewall Security Policy Visualization and Inspection. In LISA'07: Proceedings of the 21st conference on Large Installation System Administration Conference (Berkeley, CA, USA, 2007), USENIX Association, pp. 1--16."},{"key":"e_1_3_2_1_32_1","first-page":"221","volume-title":"An Interactive Attack Graph Cascade and Reachability Display. In VizSEC","author":"Williams L.","year":"2007","unstructured":"}} Williams , L. , Lippmann , R. , and Ingols , K . An Interactive Attack Graph Cascade and Reachability Display. In VizSEC ( 2007 ), pp. 221 -- 236 . }}Williams, L., Lippmann, R., and Ingols, K. An Interactive Attack Graph Cascade and Reachability Display. In VizSEC (2007), pp. 221--236."},{"key":"e_1_3_2_1_33_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-85933-8_5"},{"key":"e_1_3_2_1_34_1","doi-asserted-by":"publisher","DOI":"10.1109\/MC.2004.2"}],"event":{"name":"CCS '10: 17th ACM Conference on Computer and Communications Security 2010","location":"Chicago Illinois USA","acronym":"CCS '10","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"]},"container-title":["Proceedings of the 2010 ACM workshop on Cloud computing security workshop"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1866835.1866853","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/1866835.1866853","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T10:52:59Z","timestamp":1750243979000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1866835.1866853"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2010,10,8]]},"references-count":34,"alternative-id":["10.1145\/1866835.1866853","10.1145\/1866835"],"URL":"https:\/\/doi.org\/10.1145\/1866835.1866853","relation":{},"subject":[],"published":{"date-parts":[[2010,10,8]]},"assertion":[{"value":"2010-10-08","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}