Details

<p>List of Contributors xv</p> <p><b>Part I Cloud Security and Privacy 1</b></p> <p><b>1 Introduction to the Cloud and Fundamental Security and Privacy Issues of the Cloud 3<br /></b><i>Hassan Takabi and Mohammad GhasemiGol</i></p> <p>1.1 Introduction 3</p> <p>1.2 Cloud Computing and Security Issues 4</p> <p>1.3 Identity Security in the Cloud 9</p> <p>1.4 Information Security in the Cloud 9</p> <p>1.5 Cloud Security Standards 16</p> <p>1.6 Conclusion 20</p> <p>References 20</p> <p><b>2 Cloud Infrastructure Security 23<br /></b><i>Mohammad GhasemiGol</i></p> <p>2.1 Introduction 23</p> <p>2.2 Infrastructure Security in the Cloud 24</p> <p>2.3 Infrastructure Security Analysis in Some Clouds 31</p> <p>2.4 Protecting Cloud Infrastructure 45</p> <p>2.5 Conclusion 49</p> <p>References 49</p> <p><b>3 Confidentiality of Data in the Cloud: Conflicts Between Security and Cost 51<br /></b><i>Nathalie Baracaldo and Joseph Glider</i></p> <p>3.1 Introduction 51</p> <p>3.2 Background 51</p> <p>3.3 Confidentiality: Threats and Adversaries 54</p> <p>3.4 Achieving Data Confidentiality in Cloud Storage Systems 55</p> <p>3.5 Reducing Cloud Storage System Costs through Data‐Reduction Techniques 57</p> <p>3.6 Reconciling Data Reduction and Confidentiality 59</p> <p>3.7 Trusted Decrypter 62</p> <p>3.8 Future Directions for Cloud Storage Confidentiality with Low Cost 74</p> <p>3.9 Conclusions 76</p> <p>References 77</p> <p><b>4 Access Control in Cloud IaaS 81<br /></b><i>Yun Zhang, Ram Krishnan, Farhan Patwa, and Ravi Sandhu</i></p> <p>4.1 Introduction 81</p> <p>4.2 Background 82</p> <p>4.3 Access Control in OpenStack Cloud IaaS 83</p> <p>4.4 Access Control in AWS Cloud IaaS 90</p> <p>4.5 Access Control in Azure Cloud IaaS 99</p> <p>4.6 Conclusions 107</p> <p>References 107</p> <p><b>5 Cloud Security and Privacy Management 109<br /></b><i>Patrick Kamongi</i></p> <p>5.1 Introduction and Background 109</p> <p>5.2 Security and Privacy Analysis 111</p> <p>5.3 Best Security Practices and Recommendation 117</p> <p>5.4 Use Case Example: Microsoft Office 365, SaaS Version 118</p> <p>5.5 Current Trends and Future Direction 125</p> <p>5.6 Related Works 125</p> <p>5.7 Conclusion 126</p> <p>Acknowledgments 126</p> <p>References 126</p> <p><b>6 Hacking and Countermeasures in the Cloud 129<br /></b><i>Farzaneh Abazari, Hassan Takabi, and Morteza Analoui</i></p> <p>6.1 Introduction 129</p> <p>6.2 Background 130</p> <p>6.3 Cloud Security Threats 130</p> <p>6.4 Cloud Security Countermeasures 134</p> <p>6.5 Hacking the Cloud: Reality Check 136</p> <p>6.6 Future of Cloud Security 137</p> <p>6.6.1 Cloud Security for the IoT 138</p> <p>6.7 Conclusions 139</p> <p>References 139</p> <p><b>7 Risk Management and Disaster Recovery in the Cloud 143<br /></b><i>Saman Zonouz</i></p> <p>7.1 Introduction 143</p> <p>7.2 Background 143</p> <p>7.3 Consequence‐ Centric Security Assessment 145</p> <p>7.4 Future Directions 154</p> <p>7.5 Conclusions 155</p> <p><b>8 Cloud Auditing and Compliance 157<br /></b><i>Paolina Centonze</i></p> <p>8.1 Introduction 157</p> <p>8.2 Background 157</p> <p>8.3 Cloud Auditing 162</p> <p>8.4 Cloud Compliance 170</p> <p>8.5 Future Research Directions for Cloud Auditing and Compliance 183</p> <p>8.6 Conclusion 184</p> <p>References 185</p> <p>Further Reading 187</p> <p><b>9 Security‐as‐a‐Service (SECaaS) in the Cloud 189<br /></b><i>Saman Taghavi Zargar, Hassan Takabi, and Jay Iyer</i></p> <p>9.1 Introduction 189</p> <p>9.2 Related Work 192</p> <p>9.3 Security‐ as‐a‐Service Framework 194</p> <p>9.4 Conclusions 199</p> <p>References 199</p> <p><b>Part II Cloud Forensics 201</b></p> <p><b>10 Cloud Forensics: Model, Challenges, and Approaches 203<br /></b>Lei Chen, Nhien‐An Le‐Khac, Sebastian Schlepphorst, and Lanchuan Xu</p> <p>10.1 Introduction 203</p> <p>10.2 Background 204</p> <p>10.3 Process and Model of Cloud Forensics 207</p> <p>10.4 Cloud Forensics Methods, Approaches, and Tools 211</p> <p>10.5 Challenges in Cloud Forensics 213</p> <p>10.6 Conclusions 214</p> <p>References 214</p> <p><b>11 Cyberterrorism in the Cloud: Through a Glass Darkly 217<br /></b><i>Barry Cartwright, George R. S. Weir, and Richard Frank</i></p> <p>11.1 Introduction 217</p> <p>11.2 What is Terrorism? 218</p> <p>11.3 Defining Cyberterrorism 220</p> <p>11.4 Cyberterrorism vs. Terrorist Use of Cyberspace 221</p> <p>11.5 Cyberterrorism in the Cloud 222</p> <p>11.6 The Benefits of the Cloud to Cyberterrorists 225</p> <p>11.7 Cyberlaw and Cyberterrorism 227</p> <p>11.8 Conclusion: Through a Glass Darkly 230</p> <p>References 232</p> <p><b>12 Digital Forensic Process and Model in the Cloud 239<br /></b><i>Nhien‐An Le‐Khac, James Plunkett, M‐Tahar Kechadi, and Lei Chen</i></p> <p>12.1 Introduction 239</p> <p>12.2 Digital Forensics Models 240</p> <p>12.3 Cloud Forensics Process and Model 243</p> <p>12.4 Toward a New Cloud Forensics Model 246</p> <p>12.5 Evaluation and Analysis 251</p> <p>12.6 Conclusion 253</p> <p>References 253</p> <p><b>13 Data Acquisition in the Cloud 257<br /></b><i>Nhien‐An Le‐Khac, Michel Mollema, Robert Craig, Steven Ryder, and Lei Chen</i></p> <p>13.1 Introduction 257</p> <p>13.2 Background 258</p> <p>13.3 Data Center as a Source of Evidence 259</p> <p>13.4 Cloud Service Providers: Essential Requirements, Governance, and Challenges 260</p> <p>13.4.1 Business Model 261</p> <p>13.5 Cloud Storage Forensics 264</p> <p>13.6 Case Study 1: Finding Data Centers on the Internet in Data‐Dense Environments 265</p> <p>13.7 Case Study 2: Cloud Forensics for the Amazon Simple Storage Service 274</p> <p>13.8 Conclusion 281</p> <p>References 281</p> <p><b>14 Digital Evidence Management, Presentation, and Court Preparation in the Cloud: A Forensic Readiness Approach 283<br /></b><i>Lucia De Marco, Nhien‐An Le‐Khac, and M‐Tahar Kechadi</i></p> <p>14.1 Introduction 283</p> <p>14.2 Cloud Forensics and Challenges 284</p> <p>14.3 Digital Forensics Readiness 285</p> <p>14.4 Cloud Forensics Readiness 287</p> <p>14.5 Forensics Readiness in Evidence Management, Presentation, and Court Preparation 291</p> <p>14.6 Conclusion 295</p> <p>References 296</p> <p><b>15 Analysis of Cloud Digital Evidence 301<br /></b><i>Irfan Ahmed and Vassil Roussev</i></p> <p>15.1 Introduction 301</p> <p>15.2 Background 305</p> <p>15.3 Current Approaches 307</p> <p>15.4 Proposed Comprehensive Approaches 312</p> <p>15.5 Discussion 317</p> <p>15.6 Conclusions 317</p> <p>References 318</p> <p><b>16 Forensics‐as‐a‐Service (FaaS) in the State‐of‐the‐Art Cloud 321<br /></b><i>Avinash Srinivasan and Frank Ferrese</i></p> <p>16.1 Introduction 321</p> <p>16.2 Background and Motivation 323</p> <p>16.3 State of the Art in Parallel and Distributed Forensic Analysis 325</p> <p>16.4 Conclusion and Future Research Direction 334</p> <p>References 335</p> <p>Index 339</p>

<p><b>LEI CHEN, P<small>H</small>D,</b> is tenured Associate Professor with the Department of Information Technology at Georgia Southern University, Statesboro, Georgia, USA. <p><b>HASSAN TAKABI, P<small>H</small>D,</b> is tenure-track Assistant Professor with the Department of Computer Science and Engineering, University of North Texas, Denton, Texas, USA. <p><b>NHIEN-AN LE-KHAC, P<small>H</small>D,</b> is Lecturer with the School of Computer Science at University College Dublin, Ireland.

<p><b>In a unique and systematic way, this book discusses the security and privacy aspects of the cloud, and the relevant cloud forensics</b> <p>Cloud computing is an emerging yet revolutionary technology that has been changing the way people live and work. However, with the continuous growth of cloud computing and related services, security and privacy has become a critical issue. Written by some of the top experts in the field, this book specifically discusses security and privacy of the cloud, as well as the digital forensics of cloud data, applications, and services. The first half of the book enables readers to have a comprehensive understanding and background of cloud security, which will help them through the digital investigation, guidance and recommendations found in the second half of the book. <p>Part I of <i>Security, Privacy, and Digital Forensics in the Cloud</i> covers cloud infrastructure security; confidentiality of data; access control in cloud IaaS; cloud security and privacy management; hacking and countermeasures; risk management and disaster recovery; auditing and compliance; and security as a service (SaaS). Part II addresses cloud forensics – model, challenges, and approaches; cyberterrorism in the cloud; digital forensic process and model in the cloud; data acquisition; digital evidence management, presentation, and court preparation; analysis of digital evidence; and forensics as a service (FaaS). <ul> <li>Thoroughly covers both security and privacy of cloud and digital forensics</li> <li>Contributions by top researchers from the U.S., Europe and elsewhere and professionals active in the field of information and network security, digital and computer forensics, and cloud and big data</li> <li>Of interest to those focused upon security and implementation, and incident management</li> <li>Logical, well-structured, and organized to facilitate comprehension</li> </ul> <p><i>Security, Privacy, and Digital Forensics in the Cloud</i> is an ideal book for advanced undergraduate and masters-level students in information systems, information technology, computer and network forensics, as well as computer science. It can also serve as a good reference book for security professionals, digital forensics practitioners and cloud service providers.

SG