Cyber threats to the Private Academic Cloud

Lakhno, Valerii; Akhmetov, Bakhytzhan; Kryvoruchko, Olena; Chubaievskyi, Vitalyi; Desiatko, Alona; Bereke, Madina; Shalabaeva, Maria

doi:10.24425/ijet.2024.149560

Nowa wersja platformy, zawierająca wyłącznie zasoby pełnotekstowe, jest już dostępna.
Przejdź na https://bibliotekanauki.pl

Artykuł - szczegóły

Czasopismo

International Journal of Electronics and Telecommunications

2024 | Vol. 70, No. 2 | 413--420

Tytuł artykułu

Cyber threats to the Private Academic Cloud

Autorzy

Lakhno, Valerii , Akhmetov, Bakhytzhan , Kryvoruchko, Olena , Chubaievskyi, Vitalyi , Desiatko, Alona , Bereke, Madina , Shalabaeva, Maria

Treść / Zawartość

Pełne teksty:

IJET_2_2024_Lakhno Valerii_Akhmetov Bakhytzhan_Kryvoruchko Olena_Chubaievskyi Vitalyi_Desiatko Alona_Bereke Madina_Shalabaeva Maria.pdf

Pobierz

Warianty tytułu

Języki publikacji

Abstrakty

The potential breach of access to confidential content hosted in a university's Private Academic Cloud (PAC) underscores the need for developing new protection methods. This paper introduces a Threat Analyzer Software (TAS) and a predictive algorithm rooted in both an operational model and discrete threat recognition procedures (DTRPs). These tools aid in identifying the functional layers that attackers could exploit to embed malware in guest operating systems (OS) and the PAC hypervisor. The solutions proposed herein play a crucial role in ensuring countermeasures against malware introduction into the PAC. Various hypervisor components are viewed as potential threat sources to the PAC's information security (IS). Such threats may manifest through the distribution of malware or the initiation of processes that compromise the PAC's security. The demonstrated counter-threat method, which is founded on the operational model and discrete threat recognition procedures, facilitates the use of mechanisms within the HIPV to quickly identify cyber attacks on the PAC, especially those employing "rootkit" technologies. This prompt identification empowers defenders to take swift and appropriate actions to safeguard the PAC.

Słowa kluczowe

information security private academic cloud cyber threats

Wydawca

Czasopismo

International Journal of Electronics and Telecommunications

Rocznik

2024

Tom

Vol. 70, No. 2

Strony

413--420

Opis fizyczny

Bibliogr. 24 poz., rys., tab.

Twórcy

autor

Lakhno, Valerii

National University of Life and Environmental Sciences of Ukraine, Kyiv, Ukraine, lva964@nubip.edu.ua

autor

Akhmetov, Bakhytzhan

Abai Kazakh National Pedagogical University, Almaty, Kazakhstan, bakhytzhan.akhmetov54@mail.ru

autor

Kryvoruchko, Olena

State University of Trade and Economics, Kyiv, Ukraine, kryvoruchko_ev@knute.edu.ua

autor

Chubaievskyi, Vitalyi

State University of Trade and Economics, Kyiv, Ukraine, chubaievsyi_vi@knute.edu.ua

autor

Desiatko, Alona

State University of Trade and Economics, Kyiv, Ukraine, desyatko@knute.edu.ua

autor

Bereke, Madina

Abai Kazakh National Pedagogical University, Almaty, Kazakhstan, madina13.04@mail.ru

autor

Shalabaeva, Maria

Kazakh University Ways of Communications, Almaty, Kazakhstan, m.shalabaeva@mail.ru

Bibliografia

[1] Kiv, A. E., Shyshkina, M. P., Semerikov, S., Striuk, A. M., Striuk, M. I., & Shalatska, H. M. (2020, July). CTE 2019 - When cloud technologies ruled the education. In Ceur workshop proceedings (Vol. 2643, pp. 1-59).
[2] Paxton, N. C. (2016, November). Cloud security: a review of current issues and proposed solutions. In 2016 IEEE 2nd International Conference on Collaboration and Internet Computing (CIC) (pp. 452-455). IEEE. https://doi.org/10.1109/CIC.2016.066.
[3] Wang, Y., Deng, S., Lin, W. M., Zhang, T., & Yu, Y. (2010, October). Research of electric power information security protection on cloud security. In 2010 International Conference on Power System Technology (pp. 1-6). IEEE. https://doi.org/10.1109/POWERCON.2010.5666728.
[4] Lewis, K. (2017). Virtual private cloud security. In Computer and Information Security Handbook (pp. 937-942). Morgan Kaufmann.
[5] Butt, U. A., Amin, R., Mehmood, M., Aldabbas, H., Alharbi, M. T., & Albaqami, N. (2023). Cloud security threats and solutions: A survey. Wireless Personal Communications, 128(1), 387-413. https://doi.org/10.1007/s11277-022-09960-z.
[6] Chavan, P., Patil, P., Kulkarni, G., Sutar, R., & Belsare, S. (2013, December). IaaS cloud security. In 2013 International Conference on Machine Intelligence and Research Advancement (pp. 549-553). IEEE.
[7] Vaquero, L. M., Rodero-Merino, L., & Morán, D. (2011). Locking the sky: a survey on IaaS cloud security. Computing, 91, 93-118. https://doi.org/10.1007/s00607-010-0140-x.
[8] Velev, D., & Zlateva, P. (2011). Cloud infrastructure security. In Open Research Problems in Network Security: IFIP WG 11.4 International Workshop, iNetSec 2010, Sofia, Bulgaria, March 5-6, 2010, Revised Selected Papers (pp. 140-148). Springer Berlin Heidelberg.
[9] Kankhare, D. D., & Manjrekar, A. A. (2016, December). A cloud based system to sense security vulnerabilities of web application in open-source private cloud IAAS. In 2016 International Conference on Electrical, Electronics, Communication, Computer and Optimization Techniques (ICEECCOT) (pp. 252-255). IEEE. https://doi.org/10.1109/ICEECCOT.2016.7955225.
[10] Rajesh, M. (2017). A systematic review of cloud security challenges in higher education. The Online Journal of Distance Education and e‐Learning, 5(1).
[11] Alimboyong, C. R., & Bucjan, M. E. (2021). Cloud Computing Adoption among State Universities and Colleges in the Philippines: Issues and Challenges. International Journal of Evaluation and Research in Education, 10(4), 1455-1461. https://doi.org/10.11591/ijere.v10i4.21526.
[12] Chatterjee, P., Mukherjee, S., Bose, R., & Roy, S. (2021). A Review on Information Security in Cloud Based System during Covid-19 pandemic. Brainwave, Brainware University, 2(1), 60-69.
[13] Najm, Y. A., Alsamaraee, S., & Jalal, A. A. (2022). Cloud computing security for e-learning during COVID-19 pandemic. Indonesian Journal of Electrical Engineering and Computer Science, 27(3), 1610-1618. https://doi.org/10.11591/ijeecs.v27.i3.pp1610-1618.
[14] Hui, S. C., Kwok, M. Y., Kong, E. W., & Chiu, D. K. (2023). Information security and technical issues of cloud storage services: a qualitative study on university students in Hong Kong. Library Hi Tech. https://doi.org/10.1108/LHT-11-2022-0533.
[15] Mulyar, I. V., Miroshnichenko, O. V., Krasnik, A. V., & Solodeeva, L. V. (2018). Protection against hidden threats in the cloud computing environment. Collection of scientific works of the Military Institute of Taras Shevchenko Kyiv National University, (59), 115-126.
[16] Molyakov, A. S., Zaborovsky, V. S., & Lukashin, A. A. (2015). Model of hidden IT security threats in the cloud computing environment. Automatic Control and Computer Sciences, 49, 741-744.
[17] Molyakov, A. S. (2014). Means of countering hidden threats to information security in the cloud computing environment (Doctoral dissertation, St. Petersburg State Polytechnic University).
[18] Zaborovsky, V. S. and Lukashin, A. A., High performance protected cloud, Otkrytye Sist., SUBD, 2013, no. 6, pp. 10-13.
[19] Lakhno, V., Kazmirchuk, S., Kovalenko, Y., Myrutenko, L., Zhmurko, T. Design of adaptive system of detection of cyber-attacks, based on the model of logical procedures and the coverage matrices of features (2016) Eastern-European Journal of Enterprise Technologies, 3 (9), pp. 30-38. https://doi.org/10.15587/1729-4061.2016.71769.
[20] Lakhno, V. et al. (2023). The Model of Server Virtualization System Protection in the Educational Institution Local Network. In: Shakya, S., Papakostas, G., Kamel, K.A. (eds) Mobile Computing and Sustainable Informatics. Lecture Notes on Data Engineering and Communications Technologies, vol 166. Springer, Singapore. https://doi.org/10.1007/978-981-99-0835-6_33.
[21] Lakhno, V., Akhmetov, B., Mohylnyi, H., Blozva, A., Chubaievskyi, V., Kryvoruchko, O., & Desiatko, A. (2022). Multi-criterial optimization composition of cyber security circuits based on genetic algorithm. Journal of Theoretical and Applied Information Technology, 100(7), 1996-2006. ISSN 1992864.
[22] B. S. Akhmetov, V. Lakhno, B. B. Akhmetov, A. Zhilkishbayev, N. Izbasova, O. Kryvoruchko, A. Desiatko, Application of a Genetic Algorithm for the Selection of the Optimal Composition of Protection Tools of the Information and Educational System of the University, Procedia Computer Science, Volume 215, 2022, Pages 598-607, ISSN 1877-0509, https://doi.org/10.1016/j.procs.2022.12.062.
[23] Valerii Lakhno, Zhuldyz Alimseitova, Yerbolat Kalaman, Olena Kryvoruchko, Alona Desiatko, and Serhii Kaminskyi. Development of an Information Security System Based on Modeling Distributed Computer Network Vulnerability Indicators of an Informatization Object. International Journal of Electronics and Telecommunications, 2023, Vol. 69, No. 3, PP. 475-483 https://doi.org/10.24425/ijet.2023.146495.
[24] Lakhno, V. et al. (2021). Information Security Audit Method Based on the Use of a Neuro-Fuzzy System. In: Silhavy, R., Silhavy, P., Prokopova, Z. (eds) Software Engineering Application in Informatics. CoMeSySo 2021. Lecture Notes in Networks and Systems, vol 232. Springer, Cham. https://doi.org/10.1007/978-3-030-90318-3_17.

Typ dokumentu

Bibliografia

Identyfikatory

DOI

10.24425/ijet.2024.149560

Identyfikator YADDA

bwmeta1.element.baztech-9abe84c3-521e-4f31-a502-e99a313660c5