Secure Cloud Migration Strategy (SCMS): A Safe Journey to the Cloud

International Conference on Cyber Warfare and Security Pub Date : 2023-02-28 DOI:10.34190/iccws.18.1.1038

Dalal N. Alharthi

{"title":"Secure Cloud Migration Strategy (SCMS): A Safe Journey to the Cloud","authors":"Dalal N. Alharthi","doi":"10.34190/iccws.18.1.1038","DOIUrl":null,"url":null,"abstract":"The state of cloud security is evolving. Many organizations are migrating their on-premises data centers to cloud networks at a rapid pace due to the benefits like cost-effectiveness, scalability, reliability, and flexibility. Yet, cloud environments also raise certain security concerns that may hinder their adoption. Cloud security threats may include data breaches/leaks, data loss, access management, insecure APIs, and misconfigured cloud storage. The security challenges associated with cloud computing have been widely studied in previous literature and different research groups. This paper conducted a systematic literature review and examined the research studies published between 2010 and 2023 within popular digital libraries. The paper then proposes a comprehensive Secure Cloud Migration Strategy (SCMS) that organizations can adopt to secure their cloud environment. The proposed SCMS consists of three main repeatable phases/processes, which are preparation; readiness and adoption; and testing. Among these phases, the author addresses tasks/projects from the different perspectives of the three cybersecurity teams, which are the blue team (defenders), the red team (attackers), and the yellow team (developers). This can be used by the Cloud Center of Excellence (CCoE) as a checklist that covers defending the cloud; attacking and abusing the cloud; and applying the security shift left concepts. In addition to that, the paper addresses the necessary cloud security documents/runbooks that should be developed and automated such as incident response runbook, disaster recovery planning, risk assessment methodology, and cloud security controls. Future research venues and open cloud security problems/issues were addressed throughout the paper. The ultimate goal is to support the development of a proper security system to an efficient cloud computing system to help harden organizations’ cloud infrastructures and increase the cloud security awareness level, which is significant to national security. Furthermore, practitioners and researchers can use the proposed solutions to replicate and/or extend the proposed work.","PeriodicalId":429427,"journal":{"name":"International Conference on Cyber Warfare and Security","volume":"21 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2023-02-28","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"International Conference on Cyber Warfare and Security","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.34190/iccws.18.1.1038","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

Abstract

The state of cloud security is evolving. Many organizations are migrating their on-premises data centers to cloud networks at a rapid pace due to the benefits like cost-effectiveness, scalability, reliability, and flexibility. Yet, cloud environments also raise certain security concerns that may hinder their adoption. Cloud security threats may include data breaches/leaks, data loss, access management, insecure APIs, and misconfigured cloud storage. The security challenges associated with cloud computing have been widely studied in previous literature and different research groups. This paper conducted a systematic literature review and examined the research studies published between 2010 and 2023 within popular digital libraries. The paper then proposes a comprehensive Secure Cloud Migration Strategy (SCMS) that organizations can adopt to secure their cloud environment. The proposed SCMS consists of three main repeatable phases/processes, which are preparation; readiness and adoption; and testing. Among these phases, the author addresses tasks/projects from the different perspectives of the three cybersecurity teams, which are the blue team (defenders), the red team (attackers), and the yellow team (developers). This can be used by the Cloud Center of Excellence (CCoE) as a checklist that covers defending the cloud; attacking and abusing the cloud; and applying the security shift left concepts. In addition to that, the paper addresses the necessary cloud security documents/runbooks that should be developed and automated such as incident response runbook, disaster recovery planning, risk assessment methodology, and cloud security controls. Future research venues and open cloud security problems/issues were addressed throughout the paper. The ultimate goal is to support the development of a proper security system to an efficient cloud computing system to help harden organizations’ cloud infrastructures and increase the cloud security awareness level, which is significant to national security. Furthermore, practitioners and researchers can use the proposed solutions to replicate and/or extend the proposed work.

查看原文本刊更多论文

安全云迁移策略(SCMS):安全的云之旅

云安全的状态正在发展。由于成本效益、可伸缩性、可靠性和灵活性等优势，许多组织正在快速地将其本地数据中心迁移到云网络。然而，云环境也引起了某些可能阻碍其采用的安全问题。云安全威胁可能包括数据泄露、数据丢失、访问管理、不安全的api和配置错误的云存储。与云计算相关的安全挑战已经在以前的文献和不同的研究小组中得到了广泛的研究。本文进行了系统的文献综述，并检查了2010年至2023年间在流行数字图书馆发表的研究报告。然后，本文提出了一个全面的安全云迁移策略(SCMS)，组织可以采用该策略来保护其云环境。建议的供应链管理系统包括三个主要可重复的阶段/过程，分别是制备;准备就绪和采用;和测试。在这些阶段中，作者从三个网络安全团队(蓝队(防御者)，红队(攻击者)和黄队(开发人员))的不同角度处理任务/项目。这可以被云卓越中心(CCoE)用作涵盖云防御的清单;攻击和滥用云;运用安全向左转移的概念。除此之外，本文还讨论了应该开发和自动化的必要的云安全文档/运行手册，如事件响应运行手册、灾难恢复计划、风险评估方法和云安全控制。未来的研究场所和开放云安全问题贯穿全文。最终目标是将适当的安全系统发展为高效的云计算系统，帮助加强组织的云基础设施，提高云安全意识水平，这对国家安全具有重要意义。此外，从业者和研究人员可以使用建议的解决方案来复制和/或扩展建议的工作。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

International Conference on Cyber Warfare and Security

自引率

0.00%

发文量