Flaw and Configuration Analysis of Cloud Component Using First Order Logic

Abstract

Nowadays, large scale systems of open source code are adopted for mission critical systems on Cloud computing environment. However, despite of availability of Cloud component as open source software, there has been no methodology proposed for analyzing configuration flaw for these open source systems. In this paper we propose a FoL (First order Logic) based configuration analysis for detecting configuration flaw of source code. In proposed system, programming code is translated into clausal representation of FoL. Extracting call chain from a flaw detected to configuration part enables us to find where and how to erase the flaw of large scale Cloud component. In experiment, we have discovered several configurations which has potential vulnerabilities in large scale open source code of Cloud component.