On the feasability of automated semantic attacks in the cloud
Heartfield, Ryan and Loukas, George (2013) On the feasability of automated semantic attacks in the cloud. In: 27th International Symposium on Computer and Information Sciences. Computer and Information Sciences (III). Springer, pp. 343-351. ISBN 978-1-4471-4593-6 (Print), 978--1-4471-4594-3 (eBook) (In Press)Full text not available from this repository.
While existing security mechanisms often work well against most known attack types, they are typically incapable of addressing semantic attacks. Such attacks bypass technical protection systems by exploiting the emotional response of the users in unusual technical configurations rather than by focussing on specific technical vulnerabilities. We show that semantic attacks can easily be performed in a cloud environment, where applications that would traditionally be run locally may now require interaction with an online system shared by several users. We illustrate the feasibility of an automated semantic attack in a popular cloud storage environment, evaluate its impact and provide recommendations for defending against such attacks.
|Item Type:||Conference Proceedings|
|Title of Proceedings:||27th International Symposium on Computer and Information Sciences|
|Additional Information:|| This paper was presented at the 27th International Symposium on Computer and Information Sciences (ISCIS), held from 3-5 October 2012 in Paris, France.  An extended and revised version of the best papers will be considered for publication in The Computer Journal.|
|Uncontrolled Keywords:||semantic attacks, cloud storage|
|Subjects:||Q Science > Q Science (General)|
|School / Department / Research Groups:||School of Computing & Mathematical Sciences|
|Last Modified:||30 Nov 2012 13:50|
Actions (login required)