A case study on cloud security controls
Keywords:
Cloud computing, security controls, case study, Capital one data breach, cyber attacks, AFS, SSO, IAMAbstract
Cloud computing is a highly discussed topic in today’s technical and economic world. Many big players of the software industry are concentrating more on cloud services. Companies are racing to incorporate cloud infrastructures into their businesses or provide their own. While speaking of development, we cannot let down an important aspect called security. A misconfiguration or a minor vulnerability in a way the services are handled may result in a huge loss of data, which in turn would result in great loss of revenue. Money can be generated in one way or the other, but reputation once lost cannot be brought back again. In this paper, we discuss about the security controls and misconfigurations that frequently happen in AWS environments and discuss ways to avoid it using Capital One Data Breach as an example.
Downloads
References
C.N. Höfer, G. Karagiannis, “Cloud computing services: taxonomy and comparison”, published on the Journal of Internet Services and Applications (Volume 2), pp. 81-94, January 2010.
https://aws.amazon.com/s3/features/
https://aws.amazon.com/s3/c=23&pt=1
Nelson Novaes Neto, Stuart Madnick, Anchises Moraes G. de Paula, Natasha Malara Borges, “A Case Study of the Capital One Data Breach” published on the SSRN Electronic Journal, January 2020.
https://aws.amazon.com/security/?nc1=f_cc
https://aws.amazon.com/firewall-manager/?c=22&pt=11
Amazon WhitePaper, “AWS Best Practices for DDOS Resiliency”, https://docs.aws.amazon.com/whitepapers/latest/aws-best-practices-ddos-resiliency/aws-best-practices-ddos-resiliency.pdf#welcome, December 2019.
L.Ertaul, S.Singhal, G.Saldamli, “Security Challenges in Cloud Computing” published on the proceedings of the International Conference on Security and Management, January 2010.
Amazon WhitePaper, “Intro to AWS Security”, https://d1.awsstatic.com/whitepapers/Security/Intro_to_AWS_Security.pdf?did=wp_card&trk=wp_card , January 2020
Published
How to Cite
Issue
Section
Copyright (c) 2022 International journal of health sciences
This work is licensed under a Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International License.
Articles published in the International Journal of Health Sciences (IJHS) are available under Creative Commons Attribution Non-Commercial No Derivatives Licence (CC BY-NC-ND 4.0). Authors retain copyright in their work and grant IJHS right of first publication under CC BY-NC-ND 4.0. Users have the right to read, download, copy, distribute, print, search, or link to the full texts of articles in this journal, and to use them for any other lawful purpose.
Articles published in IJHS can be copied, communicated and shared in their published form for non-commercial purposes provided full attribution is given to the author and the journal. Authors are able to enter into separate, additional contractual arrangements for the non-exclusive distribution of the journal's published version of the work (e.g., post it to an institutional repository or publish it in a book), with an acknowledgment of its initial publication in this journal.
This copyright notice applies to articles published in IJHS volumes 4 onwards. Please read about the copyright notices for previous volumes under Journal History.
