Research Area:  Cloud Security
Major provisioning of cloud computing is mainly delivered via Software as a Service, Platform as a Service and Infrastructure as a Service. However, these service delivery models are vulnerable to a range of security attacks, exploiting both cloud specific and existing web service vulnerabilities. Taxonomies are a useful tool for system designers as they provide a systematic way of understanding, identifying and addressing security risks. In this research work, Cloud based attacks and vulnerabilities are collected and classify with respect to their cloud models. We also present taxonomy of cloud security attacks and potential mitigation strategies with the aim of providing an in-depth understanding of security requirements in the cloud environment. We also highlight the importance of intrusion detection and prevention as a service.
Keywords:  
Author(s) Name:  Salman Iqbal,Miss Laiha Mat Kiah,Babak Dhaghighi,Muzammil Hussain,Suleman Khan,Muhammad Khurram Khan,Kim Kwang Raymond Choo
Journal name:  Journal of Network and Computer Applications
Conferrence name:  
Publisher name:  Elsevier
DOI:  10.1016/j.jnca.2016.08.016
Volume Information:  Volume 74, October 2016, Pages 98-120
Paper Link:   https://www.sciencedirect.com/science/article/abs/pii/S1084804516301771