TY - GEN
T1 - Securing cloud-based military systems with Security Chaos Engineering and Artificial Intelligence
AU - Bedoya, Martin
AU - Palacios, Sara
AU - Diaz-López, Daniel
AU - Nespoli, Pantaleone
AU - Laverde, Estefania
AU - Suárez, Sebastián
N1 - Funding Information:
This work has been supported by Universidad del Rosario (Bogotá) through a “Beca de Estancia de Docencia e Investigación - EDI 2022-1”, and by the Spanish Ministry of Universities linked to the European Union through the NextGenerationEU program, under Margarita Salas postdoctoral fellowship (172/MSJD/22).
Publisher Copyright:
© 2023 ACM.
PY - 2023/8/29
Y1 - 2023/8/29
N2 - Recently, system security represents a big challenge for many organizations, and it must be specifically handled when a system is intended to be deployed in a cloud environment. Cloud environments provide multiple security services that run over a Shared Responsibility Model that requires the participation of the cloud provider and the customer. Thus, this paper proposes an architecture based on Artificial Intelligence to support the finding of system threats and errors in an early stage and on Security Chaos Engineering methodology to reliably test the existence of such errors. This proposed architecture may help orientate better system designs and contribute to building holistic security. A particular use case is described to show how the proposal can be applied to a system that supports services for a military-related organization.
AB - Recently, system security represents a big challenge for many organizations, and it must be specifically handled when a system is intended to be deployed in a cloud environment. Cloud environments provide multiple security services that run over a Shared Responsibility Model that requires the participation of the cloud provider and the customer. Thus, this paper proposes an architecture based on Artificial Intelligence to support the finding of system threats and errors in an early stage and on Security Chaos Engineering methodology to reliably test the existence of such errors. This proposed architecture may help orientate better system designs and contribute to building holistic security. A particular use case is described to show how the proposal can be applied to a system that supports services for a military-related organization.
UR - http://www.scopus.com/inward/record.url?scp=85169695890&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85169695890&partnerID=8YFLogxK
U2 - 10.1145/3600160.3605076
DO - 10.1145/3600160.3605076
M3 - Conference contribution
AN - SCOPUS:85169695890
T3 - ACM International Conference Proceeding Series
BT - ARES 2023 - 18th International Conference on Availability, Reliability and Security, Proceedings
PB - Association for Computing Machinery
T2 - 18th International Conference on Availability, Reliability and Security, ARES 2023
Y2 - 29 August 2023 through 1 September 2023
ER -