vulnerabilities

Question 1

An attacker can use the victim’s account to get access to the target’s resources

Answer 1

Identity and Access Management Guidance [65] Dynamic credential [66]

Question 2

Data from hard drives that are shared by several customers cannot be completely removed.

Answer 2

Specify destruction strategies on Service-level Agreements (SLAs)

Question 3

Authors in [58] illustrated the steps necessary to gain confidential information from other VMs co-located in the same server as the attacker.

Answer 3

FRS techniques [67] Digital Signatures [68]

Question 4

Side channel [69]

Answer 4

Encryption [69] Homomorphic encryption [70]

Question 5

An attacker can request more computational resources, so other legal users are not able to get additional capacity.

Answer 5

Cloud providers can force policies to offer limited computational resources

Question 6

Some examples are described in [32] such as SQL, command injection, and cross-site scripting

Answer 6

Web application scanners [71]

Question 7

A zero-day exploit in the HyperVM virtualization application that destroyed about 100,000 websites [72]

Answer 7

HyperSafe [60] TCCP (Trusted Cloud Computing Platform) [63] TVDc (Trusted Virtual Datacenter) [73,74]

Question 8

[75] presents a study that demonstrates security flaws in most virtual machines monitors

Answer 8

none

Question 9

An attacker can create a VM image containing malware and publish it in a public repository.

Answer 9

Mirage [49]

Question 10

[76] has empirically showed attacks against the migration functionality of the latest version of the Xen and VMware virtualization products.

Answer 10

PALM [64] TCCP [63] VNSS [52]

Question 11

Sniffing and spoofing virtual networks [51]

Answer 11

Virtual network framework based on Xen network modes: “bridged” and “routed” [51]