SeCloud: Computer-Aided Support for Selecting Security Measures for Cloud Architectures

Yuri Gil Dantas and Ulrich Schöpp

Proceedings of the 9th International Conference on Information Systems Security and Privacy (ICISSP 2023), pp. 264–275

2023 · doi: 10.5220/0011901900003405


The adoption of cloud infrastructures requires the deployment of security measures to protect assets against threats (e.g., tampering). Several security measures/technologies are available for securing cloud infrastructures, such as Service Mesh Istio and OpenID Connect. In the current state of practice, the selection of security measures is manually done by an expert (e.g., a security engineer). It becomes challenging for experts to make these selections due to the complexity of cloud infrastructures and the vast number of available security measures and technologies. This article proposes a tool for automating the recommendation of security measures for cloud architectures. Our tool expects as input information both the cloud architecture and assets identified during a threat analysis, and recommends security measures for protecting such assets against threats. We validate our tool in a case study that provides cloud services for unmanned air vehicles (UAVs).