Security Audit as a Service
Security Audit as a Service (SAaaS) is a project funded by the German Ministry for Education and Research (BMBF) and investigates how audits of cloud infrastructure can enhance trust in cloud environments.
SAaaS is based on a cloud intrusion detection system with distributed agents deployed at logical key locations (e.g. VMs, VM hosts, cloud management) of a cloud infrastructure monitoring occurrences. An occurrence can be anything describable like a simple successfully login event, a series of unsuccessful login attempts, network connections between VMs or increasing CPU consumption of a certain VM. In the event of an identified occurrence the agent generates an event feeding a complex event processing engine which draws the cloud's security state. Thus, distributed attacks on a cloud computing environment or misuse of cloud resource will be detected early.
