View metadata, citation and similar papers at core.ac.uk brought to you by CORE provided by Aberdeen University Research Archive Enhancing Cloud Security and Privacy: Time for a New Approach? Bob Duncan Alfred Bratterud Andreas Happe Computing Science Dept. of Computer Science Dept. Digital Safety & Security University of Aberdeen Oslo and Akershus University Austrian Inst. of Tech. GmbH Aberdeen, UK Oslo, Norway Vienna, Austria Email:
[email protected] Email:
[email protected] Email:
[email protected] Abstract—Achieving cloud security is not a trivial problem goal of limiting the dependence of the company on the people and developing and enforcing good cloud security controls is a who use the system, thus removing as many opportunities for fundamental requirement if this is to succeed. The very nature human error as possible. of cloud computing can add additional problem layers for cloud security to an already complex problem area. We discuss why this We are concerned with achieving both good security and is such an issue, consider what desirable characteristics should be good privacy. While it is possible to have security without aimed for and propose a novel means of effectively and efficiently privacy, it is not possible to have privacy without security. Thus achieving these goals through the use of unikernel based systems. our approach in this paper will be to first ensure a good level of The main thrust of this paper is to discuss the key issues which security can be achieved, and to that end, we start by listing the need to be addressed, noting which of those might be covered by our proposed approach.