05-07-2017, 12:39 PM
Some interesting paper I stumbled upon while doing some research. Thought I would share it in here since some may not be aware or heard about the "origin-exposing" attacks that could be used to circumvent cloud-based security.
Abstract:
Link to Paper: https://cloudpiercer.org/paper/CloudPiercer.pdf
Archived: https://archive.org/download/CloudPierce...iercer.pdf
Abstract:
Quote:The paper details eight so-called origin-exposing vectors, of which four are new. Those relate to temporary DNS exposure, SSL certificates, and sensitive files and outbound connection triggering which combined underpin the CloudPiercer tool.
The authors tested cloud security providers CloudFlare, Incapsula, Sucuri, Prolexic and DOSarrest and said they had been notified of the vulnerabilities prior to publication.
Link to Paper: https://cloudpiercer.org/paper/CloudPiercer.pdf
Archived: https://archive.org/download/CloudPierce...iercer.pdf