BotCloud Detection System

Leveraging cloud services, companies and organizations can significantly improve their efficiency, as well as building novel business opportunities. Cloud computing offers various advantages to companies while having some risks for them too. Advantages offered by service providers are mostly about efficiency and reliability while risks of cloud computing are mostly about security problems. Problems with security of the cloud still demand significant attention in order to tackle the potential problems. Security problems in the cloud as security problems in any area of computing, can not be fully tackled. However creating novel and new solutions can be used by service providers to mitigate the potential threats to a large extent. Looking at the security problem from a very high perspective, there are two focus directions. Security problems that threaten service user’s security and privacy are at one side. On the other hand, security problems that threaten service provider’s security and privacy are on the other side. Both kinds of threats should mostly be detected and mitigated by service providers. Looking a bit closer to the problem, mitigating security problems that target providers can protect both service provider and the user. However, the focus of research community mostly is to provide solutions to protect cloud users. A significant research effort has been put in protecting cloud tenants against external attacks. However, attacks that are originated from elastic, on-demand and legitimate cloud resources should still be considered seriously. The cloud-based botnet or botcloud is one of the prevalent cases of cloud resource misuses. Unfortunately, some of the cloud’s essential characteristics enable criminals to form reliable and low cost botclouds in a short time. In this paper, we present a system that helps to detect distributed infected Virtual Machines (VMs) acting as elements of botclouds. Based on a set of botnet related system level symptoms, our system groups VMs. Grouping VMs helps to separate infected VMs from others and narrows down the target group under inspection. Our system takes advantages of Virtual Machine Introspection (VMI) and data mining techniques.

Integrated reporting – a new form of a firm’s interaction with stakeholders

This study examines a new kind of public reporting, called integrated reporting as a form of a firm’s interaction with stakeholders. The study concerned issues such as how the studied organization defined its stakeholders and how this definition evolved during the transition period from 2009 to 2013, how has the integrated reporting of the organization evolved as an instrument of interaction with stakeholders over the transition period, and how the organization reported its value creation according to the international integrated reporting framework in the final, full-featured report. In examining the theory, the study used a qualitative analysis method that allowed deriving conceptual tools necessary to carry out the study. This study is based on the material of the five integrated reports written in Russian from a subsidiary of a Russian public company. The subsidiary carried out the transition to an integrated reporting for the five years from 2009 to 2013. A comparative qualitative method was used in reviewing the empirical material. During the research, an active cooperation of the organization with key stakeholders was revealed, which occurred during the whole period of development of integrated reporting. As a result, integrated reports were produced in cooperation with various key stakeholders, allowing balancing the financial and non-financial information in the reports. The study found that during the transition period, integrated reports gradually changed in the direction of greater clarity and ease of access to perception, consistency of presentation and materiality. The integrated reporting of the organization began reflect the basic requirements of the international integrated reporting framework regarding the content elements and guiding principles. Thus, the organization’s reports began including features of financial and non-financial reporting and connecting the three aspects of the organization's activities: economic, environmental and social. This study reveals the importance of identifying key stakeholders and their influence on the creation of organizational value. The new form of reporting suits better the requirements of modern organizations to interact with their stakeholder groups. The integrated reporting, which reflects the principles of the international integrated reporting framework, is an active resource for companies to communicate with stakeholders and a platform of transmission the necessary information on the creation of value in the long term.