This document offers an overview of monitoring and attack-tolerant systems in the cloud, and constitutes the basis of the attack-tolerant framework that will be integrated in CLARUS to enable the continuous monitoring of the system with the aim of preserving security and privacy properties. The innovation behind this attack-tolerant system comes from the fact that the system will be able to continue its operation in the event of an attack. It relies on the activation or deployment of mutants of the same component (with specific security features) depending on the identified risk and attack.

The second version of this deliverable is issued in M22, when the first prototype of the CLARUS platform is finalized. It includes more detail in terms of the detected attacks, as well as complete information regarding the detection and mitigation procedures applied to brute force attack and cache-base side channel. Mainly section 3 has been improved and completed.