A SLA-based interface for security management in cloud and GRID integrations

Rak, Massimiliano; Liccardo, Loredana; Aversa, Rocco

doi:10.1109/isias.2011.6122783

Cited by 20 publications

(9 citation statements)

References 7 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…For Rak et al, the mutual trust between a provider and a customer should be considered only in context of an SLA management [34]. Using a cloud-oriented API derived from the mO-SAIC project (http://www.mosaic-project.eu/), the authors built up an SLA-oriented cloud application that enables the management of security features related to user authentication and authorization of an IaaS Cloud Provider.…”

Section: Security Transparency Through Sla Managementmentioning

confidence: 99%

“…Meanwhile, from the provider point of view, SLAs are a way to have a clear and formal definition of the requirements that the application must respect. However, the initiative by Rak et al [34], does not go far enough to incorporate means for monitoring and reporting on the fulfilment of such SLA to the consumer. An extension of the work of Rak et al [35] in the context of the EU FP7 project Specs (http://specs-project.eu/) considered the provision of a platform for providing a security services based on SLA management.…”

Section: Security Transparency Through Sla Managementmentioning

confidence: 99%

See 1 more Smart Citation

Security transparency: the next frontier for security research in the cloud

et al. 2015

View full text Add to dashboard Cite

The recent advances in networking and the ubiquity of the Internet have enabled the emergence of cloud computing as a viable solution for a convenient, elastic and economical usage of services. In spite of these apparent advantages, the cloud model presents some challenges that hamper its wider adoption, most of which relate to security and privacy. This paper provides a review of the current initiatives devised by both academia and industry for addressing the security concerns inherent to the cloud model. Our analysis of the state of the art reveals that although initiatives such as SLA and virtual machines monitoring, and recent development in encryption mechanisms, have contributed to addressing some of the salient issues of security and privacy in the cloud, larger initiatives, other than standards, aiming at enabling security transparency and a mutual auditability in the cloud remain to be seen. With this in mind, the paper proposes some routes towards related solutions by discussing a number of desiderata for establishing a better security transparency between a Cloud Service Provider (CSP) and a Cloud Service Consumer (CSC). Given the current reluctance of some major businesses to embrace the trend, owing mainly to the devolution of some of the security aspects to a third party, the authors argue that undertaking some initiatives in that direction is a key to sustaining the current momentum of the cloud.

show abstract

Section: Security Transparency Through Sla Managementmentioning

confidence: 99%

Section: Security Transparency Through Sla Managementmentioning

confidence: 99%

Security transparency: the next frontier for security research in the cloud

et al. 2015

View full text Add to dashboard Cite

show abstract

“…A client can obtain gradings for all three attributes using Table II and calculate the attack risk probability for each leaf node using (14). Risk probability for a data breach is then calculated using (4).…”

Section: Mathematical Modelmentioning

confidence: 99%

Assessing Data Breach Risk in Cloud Systems

Rahulamathavan

Rajarajan

Rana

et al. 2015

2015 IEEE 7th International Conference on Cloud Computing Technology and Science (CloudCom)

View full text Add to dashboard Cite

“…The SLA framework was applied further for the management of security-based SLA (in [50][51][52][53]) and has been integrated in simulation engines able to predict the evolution of the developed application [54,55].…”

Section: Vendor Modulesmentioning

confidence: 99%

“…The main security problem that was treated is related to the access control solutions, as presented in [100]. The mOSAIC's SLA framework was integrated into an automated access control mechanism for the Cloud and Grid, as proved in [53]. The FP7 project SPECS (Secure Provisioning of Cloud Services based on SLA management [101]), starting in Autumn of 2013, will continue to enhance the mOSAIC's SLA framework.…”

Section: Beyond the Promises Securitymentioning

confidence: 99%

Experiences in building a mOSAIC of clouds

Petcu

Martino

Venticinque

et al. 2013

J Cloud Comput Adv Syst Appl

Self Cite

View full text Add to dashboard Cite

The diversity of Cloud computing services is challenging the application developers as various and non-standard interfaces are provided for these services. Few middleware solutions were developed until now to support the design, deployment and execution of service-independent applications as well as the management of resources from multiple Clouds. This paper focuses on one of these advanced middleware solutions, called mOSAIC. Written after the completion of its development, this paper presents an integrated overview of the mOSAIC approach and the use of its various software prototypes in a Cloud application development process. We are starting from the design concepts and arrive to various applications, as well as to the position versus similar initiatives.

show abstract

A SLA-based interface for security management in cloud and GRID integrations

Cited by 20 publications

References 7 publications

Security transparency: the next frontier for security research in the cloud

Security transparency: the next frontier for security research in the cloud

Assessing Data Breach Risk in Cloud Systems

Experiences in building a mOSAIC of clouds

Contact Info

Product

Resources

About