QUIRC: A Quantitative Impact and Risk Assessment Framework for Cloud Security

Saripalli, Prasad; Walters, Ben

doi:10.1109/cloud.2010.22

Cited by 197 publications

(116 citation statements)

References 4 publications

Supporting

Mentioning

107

Contrasting

Unclassified

Order By: Relevance

“…Risk assessment in distributed computing has been extensively studied in the literature, either as a general methodology [2], [3], [4] or focusing on a specific type of risk, such as security and SLA fulfilment [5], [6]. These projects have included objectives ranging from information protection, evaluation /prediction of QoS and probability of SLA failures [2], [20].…”

Section: Related Workmentioning

confidence: 99%

“…Risk assessment has been introduced into utility computing such as Grids and clouds either as a general methodology [2], [3], [4] or focusing on a specific type of risk, such as security and SLA fulfilment [5], [6]. However, the aim of this paper is to propose a risk assessment framework for cloud service provision, in terms of assessing and improving the reliability and productivity of fulfilling an SLA in a cloud environment.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

A Risk Assessment Framework for Cloud Computing

Djemame

Armstrong

Guitart

et al. 2016

IEEE Trans. Cloud Comput.

View full text Add to dashboard Cite

Abstract-Cloud service providers offer access to their resources through formal Service Level Agreements (SLA), and need wellbalanced infrastructures so that they can maximise the Quality of Service (QoS) they offer and minimise the number of SLA violations. This paper focuses on a specific aspect of risk assesment as applied in cloud computing: methods within a framework that can be used by cloud service providers and service consumers to assess risk during service deployment and operation. It describes the various stages in the service lifecycle wheres risk assessment takes place, and the corresponding risk models that have been designed and implemented. The impact of risk on architectural components, with special emphasis on holistic management support at service operation, is also described. The risk assessor is shown to be effective through the experimental evaluation of the implementation, and is already integrated in a cloud computing toolkit.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

A Risk Assessment Framework for Cloud Computing

Djemame

Armstrong

Guitart

et al. 2016

IEEE Trans. Cloud Comput.

View full text Add to dashboard Cite

show abstract

“…By now, the risk evaluating for the cloud is directly derived from the traditional one, such as [9], [10]. They all make the cloud platforms as the evaluating objects but the users' assets.…”

Section: Risk Evaluatingmentioning

confidence: 99%

Job Security in the Cloud Computing

Tuo¹,

Xu²,

Xu³

et al. 2015

IJFCC

View full text Add to dashboard Cite

Abstract-Cloud computing is a burgeoning Internet computing paradigm. The convenient, cheap and elastic resources in the cloud are attracting the users to migrate their assets (data, computing and software, etc.) into it. However, cloud also caused the serious worry about the security of those assets, since the resources are not under the control of the users. Traditional security mechanisms are usually aimed at single autonomous domain and are not suitable for protection of those assets migrating between autonomous domains. This paper caters to the security of aforesaid migrated assets, defines them as job, studies their security demands, analyses the security threats to them, and proposes the essential protecting mechanisms for it. Our work is from the point of view of the users, and thus will be more suitable for solving the security problem of their assets. 

show abstract

“…In [18] under data governance the writer highlighted that multitenancy arrangements are raising questions about data segregation. NIST developed a report titled "Guidelines on Security and Privacy in Public Cloud Computing"; they identified multitenancy as a downside in the cloud [18].…”

Section: Issn: 2320-5407mentioning

confidence: 99%

An Analysis of Cloud Computing Multitenancy Security Challenges.

Hosni¹

2017

IJAR

View full text Add to dashboard Cite

Cloud computing is becoming the trend of information technology computational model and the cloud security is becoming a major issue in adopting the cloud for large customers [28]. Such concerns are driven by the multitenancy situation where more than one tenant are utilizing the same physical computer hardware and sharing the same software and data [1]. This has associated risks where confidentiality and/or integrity can be violated [28]. Therefore in order to propose effective security solutions and strategies a good knowledge of the current cloud implementations and practices must be acquired [28]. Such knowledge is needed in order to recognize attack vectors and attack surfaces [28]. This paper explores the specific risks in cloud computing due to multitenancy and the measures that can be taken to mitigate those risks. Before that a clear understanding of multitenancy and its benefits are demonstrated.

show abstract

QUIRC: A Quantitative Impact and Risk Assessment Framework for Cloud Security

Cited by 197 publications

References 4 publications

A Risk Assessment Framework for Cloud Computing

A Risk Assessment Framework for Cloud Computing

Job Security in the Cloud Computing

An Analysis of Cloud Computing Multitenancy Security Challenges.

Contact Info

Product

Resources

About