Security Infrastructure for On-demand Provisioned Cloud Infrastructure Services

Demchenko, Yuri; Ngo, Canh; Laat, Cees de; Wlodarczyk, Tomasz Wiktor; Rong, Chunming; Ziegler, Wolfgang

doi:10.1109/cloudcom.2011.42

Cited by 22 publications

(6 citation statements)

References 10 publications

(13 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Consider existing private and public extranets, and take into account partner connections when making such a comparison. For large enterprises without significant resources, or for small to medium-size businesses (SMBs) [4,5,6], is the risk of using public clouds (assuming that such enterprises lack the resources necessary for private clouds) really higher than the risks inherent in their current infrastructures? In many cases, the answer is probably nothere is not a higher level of risk.…”

Section: Network-level Mitigationmentioning

confidence: 99%

Emerging Security Challenges in Cloud Computing, from Infrastructure-Based Security to Proposed Provisioned Cloud Infrastructure

Movahedisefat

Farshchi

Mohammadpur

2014

Emerging Trends in ICT Security

View full text Add to dashboard Cite

Section: Network-level Mitigationmentioning

confidence: 99%

Emerging Security Challenges in Cloud Computing, from Infrastructure-Based Security to Proposed Provisioned Cloud Infrastructure

Movahedisefat

Farshchi

Mohammadpur

2014

Emerging Trends in ICT Security

View full text Add to dashboard Cite

“…Some argue that such trust relations must be formed dynamically (Demchenko et al, 2011). Many services, like Google email, Orkut mail services, and some social networking services, use trust or referral-based information filtering to protect mail servers from spammers (Golbeck, 2004).…”

Section: Cloud-specific Security Liabilitiesmentioning

confidence: 99%

Cloud Computing: Security and Reliability Issues

Ahamed¹,

Shahrestani²,

Ginige³

2013

CIBIMA

View full text Add to dashboard Cite

Security and reliability of cloud computing services remain among the dominant concerns inhibiting their pervasive adaptation. The distributed and the multi-tenancy nature of the cloud computing paradigm can be considered as the root causes for their increased risks and vulnerabilities. Resource sharing and virtualization can also be mentioned as additional main factors contributing to or augmenting cross-site scripting and other cloud vulnerabilities. Cloud are also exposed to the risks and liabilities faced by other networked systems. Poorly designed APIs that may cause security problems or distributed denial of services attacks are the examples of this category that are considered in this paper. Public key infrastructure provides the foundations for provision of some essential security services. These include services such as confidentiality, authentication, and privacy that are of vital importance for establishing trust and confidence between the cloud providers and their clients. In this work, we will discuss the potential flaws of this infrastructure and examine how they may deteriorate the security and reliability levels of the cloud environments. To enable a comprehensive study of the challenges in security and reliability of the cloud computing environments, we categorize the risks and vulnerabilities they face. Traditional techniques, based on cryptography, can address some of these challenges to a certain degree. We will argue that they may not be efficient for use in cloud environments. We then focus on data-centric and homomorphic encryption methods that may provide more appropriate solutions in addressing the challenges in cloud computing security and reliability.

show abstract

“…The direct trust relationship between Cloud client and its Cloud provider are setup during the deployment phase of the Cloud security services provisioning life-cycles in [6]. The establishment workflow is described as below:…”

Section: B Dynamic Trust Establishmentsmentioning

confidence: 99%

Toward a Dynamic Trust Establishment approach for multi-provider Intercloud environment

Ngo

Demchenko

Laat

2012

4th IEEE International Conference on Cloud Computing Technology and Science Proceedings

Self Cite

View full text Add to dashboard Cite

Abstract-In Cloud computing, the data are not only managed by the data owner but also by Cloud providers. Sophisticated Clouds collaboration scenarios require that these data objects can be accessed distributively among Cloud providers, while still being under the control of data owners. It brings security challenges for distributed authorization and trust management in which existing proposed schemes have not fully solved. In this paper, we propose a Dynamic Trust Establishment approach which can incorporate into Cloud provisioning life-cycles for the multi-provider Intercloud environment. It relies on attribute-based policies as the mechanism for trust evaluation and delegation. The paper also presents a practical implementation approach for attribute-based policies using Multi-type Interval Decision Diagrams which has advantage in term of evaluation complexity.

show abstract

Security Infrastructure for On-demand Provisioned Cloud Infrastructure Services

Cited by 22 publications

References 10 publications

Emerging Security Challenges in Cloud Computing, from Infrastructure-Based Security to Proposed Provisioned Cloud Infrastructure

Emerging Security Challenges in Cloud Computing, from Infrastructure-Based Security to Proposed Provisioned Cloud Infrastructure

Cloud Computing: Security and Reliability Issues

Toward a Dynamic Trust Establishment approach for multi-provider Intercloud environment

Contact Info

Product

Resources

About