TrustCloud: A Framework for Accountability and Trust in Cloud Computing

Ko, Ryan K. L.; Jagadpramana, Peter; Mowbray, Miranda; Pearson, Siani; Kirchberg, Markus; Liang, Qianhui; Lee, Bu-Sung

doi:10.1109/services.2011.91

Cited by 304 publications

(153 citation statements)

References 11 publications

Supporting

Mentioning

146

Contrasting

Unclassified

Order By: Relevance

“…To best mitigate barriers to confidence, we need to understand the main components affecting cloud trust [32]:…”

Section: Mental Barriers and Components Of Trust In Cloud Computingmentioning

confidence: 99%

“…encryption) which make it extremely difficult or uneconomical for an unauthorized person to access some information [32].…”

Section: Mental Barriers and Components Of Trust In Cloud Computingmentioning

confidence: 99%

“…Accountability -the obligation and/ or willingness to demonstrate and take responsibility for performance in light of agreed-upon expectations, accountability goes beyond responsibility by obligating an organization to be answerable for its actions [32], [33].…”

Section: Mental Barriers and Components Of Trust In Cloud Computingmentioning

confidence: 99%

See 2 more Smart Citations

Identification of mental barriers in the implementation of cloud computing in the SMEs in Poland

Jelonek

Stępniak

Turek

et al. 2014

Annals of Computer Science and Information Systems

View full text Add to dashboard Cite

Abstract-Cloud computing is an emerging new computing paradigm designed to deliver numerous computing services through networked media such as the Internet. This solution offers many possibilities that did not exist before for all enterprises but especially for small and medium sized companies, which very often cannot afford for huge investments in contemporary IT solutions. The aim of the paper is an attempt of barriers identification especially mental barriers of managers which hinder making decision concerning implementation of cloud computing in small and medium sized companies in Poland. In the paper the notion of cloud computing was presented as well as benefits in the aspects of: technical, financial, organizational ones and barriers of cloud computing adoption. Next the results of research conducted in Polish SMEs companies were presented. The research showed that the biggest mental barriers perceived by managers concern lack of trust, incomplete knowledge about cloud computing and not perceiving necessity of changes in currently used IT model.

show abstract

“…To best mitigate barriers to confidence, we need to understand the main components affecting cloud trust [32]:…”

Section: Mental Barriers and Components Of Trust In Cloud Computingmentioning

confidence: 99%

“…encryption) which make it extremely difficult or uneconomical for an unauthorized person to access some information [32].…”

Section: Mental Barriers and Components Of Trust In Cloud Computingmentioning

confidence: 99%

See 1 more Smart Citation

Identification of mental barriers in the implementation of cloud computing in the SMEs in Poland

Jelonek

Stępniak

Turek

et al. 2014

Annals of Computer Science and Information Systems

View full text Add to dashboard Cite

show abstract

“…They also adopt extensible access control markup language (XACML) to enforce policy specification which aligns with the UBSF approach for security. Ko et al [9] investigate trust for Cloud computing and propose a TrustCloud Framework focused on accountability. They have three layers: (1) System layer, which covers all the underlying hardware and platform; (2) Data layer, which contains the data for the work and (3) Workflow layer, which uses workflow to execute all the services and requests.…”

Section: Introductionmentioning

confidence: 99%

Cloud computing adoption framework: A security framework for business clouds

Chang

Kuo

Ramachandran

2016

Future Generation Computer Systems

264

100

View full text Add to dashboard Cite

This paper presents a Cloud Computing Adoption Framework (CCAF) security suitable for business clouds. CCAF multi-layered security is based on the development and integration of three major security technologies: firewall, identity management and encryption based on the development of Enterprise File Sync and Share technologies. This paper presents our motivation, related work and our views on security framework. Core technologies have been explained in details and experiments were designed to demonstrate the robustness of the CCAF multi-layered security. In penetration testing, CCAF multi-layered security could detect and block 99.95% viruses and trojans and could maintain 85% and above of blocking for 100 hours of continuous attacks. Detection and blocking took less than 0.012 second per trojan and viruses. A full CCAF multi-layered security protection could block all SQL injection providing real protection to data. CCAF multi-layered security had 100% rate of not reporting false alarm. All F-measures for CCAF test results were 99.75% and above. How CCAF multi-layered security can blend with policy, real services and blend with business activities have been illustrated. Research contributions have been justified and CCAF multi-layered security can offer added value for volume, velocity and veracity for Big Data services operated in the Cloud.

show abstract

“…This kind of service is also Infrastructure as a Service (IaaS), based on which the service providers can build a variety of specific services to customers [3]. The ubiquitous adoption of cloud services depends largely on the trustworthiness of the cloud providers [4], [5], because customers lose direct control of their data and applications hosted in cloud environments. And the data and applications may be subject to two kinds of threats: insider attacks such as malicious staff or administrator internal of the cloud providers [6] or attacks from other cloud users sharing the same cloud computing infrastructure and resources [7].…”

Section: Introductionmentioning

confidence: 99%

T-YUN: Trustworthiness Verification and Audit on the Cloud Providers

Liu

Lin

Fang

2013

IEICE Trans. Inf. & Syst.

View full text Add to dashboard Cite

SUMMARYCloud computing is broadly recognized as as the prevalent trend in IT. However, in cloud computing mode, customers lose the direct control of their data and applications hosted by the cloud providers, which leads to the trustworthiness issue of the cloud providers, hindering the widespread use of cloud computing. This paper proposes a trustworthiness verification and audit mechanism on cloud providers called T-YUN. It introduces a trusted third party to cyclically attest the remote clouds, which are instrumented with the trusted chain covering the whole architecture stack. According to the main operations of the clouds, remote verification protocols are also proposed in T-YUN, with a dedicated key management scheme. This paper also implements a proof-of-concept emulator to validate the effectiveness and performance overhead of T-YUN. The experimental results show that T-YUN is effective and the extra overhead incurred by it is acceptable.

show abstract

TrustCloud: A Framework for Accountability and Trust in Cloud Computing

Cited by 304 publications

References 11 publications

Identification of mental barriers in the implementation of cloud computing in the SMEs in Poland

Identification of mental barriers in the implementation of cloud computing in the SMEs in Poland

Cloud computing adoption framework: A security framework for business clouds

T-YUN: Trustworthiness Verification and Audit on the Cloud Providers

Contact Info

Product

Resources

About