SLA-based Secure Cloud Application Development
TL;DR: This paper illustrates how to develop cloud applications that deliver services covered by Security SLAs by means of the services and tools provided by the SPECs framework, developed in the context of the SPECS (Secure Provisioning of Cloud Services based on SLA Management) European Project.
read more
Abstract: The perception of lack of control over resources deployed in the cloud may represent one of the critical factors for an organization to decide to cloudify or not its own services. The flat security features offered by commercial cloud providers to every customer, from simple practitioners to managers of huge amounts of sensitive data and services, is an additional problem. In recent years, the concept of Security Service Level Agreements (Security SLAs) is assuming a key role for the secure provisioning of cloud resources and services.
This paper illustrates how to develop cloud applications that deliver services covered by Security SLAs by means of the services and tools provided by the SPECS framework, developed in the context of the SPECS (Secure Provisioning of Cloud Services based on SLA Management) European Project. The whole (SPECS) application life cycle is dealt with, in order to give a comprehensive view of the different parties involved and of the processes needed to offer security guarantees on top of cloud services.
The discussed development process is exemplified by means of a real-world case study consisting in a cloud application offering a secure web container service.
read more
Chat with Paper
AI Agents for this Paper
Find similar papers on Google Scholar, PubMed and Arxiv
Write a critical review of this paper
Analyze citations of this paper to find unaddressed research gaps
Citations
Toward Secure Resource Allocation in Mobile Cloud Computing: A Matching Game
Talal Halabi,Martine Bellaiche,Adel Abusitta +2 more
- 01 Feb 2019
TL;DR: This paper approaches the problem of resource allocation in MCC from a security perspective using an adapted version of the Gale/Shapley algorithm, which provides stability and computational efficiency and can be implemented in large-scale MCC systems in a fully distributed fashion.
12
A Two-tier Security Solution for Storing Data Across Public Cloud
TL;DR: The proposed OwnData model to provide privacy and confidentiality to the user data successfully secures data in an encrypted format and only the owner of the data can have access to the original data shared across the cloud.
9
Towards a Proof-based SLA Management Framework
Miha Stopar,Jolanda Modic,Dana Petcu,Massimiliano Rak +3 more
- 23 Apr 2016
TL;DR: A system to facilitate identification of the root cause of each violation of integrity, write-serializability and read-freshness properties enables executing remediation actions specifically planned for detectable security incidents.
3
Frameworks to Develop SLA Based Security Metrics in Cloud Environment
Satya Ranjan Dash,Alo Sen,Pranab Kumar Bharimalla,Bhabani Shankar Prasad Mishra +3 more
- 01 Jan 2018
TL;DR: This chapter provides a survey on the various frameworks to develop SLA based security metrics and various security attributes and possible threats are having also been discussed in this chapter.
References
A fast and elitist multiobjective genetic algorithm: NSGA-II
TL;DR: This paper suggests a non-dominated sorting-based MOEA, called NSGA-II (Non-dominated Sorting Genetic Algorithm II), which alleviates all of the above three difficulties, and modify the definition of dominance in order to solve constrained multi-objective problems efficiently.
•Book
Iterative Methods for Sparse Linear Systems
Yousef Saad
- 01 Apr 2003
TL;DR: This chapter discusses methods related to the normal equations of linear algebra, and some of the techniques used in this chapter were derived from previous chapters of this book.
The vision of autonomic computing
TL;DR: A 2001 IBM manifesto noted the almost impossible difficulty of managing current and planned computing systems, which require integrating several heterogeneous environments into corporate-wide computing systems that extend into the Internet.
7.2K
Mersenne twister: a 623-dimensionally equidistributed uniform pseudo-random number generator
TL;DR: A new algorithm called Mersenne Twister (MT) is proposed for generating uniform pseudorandom numbers, which provides a super astronomical period of 2 and 623-dimensional equidistribution up to 32-bit accuracy, while using a working area of only 624 words.
Basic concepts and taxonomy of dependable and secure computing
TL;DR: The aim is to explicate a set of general concepts, of relevance across a wide range of situations and, therefore, helping communication and cooperation among a number of scientific and technical communities, including ones that are concentrating on particular types of system, of system failures, or of causes of systems failures.