A novel approach to manage cloud security SLA incidents

Trapero, R. and Modic, J. and Stopar, M. and Taha, A. and Suri, Neeraj (2017) A novel approach to manage cloud security SLA incidents. Future Generation Computer Systems, 72. pp. 193-205. ISSN 0167-739X

Full text not available from this repository.

Abstract

Cloud computing is increasingly playing an important role in the service provisioning domain given the economic and technological benefits it offers. The popularity of cloud services is increasing but so are their customers’ concerns about security assurance and transparency of the Cloud Service Providers (CSPs). This is especially relevant in the case of critical services that are progressively moving to the cloud. Examples include the integrated European air traffic control system or public administrations through the governmental clouds. Recent efforts aim to specify security in cloud by using security service level agreements (secSLAs). However, the paucity of approaches to actually control the fulfillment of secSLAs and to react in case of security breaches, often results in distrust in cloud services. In this paper, we present a solution to monitor and enforce the fulfillment of secSLAs. Our framework is able to (a) detect occurrences that lead to unfulfillment of commitments, and (b) also provide mitigation to the harmful events that may or do compromise the validity of secSLAs. © 2016 Elsevier B.V.

Item Type:
Journal Article
Journal or Publication Title:
Future Generation Computer Systems
Uncontrolled Keywords:
/dk/atira/pure/subjectarea/asjc/1700/1705
Subjects:
ID Code:
137452
Deposited By:
Deposited On:
11 Oct 2019 14:35
Refereed?:
Yes
Published?:
Published
Last Modified:
23 Sep 2020 05:41