Towards corporate confidentiality preserving auditing mechanisms for Clouds

Author

Bless, Roland ; Flittner, Matthias

Author_Institution

Karlsruhe Inst. of Technol., Karlsruhe, Germany

fYear

2014

fDate

8-10 Oct. 2014

Firstpage

381

Lastpage

387

Abstract

IT services realized within cloud environments often suffer from a lack of transparency. On the one hand this opacity with respect to operational practices protects business secrets of a cloud provider. On the other hand, if services from critical infrastructures run within clouds this opacity becomes a severe problem, e.g., for a later root cause analysis in case of failures. This paper presents approaches for auditing the mapping of virtual resources to physical resources while preserving corporate confidentiality of the cloud providers. We also make sure that the resulting auditing information is useful for a later root cause analysis. Our research concludes that statistical binding and computational hiding commitment schemes are a suitable solution. Moreover, our approach enables a trusted third party to perform audits on behalf of tenants.

Keywords

auditing; cloud computing; critical infrastructures; security of data; statistical analysis; auditing information; business secrets; cloud environments; cloud provider; computational hiding commitment schemes; corporate confidentiality preserving auditing mechanisms; critical infrastructures; physical resources; root cause analysis; statistical binding schemes; trusted third party; virtual resources; Business; Cloud computing; Conferences; Law; Protocols; Security; Auditing; Cloud Security; Commitments; Non-Repudiation; Transparency;

fLanguage

English

Publisher

ieee

Conference_Titel

Cloud Networking (CloudNet), 2014 IEEE 3rd International Conference on

Conference_Location

Luxembourg

Type

conf

DOI

10.1109/CloudNet.2014.6969025

Filename

6969025