• DocumentCode
    267070
  • Title

    A Multi-layer and MultiTenant Cloud Assurance Evaluation Methodology

  • Author

    Hudic, Aleksandar ; Tauber, Markus ; Lorunser, Thomas ; Krotsiani, Maria ; Spanoudakis, George ; Mauthe, Andreas ; Weippl, Edgar R.

  • Author_Institution
    AIT, Graz, Austria
  • fYear
    2014
  • fDate
    15-18 Dec. 2014
  • Firstpage
    386
  • Lastpage
    393
  • Abstract
    Data with high security requirements is being processed and stored with increasing frequency in the Cloud. To guarantee that the data is being dealt in a secure manner we investigate the applicability of Assurance methodologies. In a typical Cloud environment the setup of multiple layers and different stakeholders determines security properties of individual components that are used to compose Cloud applications. We present a methodology adapted from Common Criteria for aggregating information reflecting the security properties of individual constituent components of Cloud applications. This aggregated information is used to categorise overall application security in terms of Assurance Levels and to provide a continuous assurance level evaluation. It gives the service owner an overview of the security of his service, without requiring detailed manual analyses of log files.
  • Keywords
    cloud computing; security of data; cloud applications; multilayer multitenant cloud assurance evaluation methodology; overall application security; Cloud computing; Clouds; Equations; Mathematical model; Monitoring; Security; Vectors; assurance; cloud; critical infrastructures;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Cloud Computing Technology and Science (CloudCom), 2014 IEEE 6th International Conference on
  • Conference_Location
    Singapore
  • Type

    conf

  • DOI
    10.1109/CloudCom.2014.85
  • Filename
    7037693
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=267070