Title :
Towards Continuous Certification of Infrastructure-as-a-Service Using Low-Level Metrics
Author :
Philipp Stephanow;Niels Fallenbeck
Author_Institution :
Fraunhofer AISEC, Munich, Germany
Abstract :
Continuous cloud service certification describes the process of continuously validating whether a service adheres to a set of requirements. However, most requirements derived from existing standards such as ISO-27001:2013 are generic, often times inherently ambiguous and thus cannot be validated automatically. In this paper, we address this gap by presenting a bottom-up approach using low-level metrics available through widely deployed implementations of infrastructure-as-a-service (IaaS) components. We further present examples how these low-level metrics can serve to construct complex metrics to support validation of generic requirements.
Keywords :
"Measurement","Cloud computing","Protocols","Simple object access protocol","Standards","Virtual private networks","Security"
Conference_Titel :
Ubiquitous Intelligence and Computing and 2015 IEEE 12th Intl Conf on Autonomic and Trusted Computing and 2015 IEEE 15th Intl Conf on Scalable Computing and Communications and Its Associated Workshops (UIC-ATC-ScalCom), 2015 IEEE 12th Intl Conf on
DOI :
10.1109/UIC-ATC-ScalCom-CBDCom-IoP.2015.268
