Why aren't we eating our own dog food?

CanTel was one of the fastest growing Canadian telecommunications companies that provided telephone, cable, Internet, and cloud services. In 2015, the company employed over 40,000 employees and boasted of achieving over Cdn$10 billion of annual revenue and serving over 10 million customers. As a cloud service provider, the company faced a dilemma of not being able to fulfill the IT needs of its internal business units. As a result, one of the business units, Digital Channel, resorted to a third-party cloud service, and this set an example for other business units to follow suit. Jeff Smith, the CEO of the company CanTel, and the CIO Jane Lockhart had to find a solution to the issue that had significant implications to its business-IT alignment and IT governance.

Download Full-text

Kernel-Based Machine Learning Models to Predict Mitigation Time During Cloud Security Attacks

International Journal of e-Collaboration ◽

10.4018/ijec.2021100106 ◽

2021 ◽

Vol 17 (4) ◽

pp. 75-88

Author(s):

Padmaja Kadiri ◽

Seshadri Ravala

Keyword(s):

Machine Learning ◽

Service Provider ◽

Predictive Models ◽

Cloud Service ◽

Cloud Services ◽

Security Threats ◽

Learning Models ◽

Security Attacks ◽

Cloud Service Provider ◽

Machine Learning Models

Security threats are unforeseen attacks to the services provided by the cloud service provider. Depending on the type of attack, the cloud service and its associated features will be unavailable. The mitigation time is an integral part of attack recovery. This research paper explores the different parameters that will aid in predicting the mitigation time after an attack on cloud services. Further, the paper presents machine learning models that can predict the mitigation time. The paper presents the kernel-based machine learning models that can predict the average mitigation time during security attacks. The analysis of the results shows that the kernel-based models show 87% accuracy in predicting the mitigation time. Furthermore, the paper explores the performance of the kernel-based machine learning models based on the regression-based predictive models. The regression model is used as a benchmark model to analyze the performance of the machine learning-based predictive models in the prediction of mitigation time in the wake of an attack.

Download Full-text

An Analysis on the Terms and Conditions of the Clickwrap Agreement and the Benefits of Maintaining the Click Wrap Agreement in Cloud Computing

10.4018/978-1-7998-7927-5.ch010 ◽

2022 ◽

pp. 205-224

Author(s):

Dhiviya Ram

Keyword(s):

Cloud Computing ◽

Service Provider ◽

Service Providers ◽

Cloud Service ◽

Cloud Services ◽

End User ◽

Cloud Service Provider ◽

Novel Approach ◽

Cloud Service Providers ◽

Provider Perspective

One of the most unique forms of contracting is apparent in cloud computing. Cloud computing, unlike other conventional methods, has adopted a different approach in the formation of binding contract that will be used for the governance of the cloud. This method is namely the clickwrap agreement. Click wrap agreement follows a take it or leave it basis in which the end users are provided with limited to no option in terms of having a say on the contract that binds them during the use of cloud services. The terms found in the contract are often cloud service provider friendly and will be less favourable to the end user. In this article, the authors examine the terms that are often found in the cloud computing agreement as well as study the benefit that is entailed in adopting this contracting method. This chapter has undertaken a qualitative study that comprises interviews of cloud service providers in Malaysia. Hence, this study is a novel approach that also provides insight in terms of the cloud service provider perspective regarding the click wrap agreement.

Download Full-text

A TPA Based Efficient Non-Repudiation Scheme for Cloud Storage

Advanced Materials Research ◽

10.4028/www.scientific.net/amr.765-767.1630 ◽

2013 ◽

Vol 765-767 ◽

pp. 1630-1635

Author(s):

Wen Qi Ma ◽

Qing Bo Wu ◽

Yu Song Tan

Keyword(s):

Service Provider ◽

Cloud Storage ◽

Cloud Service ◽

Cloud Security ◽

Third Party ◽

Cloud Service Provider ◽

Critical Data ◽

Security Environment ◽

Financial Contract ◽

Update Process

One of differences between cloud storage and previous storage is that there is a financial contract between user and the cloud service provider (CSP). User pay for service in exchange for certain guarantees and the cloud is a liable entity. But some mechanisms need to ensure the liability of CSP. Some work use non-repudiation to realize it. Compared with these non-repudiation schemes, we use third party auditor not client to manage proofs and some metadata, which are security critical data in cloud security. It can provide a more security environment for these data. Against the big overhead in update process of current non-repudiation scheme, we propose three schemes to improve it.

Download Full-text

Credit Value and Attribute Based Access Control Mechanism for Cloud Data Centres

International Journal of Recent Technology and Engineering - 2 ◽

10.35940/ijrte.c5734.098319 ◽

2019 ◽

Vol 8 (3) ◽

pp. 6217-6225

Keyword(s):

Access Control ◽

Service Provider ◽

Control Mechanism ◽

Cloud Service ◽

Cloud Services ◽

Cloud Service Provider ◽

Access Control Mechanism ◽

Security Concerns ◽

Attribute Based Access Control ◽

Cloud Resources

Now-a-days the cloud is very useful for providing many IT services. These services are delivered over the internet and accessed globally with the help of internet. The cloud service provider ensures flexibility in provisioning and scaling of resources. The cloud services are completely managed by cloud service provider (CSP), which ensures the end to end availability, reliability and security of the cloud resources. The exponential growth of cloud services has provided many opportunities but has also perplexed severe security concerns. The popularity of cloud service based applications is rapidly increasing due to which many security and legal issues are arising. In this paper we describe the existing access control method and framework for securing cloud services. The concept of modified reputation and attribute based access control system has been discussed. In this approach the concept of crowd reviewing has been used to compute the credit value of users. The simulation experiment has been shown to protect the consistent users and to restrict the access of inconsistent users in cloud environment. It is an access control approach to mitigate the challenges in security concerns. This access control mechanism is helpful for cloud application services, which automatically restrict the malicious users from the access of resources. It is also helpful in authorization of users to access the cloud resources.

Download Full-text

An Improved CoCoSo Method with a Maximum Variance Optimization Model for Cloud Service Provider Selection

Engineering Economics ◽

10.5755/j01.ee.31.4.24990 ◽

2020 ◽

Vol 31 (4) ◽

pp. 411-424

Author(s):

Han Lai ◽

Huchang Liao ◽

Zhi Wen ◽

Edmundas Kazimieras Zavadskas ◽

Abdullah Al-Barakati

Keyword(s):

Service Provider ◽

Optimization Model ◽

Service Providers ◽

Service Selection ◽

Cloud Service ◽

Careful Analysis ◽

Cloud Services ◽

Cloud Service Provider ◽

Maximum Variance ◽

Cloud Service Providers

With the rapid growth of available online cloud services and providers for customers, the selection of cloud service providers plays a crucial role in on-demand service selection on a subscription basis. Selecting a suitable cloud service provider requires a careful analysis and a reasonable ranking method. In this study, an improved combined compromise solution (CoCoSo) method is proposed to identify the ranking of cloud service providers. Based on the original CoCoSo method, we analyze the defects of the final aggregation operator in the original CoCoSo method which ignores the equal importance of the three subordinate compromise scores, and employ the operator of “Linear Sum Normalization” to normalize the three subordinate compromise scores so as to make the results reasonable. In addition, we introduce a maximum variance optimization model which can increase the discrimination degree of evaluation results and avoid inconsistent ordering. A numerical example of the trust evaluation of cloud service providers is given to demonstrate the applicability of the proposed method. Furthermore, we perform sensitivity analysis and comparative analysis to justify the accuracy of the decision outcomes derived by the proposed method. Besides, the results of discrimination test also indicate that the proposed method is more effective than the original CoCoSo method in identifying the subtle differences among alternatives.

Download Full-text

Cloud Based Secure Data Sharing Algorithm for Health Care

Cloud Computing Systems and Applications in Healthcare - Advances in Healthcare Information Systems and Administration ◽

10.4018/978-1-5225-1002-4.ch003 ◽

2016 ◽

pp. 47-65

Author(s):

Saravana Kumar N. ◽

Rajya Lakshmi Gubburi Venkataramana ◽

Balamurugan B.

Keyword(s):

Service Provider ◽

Service Providers ◽

Health Sector ◽

Cloud Service ◽

Cloud Services ◽

Cloud Service Provider ◽

Language Technology ◽

Wide Range ◽

Architectural Framework ◽

And Performance

Cloud computing is one of most fast developing technology and many organizations are now offering a wide range of cloud services. Although the services provided are the same there is no common programming language, technology and protocol to access the entirety of the cloud services. Client who use a service provided by a certain organization are often limited and confined to that specific organization its structure and technologies. A Cloud federation is one solution to that interoperability through which computing resources of one Cloud Service Provider is rented or sold to another service provider or the services provided by one Cloud Service Provider is replicated into another Cloud Service Provider without having to lose any functionality and performance. This process is a tedious task and is prone to multiple limitations. In this paper we proposed the architectural framework and algorithm for the possible interoperability between the cloud service providers based on SLA in prospective of health sector as the application of cloud in health sector is highly needed in future.

Download Full-text

Measuring security for cloud service provider: A Third Party approach

2013 International Conference on Electrical Information and Communication Technology (EICT) ◽

10.1109/eict.2014.6777855 ◽

2014 ◽

Cited By ~ 8

Author(s):

Md Whaiduzzaman ◽

Abdullah Gani

Keyword(s):

Service Provider ◽

Cloud Service ◽

Third Party ◽

Cloud Service Provider

Download Full-text

Authenticated Location-Aware Publish/Subscribe Services in Untrusted Outsourced Environments

Security and Communication Networks ◽

10.1155/2017/4215425 ◽

2017 ◽

Vol 2017 ◽

pp. 1-15

Author(s):

Han Yan ◽

Xiang Cheng ◽

Sen Su ◽

Siyao Zhang

Keyword(s):

Real World ◽

Service Provider ◽

Low Cost ◽

Cloud Service ◽

Third Party ◽

Location Based Service ◽

Cloud Service Provider ◽

For Profit ◽

Location Aware ◽

Effectiveness And Efficiency

Location-aware publish/subscribe is an important location-based service based on server-initiated model. Often times, the owner of massive spatio-textual messages and subscriptions outsources its location-aware publish/subscribe services to a third-party service provider, for example, cloud service provider, who is responsible for delivering messages to their relevant subscribers. The issue arising here is that the messages delivered by the service provider might be tailored for profit purposes, intentionally or not. Therefore, it is essential to develop mechanisms which allow subscribers to verify the correctness of the messages delivered by the service provider. In this paper, we study the problem of authenticating messages in outsourced location-aware publish/subscribe services. We propose an authenticated framework which not only can deliver the messages efficiently but also can make the subscribers’ authentication available with low cost. Extensive experiments on a real-world dataset demonstrate the effectiveness and efficiency of our proposed authenticated framework.

Download Full-text

Prediction of best cloud service provider using the QoS ranking framework

International Journal of Engineering & Technology ◽

10.14419/ijet.v7i1.1.10151 ◽

2017 ◽

Vol 7 (1.1) ◽

pp. 486 ◽

Cited By ~ 3

Author(s):

A S. Syed Fiaz ◽

K S. Guruprakash ◽

A S. Syed Navaz

Keyword(s):

Cloud Computing ◽

Service Provider ◽

Cloud Service ◽

Cloud Services ◽

Cloud Service Provider ◽

User Request

The ability to utilize the computing resources based on the need has taken the Cloud computing to a greater height and it has increased the potential to extend the flexibility and efficiency of any resource. Considering the advantages, there are various Cloud Services Providers (CSP) that can offer services based on the user request and finding optimal services among those Cloud Services can be a great dispute. The proposed work relies on a QoS Ranking prediction that chooses the appropriate services offered by the various different CSPs. Based on those predicted analysis, the best CSP will be marked with a Ranking framework, according to which the Services will be directed to the users.

Download Full-text

Privacy Preserving Data Access to Cloud

International Journal of Innovative Technology and Exploring Engineering - Special Issue ◽

10.35940/ijitee.i8663.078919 ◽

2019 ◽

Vol 8 (9) ◽

pp. 2612-2617

Keyword(s):

Service Provider ◽

File Systems ◽

Cloud Service ◽

Data Access ◽

Data Encryption ◽

Third Party ◽

Distributed File Systems ◽

User Privacy ◽

Cloud Service Provider ◽

User Data

The current systems stress on protection of data stored in the cloud servers without giving much thought and consideration to the protection of data during user access. Encryption of data is a technique that is popularly used to protect stored data. Encryption essentially scrambles the data and stores it in a form which makes no sense unless decrypted with the suitable key. Every cloud service provider ensures data is stored in an encrypted form in its servers. Encryption of data is not sufficient to protect user data as acquiring the appropriate key can result in decrypting of the data. Encrypting the data before uploading the data to the cloud can help to an extent to preserve data. To access the data it would need to be encrypted twice- once by the cloud service provider and then by the user. Cloud service provider is prevented from accessing user data and also other third-party individuals. However, this approach too is not efficient and sufficient to protect user data. ORAM algorithm is used to enable access to user data stored on distributed file systems that comprises of multiple servers stored either at a single location or multiple locations across the globe in a manner which ensures the user privacy is protected when accessing the data. Reshuffle of data blocks stored in third party servers ensures the access pattern of the user remains hidden. ORAM algorithm does not cause any hindrance to the data access and does not lead to any major drop in data access rate. To ensure security, we propose a load balancing technique to guarantee smooth and safe approach for data access.

Download Full-text