Context Analysis of Cloud Computing Systems Using a Pattern-Based Approach

Cloud computing services bring new capabilities for hosting and offering complex collaborative business operations. However, these advances might bring undesirable side-effects, e.g., introducing new vulnerabilities and threats caused by collaboration and data exchange over the Internet. Hence, users have become more concerned about security and privacy aspects. For secure provisioning of a cloud computing service, security and privacy issues must be addressed by using a risk assessment method. To perform a risk assessment, it is necessary to obtain all relevant information about the context of the considered cloud computing service. The context analysis of a cloud computing service and its underlying system is a difficult task because of the variety of different types of information that have to be considered. This context information includes (i) legal, regulatory and/or contractual requirements that are relevant for a cloud computing service (indirect stakeholders); (ii) relations to other involved cloud computing services; (iii) high-level cloud system components that support the involved cloud computing services; (iv) data that is processed by the cloud computing services; and (v) stakeholders that interact directly with the cloud computing services and/or the underlying cloud system components. We present a pattern for the contextual analysis of cloud computing services and demonstrate the instantiation of our proposed pattern with real-life application examples. Our pattern contains elements that represent the above-mentioned types of contextual information. The elements of our pattern conform to the General Data Protection Regulation. Besides the context analysis, our pattern supports the identification of high-level assets. Additionally, our proposed pattern supports the documentation of the scope and boundaries of a cloud computing service conforming to the requirements of the ISO 27005 standard (information security risk management). The results of our context analysis contribute to the transparency of the achieved security and privacy level of a cloud computing service. This transparency can increase the trust of users in a cloud computing service. We present results of the RestAssured project related to the context analysis regarding cloud computing services and their underlying cloud computing systems. The context analysis is the prerequisite to threat and control identification that are performed later in the risk management process. The focus of this paper is the use of a pattern at the time of design systematic context analysis and scope definition for risk management methods.

Download Full-text

One Implementation Method of Trust Evaluation Tool Used on Cloud Computing Service

Recent Advances in Electrical & Electronic Engineering (Formerly Recent Patents on Electrical & Electronic Engineering) ◽

10.2174/2352096511666180528075030 ◽

2019 ◽

Vol 12 (3) ◽

pp. 223-231

Author(s):

Shengju Yang

Keyword(s):

Cloud Computing ◽

Access Control ◽

Service Providers ◽

Assessment Method ◽

Trust Evaluation ◽

Evaluation Tool ◽

Computing Services ◽

Business Goals ◽

Cloud Computing Service ◽

Cloud Computing Services

In order to solve the trust problems between users and cloud computing service providers in cloud computing services, the existing trust evaluation technology and access control technology in the cloud computing service are analyzed. And the evaluation index of cloud computing is also analyzed. Users can calculate the relevant indicators of cloud computing service according to their own business goals, and choose the appropriate cloud computing services according to their own trust need. In addition, the reliability assessment method of users based on the service process is proposed. Cloud computing access control system can be used for user credibility evaluation, and it can handle user access requests according to user's creditability. In the study, a cloud computing service trust evaluation tool is designed, and the modeling and architecture designs of trust evaluation are also given. The effectiveness of the method is verified by experiments on cloud computing service evaluation methods.

Download Full-text

MASHED: Security and privacy-aware mutual authentication scheme for heterogeneous and distributed mobile cloud computing services

Information Security Journal A Global Perspective ◽

10.1080/19393555.2019.1609627 ◽

2018 ◽

Vol 27 (5-6) ◽

pp. 276-291

Author(s):

Oladayo Olufemi Olakanmi ◽

Samuel Oluwaseye Oke

Keyword(s):

Cloud Computing ◽

Mobile Cloud Computing ◽

Mutual Authentication ◽

Authentication Scheme ◽

Security And Privacy ◽

Mobile Cloud ◽

Computing Services ◽

Cloud Computing Services

Download Full-text

Cloud computing service value: A message to the board

South African Journal of Business Management ◽

10.4102/sajbm.v43i4.483 ◽

2012 ◽

Vol 43 (4) ◽

pp. 73-81 ◽

Cited By ~ 5

Author(s):

R. Von Solms ◽

M. Viljoen

Keyword(s):

Information Technology ◽

Cloud Computing ◽

New Developments ◽

Service Value ◽

Computing Model ◽

Computing Services ◽

Cloud Computing Service ◽

Cloud Computing Services

This paper aims to alert the board to their duty of adding value to the organizations they represent by recognizing opportunities presented by new developments in information technology. Cloud computing is one such development, which is associated with opportunities and benefits. The service value that can be achieved by using this computing model will be influential in the adoption of cloud computing services. Service value is determined by the warranty and utility associated with that service. Thus, if an organization can associate itself with the utility and warranty on offer via cloud computing, it should consider the adoption of these services. Cloud computing is discussed in terms of service value. This promotes an understanding of factors to be considered when making decisions about the adoption of cloud computing.

Download Full-text

Explaining the role of trust in cloud computing services

Info ◽

10.1108/info-09-2014-0042 ◽

2015 ◽

Vol 17 (1) ◽

pp. 54-67 ◽

Cited By ~ 14

Author(s):

Joseph Kwame Adjei

Keyword(s):

Cloud Computing ◽

Financial Institutions ◽

Service Providers ◽

Sampling Technique ◽

Content Type ◽

Computing Services ◽

Cloud Computing Service ◽

Cloud Computing Services ◽

Selection Of

Purpose – The purpose of this paper is to explain the role of trust in cloud computing services based on empirical evidence from interviewing executives of financial institutions in Ghana. The paper answers the questions: what is the role of trust in cloud computing service acquisition, and what policies promote trusted cloud computing services? Design/methodology/approach – This is an explanatory paper that is based on literature review and empirical data on exploring reasons for cloud computing service acquisitions. A combination of interviews and focus group discussions was used as methods for data collection. Information technology and electronic banking executives of five major commercial banks in Accra, Ghana, between January and July 2013 were interviewed. A total of ten respondents were interviewed, two in each of the selected banks. A purposive sampling technique was used in the selection of informants. This approach allows the selection of qualified informants to ensure extensiveness and diversity of opinion. Findings – Although previous literature proffers various factors as key to cloud computing adoption, uses or provisioning, this study brings trust to the fore as an imperative for cloud computing service acquisition by financial institutions. It also shows that trust increases if users perceive that cloud computing service providers act in honesty and in users’ interest, making trust a fundamental factor that informs financial institutions’ decision to acquire cloud computing services. Research limitations/implications – The research introduces a new dimension about the widely held perceptions of the factors that influence adoption of cloud computing services. Practical implications – Developers of cloud computing solutions that are targeted at corporate users must focus on systems that enhances their trustworthiness, as it is a primary criteria for user buy-in. Similarly, any trust-building effort by cloud computing service providers minimizes users’ concerns and pushes the services providers closer to the trust threshold. Originality/value – The paper outlines the trust factors that are imperative for cloud computing uses by financial institutions. This is one of the pioneering papers that address trust issues in cloud computing from the perspective of financial institutions.

Download Full-text

The Research on University Librarys "Four-in-One" Cloud Computing Services Social System

Advanced Materials Research ◽

10.4028/www.scientific.net/amr.791-793.1297 ◽

2013 ◽

Vol 791-793 ◽

pp. 1297-1300 ◽

Cited By ~ 1

Author(s):

Xu Fu Peng ◽

Shu Dong Shi

Keyword(s):

Cloud Computing ◽

Social Services ◽

Resource Sharing ◽

Social System ◽

System Function ◽

Computing Technique ◽

Information Platform ◽

Computing Services ◽

Cloud Computing Service ◽

Cloud Computing Services

Aiming at the problems on the management system, function orientation, resource sharing, information platform construction, technical support in university social services, the characteristics of cloud computing technique and its influence on the library informatization were carefully analyzed. The four-in-one cloud computing service society system structures of university library about reading, borrowing, selling, and service were designed and constructed .The problems of how the library serve the society in all directions were solved.

Download Full-text

“Public Relations” Course Design and Implement Based on Google Cloud

Applied Mechanics and Materials ◽

10.4028/www.scientific.net/amm.623.262 ◽

2014 ◽

Vol 623 ◽

pp. 262-266

Author(s):

Ling Yu

Keyword(s):

Cloud Computing ◽

Public Relations ◽

Curriculum Design ◽

Course Design ◽

Peer Assessment ◽

Classroom Activities ◽

Computing Services ◽

Cloud Computing Service ◽

Cloud Computing Services ◽

Network Platform

This paper introduces the IT environment of cloud computing, and how cloud computing service for teaching, " Public Relations " course , for example, the use of Google's cloud computing services builds courses platform, offers a set of comprehensive , actionable curriculum design. The program, for the course network platform design, project settings, and classroom activities designed Showcase and peer assessment, curriculum resources, and learning evaluation, etc. makes concrete workable plan.

Download Full-text

Study of the Security Risks and Measures in Cloud Computing

IMS Manthan (The Journal of Innovations) ◽

10.18701/imsmanthan.v9i1and2.5159 ◽

2015 ◽

Vol 9 (1and2) ◽

Author(s):

Akshay Mehta ◽

Dr. Sanjay Kumar Dubey

Keyword(s):

Cloud Computing ◽

Service Providers ◽

Security And Privacy ◽

It Industry ◽

Security Risks ◽

Resource Pooling ◽

Computing Services ◽

Huge Data ◽

Cloud Computing Services ◽

The Cost

Cloud Computing has emerged very fast in the IT industry. It is based on virtualization technology and provides internet based computing which provides resource pooling, services sharing and on demand access. Its evolution has reduced must of the cost of enterprises as well as of the other industries working with a huge data. With cloud computing emerging at a much faster rate, the situation may soon be changed. But, despite the fact that it provides a number of facilities to the service providers, it has quite a number of issues related to it. The most important issue related to cloud is its security. From the consumer’s perspective, cloud computing security concerns, especially data security and privacy protection issues, remain the primary inhibitor of cloud computing services. Security is the reason that hinders many enterprises to enter into cloud. So this paper gives a detail of the security risks related to cloud and the possible measures which the enterprises need to ensure before entering Cloud Computing.

Download Full-text

The Research of Cloud Computing Service Model

Applied Mechanics and Materials ◽

10.4028/www.scientific.net/amm.556-562.6262 ◽

2014 ◽

Vol 556-562 ◽

pp. 6262-6265 ◽

Cited By ~ 1

Author(s):

Yuan Zhang ◽

Lei Huang

Keyword(s):

Cloud Computing ◽

Large Scale ◽

Development Trend ◽

Service Model ◽

Computing Services ◽

Cloud Computing Service ◽

Cloud Computing Services ◽

The Difference ◽

The Development Trend

Cloud computing is developing rapidly in recent years. Everyone is talking about cloud computing that provide large scale service to replace computers and software. Cloud computing has already become the development trend of present IT circles. This paper explains the basics of Cloud computing, analyzes the difference of cloud computing services, and points out the characteristics of the cloud computing services.

Download Full-text

Cloud Computing Security Issues - Challenges and Opportunities

International Journal of Management, Technology, and Social Sciences ◽

10.47992/ijmts.2581.6012.0004 ◽

2016 ◽

pp. 33-42 ◽

Cited By ~ 2

Author(s):

Vaikunth Pai T. ◽

P.S. Aithal

Keyword(s):

Cloud Computing ◽

Third Party ◽

Information Communication ◽

Service Model ◽

Security Issues ◽

Computing Services ◽

Cloud Computing Service ◽

Confidential Data ◽

Challenges And Opportunities ◽

Cloud Computing Services

Cloud computing services enabled through information communication technology delivered to a customer as services over the Internet on a leased basis have the capability to extend up or down their service requirements or needs. In this model, the infrastructure is owned by a third party vendor and the cloud computing services are delivered to the requested customers. Cloud computing model has many advantages including scalability, flexibility, elasticity, efficiency, and supports outsourcing noncore activities of an organization. Cloud computing offers an innovative business concept for organizations to adopt IT enabled services without advance investment. This model enables convenient, on-request network accessibility to a shared pool of IT computing resources like networks, servers, storage, applications, and services. Cloud computing can be quickly provisioned and released with negligible management exertion or service provider interaction. Even though organizations get many benefits of cloud computing services, many organizations are slow in accepting cloud computing service model because of security concerns and challenges associated with management of this technology. Security, being the major issues which hinder the growth of cloud computing service model due to the provision of handling confidential data by the third party is risky such that the consumers need to be more attentive in understanding the risks of data breaches in this new environment. In this paper, we have discussed the security issues, the challenges and the opportunities in the adoption and management of cloud computing services model in an organization.

Download Full-text

Network and Information Security of Cloud Computing Services

Using Zirconium(IV) Tetrakis(dodecyl sulfate) ◽

10.32563/hsz.2020.2.4 ◽

2020 ◽

Vol 13 (2) ◽

pp. 35-46

Author(s):

János Gerevich ◽

Imre Négyesi

Keyword(s):

Cloud Computing ◽

Critical Issue ◽

Public And Private ◽

The Public ◽

Computing Services ◽

Eu Directive ◽

Cloud Computing Service ◽

Safety And Reliability ◽

Cloud Computing Services ◽

Security Of Network

The security of network and information systems has become a critical issue for both the public and private sectors in the last decade. This article reviews the current EU directive in this area, looking for safety and reliability requirements. Next, we get an overview of the different models of cloud computing services. Finally, the relationship between the identified security and reliability requirements and the cloud computing service models will be described.

Download Full-text