Modeling the Ranking of Evaluation Criteria for Cloud Services

The cloud market has become increasingly dense as vendors of all size compete for customers who have gravitated to technology as a way to run their operations. Today traditional players, as well as new vendors, are showing greater agility in the cloud business of India. At present, there are limited industry standards for the cloud-related businesses to assess their services. End-user government departments are puzzled as to which CSP is best suited for their requirements. An evaluation of cloud service providers should not only be driven by cost, but importance should also be given towards service provider ability and commitment to deliver the services. The absence of a common framework to assess the evaluation criteria of CSPs, combined with the fact that no two CSPs are the same, complicates the matter of CSP selection. This article proposes a framework for ranking of evaluation criteria for CSPs. The framework leverages the capability analysis of CSPs, measurable metrics and ranks the evaluation criteria for assessing the best CSP suitable for end-user government organizations.

Download Full-text

Modeling the Ranking of Evaluation Criteria for Cloud Services

Cloud Security ◽

10.4018/978-1-5225-8176-5.ch015 ◽

2019 ◽

pp. 308-327

Author(s):

Kshitij Kushagra ◽

Sanjay Dhingra

Keyword(s):

Service Providers ◽

Evaluation Criteria ◽

Cloud Service ◽

Cloud Services ◽

End User ◽

Government Organizations ◽

Industry Standards ◽

Capability Analysis ◽

Cloud Service Providers ◽

Common Framework

Download Full-text

An Analysis on the Terms and Conditions of the Clickwrap Agreement and the Benefits of Maintaining the Click Wrap Agreement in Cloud Computing

10.4018/978-1-7998-7927-5.ch010 ◽

2022 ◽

pp. 205-224

Author(s):

Dhiviya Ram

Keyword(s):

Cloud Computing ◽

Service Provider ◽

Service Providers ◽

Cloud Service ◽

Cloud Services ◽

End User ◽

Cloud Service Provider ◽

Novel Approach ◽

Cloud Service Providers ◽

Provider Perspective

One of the most unique forms of contracting is apparent in cloud computing. Cloud computing, unlike other conventional methods, has adopted a different approach in the formation of binding contract that will be used for the governance of the cloud. This method is namely the clickwrap agreement. Click wrap agreement follows a take it or leave it basis in which the end users are provided with limited to no option in terms of having a say on the contract that binds them during the use of cloud services. The terms found in the contract are often cloud service provider friendly and will be less favourable to the end user. In this article, the authors examine the terms that are often found in the cloud computing agreement as well as study the benefit that is entailed in adopting this contracting method. This chapter has undertaken a qualitative study that comprises interviews of cloud service providers in Malaysia. Hence, this study is a novel approach that also provides insight in terms of the cloud service provider perspective regarding the click wrap agreement.

Download Full-text

Security Incident Information Exchange for Cloud Service Provisioning Chains

Cryptography ◽

10.3390/cryptography2040041 ◽

2018 ◽

Vol 2 (4) ◽

pp. 41

Author(s):

Christian Frøystad ◽

Inger Tøndel ◽

Martin Jaatun

Keyword(s):

Information Exchange ◽

Service Providers ◽

Cloud Service ◽

Cloud Services ◽

Service Provisioning ◽

Incident Response ◽

End User ◽

Security Incident ◽

Cloud Service Providers ◽

Incident Handling

Online services are increasingly becoming a composition of different cloud services, making incident-handling difficult, as Cloud Service Providers (CSPs) with end-user customers need information from other providers about incidents that occur at upstream CSPs to inform their users. In this paper, we argue the need for commonly agreed-upon incident information exchanges between providers to improve accountability of CSPs, and present both such a format and a prototype implementing it. The solution can handle simple incident information natively as well as embed standard representation formats for incident-sharing, such as IODEF and STIX. Preliminary interviews show a desire for such a solution. The discussion considers both technical challenges and non-technical aspects related to improving the situation for incident response in cloud-computing scenarios. Our solution holds the potential of making incident-sharing more efficient.

Download Full-text

Addressing Semantics Standards for Cloud Portability and Interoperability in Multi Cloud Environment

Symmetry ◽

10.3390/sym13020317 ◽

2021 ◽

Vol 13 (2) ◽

pp. 317

Author(s):

Chithambaramani Ramalingam ◽

Prakash Mohan

Keyword(s):

Service Providers ◽

Research Work ◽

Cloud Service ◽

Cloud Services ◽

Cloud Environment ◽

Cloud Service Providers ◽

Application Programming ◽

Increasing Demand ◽

Programming Interfaces ◽

Multi Cloud

The increasing demand for cloud computing has shifted business toward a huge demand for cloud services, which offer platform, software, and infrastructure for the day-to-day use of cloud consumers. Numerous new cloud service providers have been introduced to the market with unique features that assist service developers collaborate and migrate services among multiple cloud service providers to address the varying requirements of cloud consumers. Many interfaces and proprietary application programming interfaces (API) are available for migration and collaboration services among cloud providers, but lack standardization efforts. The target of the research work was to summarize the issues involved in semantic cloud portability and interoperability in the multi-cloud environment and define the standardization effort imminently needed for migrating and collaborating services in the multi-cloud environment.

Download Full-text

SECURITY IN CLOUD COMPUTING IN INDIAN GOVERNMENT

INTERNATIONAL JOURNAL OF NEXT-GENERATION COMPUTING ◽

10.47164/ijngc.v12i3.808 ◽

2021 ◽

Vol 12 (3) ◽

Author(s):

Nitin Vishnu Choudhari ◽

Dr. Ashish B Sasankar

Keyword(s):

Cloud Computing ◽

Service Delivery ◽

Service Providers ◽

Cloud Service ◽

Cloud Security ◽

End Users ◽

Security Architecture ◽

Security Measures ◽

End User ◽

Cloud Service Providers

Abstract –Today Security issue is the topmost problem in the cloud computing environment. It leads to serious discomfort to the Governance and end-users. Numerous security solutions and policies are available however practically ineffective in use. Most of the security solutions are centered towards cloud technology and cloud service providers only and no consideration has been given to the Network, accessing, and device securities at the end-user level. The discomfort at the end-user level was left untreated. The security of the various public, private networks, variety of devices used by end-users, accessibility, and capacity of end-users is left untreated. This leads towards the strong need for the possible modification of the security architecture for data security at all levels and secured service delivery. This leads towards the strong need for the possible adaption of modified security measures and provisions, which shall provide secured hosting and service delivery at all levels and reduce the security gap between the cloud service providers and end-users. This paper investigates the study and analyze the security architecture in the Cloud environment of Govt. of India and suggest the modifications in the security architecture as per the changing scenario and to fulfill the future needs for the secured service delivery from central up to the end-user level. Keywords: Cloud Security, Security in GI Cloud, Cloud Security measures, Security Assessment in GI Cloud, Proposed Security for GI cloud

Download Full-text

АНАЛИЗ ПОДХОДОВ К ОБЕСПЕЧЕНИЮ БЕЗОПАСНОСТИ ОБЛАЧНЫХ СЕРВИСОВ

RADIOELECTRONIC AND COMPUTER SYSTEMS ◽

10.32620/reks.2020.1.07 ◽

2020 ◽

pp. 70-82

Author(s):

Вячеслав Вікторович Фролов

Keyword(s):

Cloud Computing ◽

Service Providers ◽

Geographical Location ◽

Cloud Service ◽

Cloud Services ◽

Cloud Infrastructure ◽

Critical System ◽

Cloud Service Providers ◽

Safety And Reliability ◽

Cloud Resources

The article is devoted to the analysis of modern approaches that ensure the security of cloud services. Since cloud computing is one of the fastest growing areas among information technology, it is extremely important to ensure the safety and reliability of processes occurring in the clouds and to secure the interaction between the client and the provider of cloud services. Given that fears about data loss and their compromise are one of the main reasons that some companies do not transfer their calculations to the clouds. The object of research and analysis of this work are cloud services, which are provided by various cloud service providers. The aim of the study of this work is to compare existing approaches that provide information security for cloud services, as well as offer a new approach based on the principle of diversity. There are many approaches that ensure their safety, using both traditional and cloud-specific. The multi-cloud approach is one of the most promising strategies for improving reliability by reserving cloud resources on the servers of various cloud service providers. It is shown that it is necessary to use diversity to ensure the reliability and safety of critical system components. The principle of diversity is to use a unique version of each resource thanks to a special combination of a cloud computing provider, the geographical location of data centers, cloud service presentation models, and cloud infrastructure deployment models. The differences between cloud providers and which combination of services are preferable to others in terms of productivity are discussed in detail. In addition, best practices for securing cloud resources are reviewed. As a result, this paper concludes that there is a problem of insufficient security and reliability of cloud computing and how to reduce threats in order to avoid a common cause failure and, as a result, loss of confidential data or system downtime using diversity of cloud services.

Download Full-text

Selection of optimal data placement using cloud infrastructure

Proceedings of the Russian higher school Academy of sciences ◽

10.17212/1727-2769-2021-2-34-42 ◽

2021 ◽

pp. 34-42

Author(s):

Vladimir Meikshan ◽

◽

Natalia Teslya ◽

Keyword(s):

Mathematical Model ◽

Data Storage ◽

Service Providers ◽

Cloud Service ◽

Cloud Services ◽

Information Storage ◽

Cloud Infrastructure ◽

Digital Ecosystem ◽

Cloud Service Providers ◽

The Cost

Benefits of using cloud technology are obvious, their application is expanding, as a result, it determines the steady growth of demand. Cloud computing has acquired particular relevance for large companies connected with Internet services, retailing, logistics that generate large volume of business and other information. The use of cloud technologies allows organizing the joint consumption of resources, solving the problems of storing and transferring significant amounts of data. Russian consumer cooperation refers to large territory distributed organizations actively forming their own digital ecosystem. The issue of data storing and processing for consumer coo-peration organizations is very relevant. At the same time, the prices of cloud service providers are significantly different and require solving the problem of minimizing the cost of storing and transferring significant amounts of data. The application of the linear programming method is considered to select the optimal data storage scheme for several cloud service providers having different technical and economic parameters of the package (maximum amount of storage, cost of allocated resources). Mathematical model includes the equation of costs for data storing and transferring and restrictions on the amount of storage, the amount of data and its safety. Software tool that allows to perform numerical calculations is selected Microsoft Excel in combination with the "search for solutions" add-on. In accordance with the mathematical model, the conditions for minimizing the amount of cloud storage costs and the necessary restrictions are established. Initial data are set for three data forming centers, storages of certain size for five cloud service providers and nominal price for information storage and transmission. Calculations of expenses are performed in several variants: without optimization, with the solution of the optimization problem, with price increase by cloud service providers. Results of the calculations confirm the necessity to solve the problem of minimizing the cost of cloud services for corporate clients. The presented model can be expanded for any cost conditions as well as for different areas of cloud applications.

Download Full-text

SLA (Service Level Agreement) Driven Orchestration Based New Methodology for Cloud Computing Services

Advanced Materials Research ◽

10.4028/www.scientific.net/amr.660.196 ◽

2013 ◽

Vol 660 ◽

pp. 196-201 ◽

Cited By ~ 2

Author(s):

Muhammad Irfan ◽

Zhu Hong ◽

Nueraimaiti Aimaier ◽

Zhu Guo Li

Keyword(s):

Cloud Computing ◽

Computer Science ◽

Service Providers ◽

Service Level Agreement ◽

Cloud Service ◽

Service Level ◽

Cloud Services ◽

Computing Services ◽

Cloud Service Providers ◽

Cloud Computing Services

Cloud Computing is not a revolution; it’s an evolution of computer science and technology emerging by leaps and bounds, in order to merge all computer science tools and technologies. Cloud Computing technology is hottest to do research and explore new horizons of next generations of Computer Science. There are number of cloud services providers (Amazon EC2), Rackspace Cloud, Terremark and Google Compute Engine) but still enterprises and common users have a number of concerns over cloud service providers. Still there is lot of weakness, challenges and issues are barrier for cloud service providers in order to provide cloud services according to SLA (Service Level agreement). Especially, service provisioning according to SLAs is core objective of each cloud service provider with maximum performance as per SLA. We have identified those challenges issues, as well as proposed new methodology as “SLA (Service Level Agreement) Driven Orchestration Based New Methodology for Cloud Computing Services”. Currently, cloud service providers are using “orchestrations” fully or partially to automate service provisioning but we are trying to integrate and drive orchestration flows from SLAs. It would be new approach to provision cloud service and deliver cloud service as per SLA, satisfying QoS standards.

Download Full-text

An Improved CoCoSo Method with a Maximum Variance Optimization Model for Cloud Service Provider Selection

Engineering Economics ◽

10.5755/j01.ee.31.4.24990 ◽

2020 ◽

Vol 31 (4) ◽

pp. 411-424

Author(s):

Han Lai ◽

Huchang Liao ◽

Zhi Wen ◽

Edmundas Kazimieras Zavadskas ◽

Abdullah Al-Barakati

Keyword(s):

Service Provider ◽

Optimization Model ◽

Service Providers ◽

Service Selection ◽

Cloud Service ◽

Careful Analysis ◽

Cloud Services ◽

Cloud Service Provider ◽

Maximum Variance ◽

Cloud Service Providers

With the rapid growth of available online cloud services and providers for customers, the selection of cloud service providers plays a crucial role in on-demand service selection on a subscription basis. Selecting a suitable cloud service provider requires a careful analysis and a reasonable ranking method. In this study, an improved combined compromise solution (CoCoSo) method is proposed to identify the ranking of cloud service providers. Based on the original CoCoSo method, we analyze the defects of the final aggregation operator in the original CoCoSo method which ignores the equal importance of the three subordinate compromise scores, and employ the operator of “Linear Sum Normalization” to normalize the three subordinate compromise scores so as to make the results reasonable. In addition, we introduce a maximum variance optimization model which can increase the discrimination degree of evaluation results and avoid inconsistent ordering. A numerical example of the trust evaluation of cloud service providers is given to demonstrate the applicability of the proposed method. Furthermore, we perform sensitivity analysis and comparative analysis to justify the accuracy of the decision outcomes derived by the proposed method. Besides, the results of discrimination test also indicate that the proposed method is more effective than the original CoCoSo method in identifying the subtle differences among alternatives.

Download Full-text

Authentication and Identity Management for Secure Cloud Businesses and Services

Advances in Business Information Systems and Analytics - Security, Trust, and Regulatory Aspects of Cloud Computing in Business Environments ◽

10.4018/978-1-4666-5788-5.ch011 ◽

2014 ◽

pp. 180-201 ◽

Cited By ~ 1

Author(s):

Bing He ◽

Tuan T. Tran ◽

Bin Xie

Keyword(s):

Access Control ◽

Identity Management ◽

Service Providers ◽

Cloud Service ◽

Data Access ◽

Fine Grained ◽

Industry Standards ◽

Cloud Service Providers ◽

Potential Benefits ◽

Identity Management System

Today, cloud-based services and applications are ubiquitous in many systems. The cloud provides undeniable potential benefits to the users by offering lower costs and simpler deployment. The users significantly reduce their system management responsibilities by outsourcing services to the cloud service providers. However, the management shift has posed significant security challenges to the cloud service providers. Security concerns are the main reasons that delay organizations from moving to the cloud. The security and efficiency of user identity management and access control in the cloud needs to be well addressed to realize the power of the cloud. In this chapter, the authors identify the key challenges and provide solutions to the authentication and identity management for secure cloud business and services. The authors first identify and discuss the challenges and requirements of the authentication and identity management system in the cloud. Several prevailing industry standards and protocols for authentication and access control in cloud environments are provided and discussed. The authors then present and discuss the latest advances in authentication and identity management in cloud, especially for mobile cloud computing and identity as a service. They further discuss how proximity-based access control can be applied for an effective and fine-grained data access control in the cloud.

Download Full-text