A cross section of the issues and research activities related to both information security and cloud computing

IETE Technical Review (Institution of Electronics and Telecommunication Engineers, India)

Volumn 28, Issue 4, 2011, Pages 279-291

  Sehgal, Naresh K ^a   Sohoni, Sohum ^b   Xiong, Ying ^b   Fritz, David ^b   Mulia, Wira ^b   Acken, John M ^b  

^a INTEL CORPORATION   (United States)

^b OKLAHOMA STATE UNIVERSITY   (United States)

Author keywords

Cloud computing; Information security; Virtualization

Indexed keywords

COMPUTING ENVIRONMENTS; CROSS SECTION; END-USER EXPERIENCE; GENERAL DESCRIPTION; PERFORMANCE COSTS; RESEARCH ACTIVITIES; RESEARCH OPPORTUNITIES; SECURITY RESEARCH; SECURITY SOLUTIONS; TECHNICAL DETAILS; VIRTUALIZATION;

COMPUTER SYSTEMS; RESEARCH; SECURITY OF DATA;

CLOUD COMPUTING;

EID: 80052173864     PISSN: 02564602     EISSN: 09745971     Source Type: Journal    
DOI: 10.4103/0256-4602.83549     Document Type: Article

References (34)

1. P. Mell, and T. Grance. "The NIST Definition of Cloud Computing (Version 15 ed.)." Available from: http://csrc.nist.gov/groups/SNS/ cloud-computing/cloud-def-v15.doc [Last cited in 2009].
2. M. Armbrust, A. Fox, R. Griffith, A. D. Joseph, R. Katz, A. Konwinski, et al., "A View of Cloud Computing," ACM Communications, vol. 53, pp. 50-8, 2010.
3. S. Ramgovind, M. M. Eloff, and E. Smith, "The Management of Security in Cloud computing," in Information Security for South Africa (ISSA), pp. 1-7, 2010.
4. A. Vasan, A. Sivasubramaniam, V. Shimpi, T. Sivabalan, and R. Subbiah, "Worth their Watts? - An Empirical Study of Datacenter Servers," in High Performance Computer Architecture (HPCA), IEEE 16th International Symposium on, pp. 1-10, 2010.
5. OProfile. Available from: http://oprofile.sourceforge.net [Last accessed on 2011 Feb 1].
6. G. A. Fowler, and B. Worthen. "The Internet Industry Is on a Cloud-Whatever That May Mean." Available from: http://online.wsj. com/article/SB123802623665542725.html [Last cited in 2009].
7. L. M. Kaufman, "Can Public-Cloud Security Meet Its Unique Challenges?," IEEE Security and Privacy, vol. 8, pp. 55-7, 2010.
8. G. Anthes, "Security in the Cloud," ACM Communications vol. 53, pp. 16-8, 2010.
9. M. Christodorescu, R. Sailer, D. L. Schales, D. Sgandurra, and D. Zamboni, "Cloud Security is not (just) Virtualization Security: A Short Paper," in Proceedings of the 2009 ACM workshop on Cloud Computing Security, Chicago, Illinois, USA, pp. 97-102, 2009.
10. G. Soundararajan, and C. Amza, "Online Data Migration for Autonomic Provisioning of Databases in Dynamic Content Web Servers," in Proceedings of the 2005 conference of the Centre for Advanced Studies on Collaborative research, Toranto, Ontario, Canada, pp. 268-82, 2005.
11. P. Nicolas, Cloud Multitenancy. Available from: http://www. slideshare.net/pnicolas/cloudmultitenancy [Last accessed on 2011 Feb 1].
12. F. S. Bun, "Introduction to Cloud Computing," presented at the Grid Asia, 2009.
13. E. Ray, and E. Schultz, "Virtualization Security," in Proceedings of the 5th Annual Workshop on Cyber Security and Information Intelligence Research: Cyber Security and Information Intelligence Challenges and Strategies, Oak Ridge, Tennessee, pp. 1-5, 2009.
14. M. Naor, and G. N. Rothblum, "The Complexity of Online Memory Checking," Journal of the ACM, vol. 56, pp. 1-46, 2009.
15. C. Cachin, I. Keidar, and A. Shraer, "Trusting the Cloud," SIGACT News, vol. 40, pp. 81-6, 2009.
16. A. K. Jain, H. Lin, S. Pankanti, and R. Bolle, "An Identityauthentication System using Fingerprints," in Proceedings of the IEEE, pp. 1365-88, 1997.
17. L. S. Clair, L. Johansen, K. Butler, W. Enck, M. Pirretti, P. Traynor, et al., "Password Exhaustion: Predicting the End of Password Usefulness," Network and Security Research Center, Department of Computer Science and Engineering, Pennsylvania State University, University Park, PA, USA. Technical Report NASTR- 0030-2006, 2007.
18. P. Gupta, S. Ravi, A. Raghunathan, and N. K. Jha, "Efficient Fingerprint-based User Authentication for Embedded Systems," in Proceedings of the 42nd annual Design Automation Conference, Anaheim, California, USA, pp. 244-7, 2005. (Pubitemid 41675437)
19. M. K. Khan, "Fingerprint Biometric based Self-Authentication and Deniable Authentication Schemes for the Electronic World," IETE Technical Review, vol. 26, pp. 191-5, 2010.
20. C. Shaver, and J. M. Acken, "Effects of Equipment Variation on Speaker Recognition Error Rates," presented at the IEEE International Conference on Acoustics Speech and Signal Processing, Dallas, Texas, 2010.
21. H. S. Jayanna, and S. R. M. Prasanna, "Analysis, Feature Extraction, Modeling and Testing Techniques for Speaker Recognition," IETE Technical Review, vol. 26, pp. 181-90, 2009.
22. S. Al-Rwais, and J. Al-Muhtadi, "A Context-aware Access Control Model for Pervasive Environments," IETE Technical Review, vol. 27, pp. 371-9, 2010.
23. A. Juels, and B. S. Kaliski Jr., "PORS: Proofs of Retrievability for Large Files," in Proceedings of the 14th ACM conference on Computer and communications security, Alexandria, Virginia, USA, pp. 584-97, 2007.
24. J. M. Acken, and L. E. Nelson, "Statistical Basics for Testing and Security of Digital Systems for Identity Authentication," presented at the 6th Int. Conf. on Computing, Communications and Control Technologies: CCCT2008, Florida, 2008.
25. R. L. Rivest, A. Shamir, and L. Adleman, "A Method for Obtaining Digital Signatures and Public-key Cryptosystems," ACM Communications vol. 21, pp. 120-6, 1978. (Pubitemid 8591219)
26. B. Schneier, Applied Cryptography Second Edition: protocols, algorithms, and source code in C: John Wiley and Sons, Inc; 1996.
27. R. Panko, Corporate Computer and Network Security: Prentice Hall; 2003.
28. T. Moscibroda, and O. Mutlu, "Memory Performance Attacks: Denial of Memory Service in Multi-core Systems," in Proceedings of 16th USENIX Security Symposium on USENIX Security Symposium, Boston, MA, pp. 1-18, 2007.
29. T. Ristenpart, E. Tromer, H. Shacham, and S. Savage, "Hey, you, get off of my cloud: Exploring Information Leakage in Third-party Compute Clouds," in Proceedings of the 16th ACM conference on Computer and Communications Security, Chicago, Illinois, USA, pp. 199-212, 2009.
30. D. Osvik, A. Shamir, and E. Tromer, "Cache Attacks and Countermeasures: The Case of AES," in Topics in Cryptology - CT-RSA 2006. D. Pointcheval Ed., editor. Heidelberg: Springer Berlin; vol. 3860, pp. 1-20, 2006. (Pubitemid 43971699)
31. M. Bishop, "Introduction to Computer Security". Boston, MA.: Addison-Wesley; 2005.
32. Q. Wang, H. Jin, and N. Li, "Usable Access Control in Collaborative Environments: Authorization based on People-tagging," in Proceedings of the 14th European conference on Research in Computer Security, Saint-Malo, France, pp. 268-84, 2009.
33. W. Enck, K. Butler, T. Richardson, P. McDaniel, and A. Smith, "Defending Against Attacks on Main Memory Persistence," in Proceedings of the 2008 Annual Computer Security Applications Conference, pp. 65-74, 2008.
34. P. Saripalli, and B. Walters, "QUIRC: A Quantitative Impact and Risk Assessment Framework for Cloud Security," in Cloud Computing (CLOUD), 2010 IEEE 3rd International Conference on, pp. 280-8, 2010.