The top ten cloud-security practices in next-generation networking

International Journal of Communication Networks and Distributed Systems

Volumn 8, Issue 1-2, 2012, Pages 70-84

  Halton, Wolf Michael ^a   Rahman, Syed ^b  

^a Atlanta Clout Technology Inc   (United States)

^b UNIVERSITY OF HAWAII AT HILO   (United States)

Author keywords

Best cloud computing practices; Cloud adopters; Next generation networks; Open source

Indexed keywords

INFRASTRUCTURE AS A SERVICE (IAAS); OPEN SYSTEMS; PLATFORM AS A SERVICE (PAAS);

APPLICATION LEVEL; BEST CLOUD-COMPUTING PRACTICES; CLOUD ADOPTIONS; CLOUD ARCHITECTURES; CLOUD SECURITIES; CLOUD-ADOPTERS; NEXT GENERATION NETWORKING; OPEN SOURCES;

NEXT GENERATION NETWORKS;

EID: 84857264879     PISSN: 17543916     EISSN: 17543924     Source Type: Journal    
DOI: 10.1504/IJCNDS.2012.044323     Document Type: Article

References (34)

1. Ameri, A. (2004) 'The five pillars of information security', Risk Management, Vol. 51, No. 7, p.48.
2. Armbrust, M., Fox, A., Griffith, R., Joseph, A.D., Katz, R., Konwinski, A., Lee, G. et al. (2010) 'A view of cloud computing', Commun. ACM, Vol. 53, No. 4, pp.50-58.
3. Avetisyan, A., Campbell, R., Gupta, I., Heath, M., Ko, S., Ganger, G., Kozuch, M. et al. (2010) 'Open cirrus: a global cloud computing testbed', IEEE Computer, Vol. 43, No. 4, pp.42-50.
4. Baratto, R.A., Potter, S., Su, G. and Nieh, J. (2004) 'MobiDesk: mobile virtual desktop computing', in Proceedings of the 10th Annual International Conference on Mobile Computing and Networking, ACM, Philadelphia, PA, USA, pp.1-15. (Pubitemid 40061927)
5. Berre, A.J., Roman, D., Landre, E., Heuvel, W.V.D., Skår, L.A., Udnæs, M., Lennon, R. et al. (2009) 'Towards best practices in designing for the cloud', in Proceeding of the 24th ACM SIGPLAN Conference Companion on Object Oriented Programming Systems Languages and Applications, ACM, Orlando, Florida, USA, pp.697-698.
6. Brunette, G. and Mogull, R. (Eds.) (2009) Security Guidance for Critical Areas of Focus in Cloud Computing. Cloud Security Alliance, available at http://www.cloudsecurityalliance.org/csaguide.pdf.
7. Buyya, R., Yeo, C.S. and Venugopal, S. (2008) Market-Oriented Cloud Computing: Vision, Hype, and Reality for Delivering IT Services as Computing Utilities. Department of Computer Science and Software Engineering, The University of Melbourne, Australia, available at http://www.gridbus.org/~raj/ papers/hpcc2008-keynote-cloudcomputing.pdf.
8. Category: OWASP Cloud-10 Project - OWASP (2010) Available at http://www.owasp.org/index.php/Category:OWASP-Cloud-%E2%80%90-10-Project (accessed on 10 May 2010).
9. Christodorescu, M., Sailer, R., Schales, D.L., Sgandurra, D. and Zamboni, D. (2009) 'Cloud security is not (just) virtualization security: a short paper', in Proceedings of the 2009 ACM Workshop on Cloud Computing Security, ACM, Chicago, Illinois, USA, pp.97-102.
10. Citrix Systems - Citrix XenServer: Efficient Server Virtualization Software (2010) Citrix Systems, available at http://www.citrix.com/english/ps2/ products/product.asp?contentID=683148 (accessed on 6 June 2010).
11. Cloud Security Alliance (CSA) Security Best Practices for Cloud Computing (2009) Available at http://www.cloudsecurityalliance.org/ (accessed on 18 April 2010).
12. CloudStandards (2010) Available at http://cloud-standards.org/wiki/index. php?title=Main-Page (accessed on 10 May 2010).
13. Du, J., Wei, W., Gu, X. and Yu, T. (2009) 'Towards secure dataflow processing in open distributed systems', in Proceedings of the 2009 ACM Workshop on Scalable Trusted Computing, ACM, Chicago, Illinois, USA, pp.67-72.
14. Fraser, S., Biddle, R., Jordan, S., Keahey, K., Marcus, B., Maximilien, E.M. and Thomas, D. (2009) 'Cloud computing beyond objects: seeding the cloud', in Proceeding of the 24th ACM SIGPLAN Conference Companion on Object Oriented Programming Systems Languages and Applications, ACM, Orlando, Florida, USA, pp.847-850.
15. HIPAA Security Series: 4 Security Standards: Technical Safeguards. (2007) Department of Health and Human Services, available at http://www.hhs.gov/ocr/ privacy/hipaa/administrative/securityrule/techsafeguards.pdf.
16. Krügel, C., Toth, T. and Kirda, E. (2002) 'Service specific anomaly detection for network intrusion detection', in Proceedings of the 2002 ACM Symposium on Applied Computing, ACM, Madrid, Spain ACM, pp.201-208. (Pubitemid 35009592)
17. Litoiu, M., Woodside, M., Wong, J., Ng, J. and Iszlai, G. (2010) 'A business driven cloud optimization architecture', in Proceedings of the 2010 ACM Symposium on Applied Computing, ACM, Sierre, Switzerland, pp.380-385.
18. Madhavapeddy, A., Mortier, R., Crowcroft, J. and Hand, S. (2010) 'Multiscale not multicore: efficient heterogeneous cloud computing', in Proceedings of the 2010 ACM-BCS Visions of Computer Science Conference, British Computer Society, Edinburgh, UK, pp.1-12.
19. Maguire, J., Vance, J. and Harvey, C. (2009) 85 Cloud Computing Vendors Shaping the Emerging Cloud - Datamation.com. Datamation.com., available at http://itmanagement.earthweb.com/entdev/article.php/3835941/ 85-Cloud-Computing-Vendors-Shaping-the-Emerging-Cloud.htm (accessed on 6 June 2010).
20. Markstrum, S.A., Fuhrer, R.M. and Millstein, T.D. (2009) 'Towards concurrency refactoring for X10', SIGPLAN: ACM Special Interest Group on Programming Languages, pp.303-304.
21. Maximilien, E.M., Ranabahu, A., Engehausen, R. and Anderson, L.C. (2009) 'Toward cloud-agnostic middlewares', in Proceeding of the 24th ACM SIGPLAN Conference Companion on Object Oriented Programming Systems Languages and Applications, ACM, Orlando, Florida, USA, pp.619-626.
22. McLaughlin, L. (2008) 11 Cloud Computing Vendors to Watch - CIO.com - Business Technology Leadership, December 3, available at http://www.cio.com/ article/195000/11-Cloud-Computing-Vendors-to-Watch (accessed on 6 June 2010).
23. Muniswamy-Reddy, K. and Seltzer, M. (2010) 'Provenance as first class cloud data', SIGOPS Oper. Syst. Rev., Vol. 43, No. 4, pp.11-16.
24. Nurmi, D., Wolski, R., Grzegorczyk, C., Obertelli, G., Soman, S., Youseff, L. and Zagorodnov, D. (2009) 'The eucalyptus open-source cloud-computing system', in Proceedings of the 2009 9th IEEE/ACM International Symposium on Cluster Computing and the Grid, IEEE Computer Society, pp.124-131.
25. Open Cirrus (TM) (n.d.) Available at https://opencirrus.org/ (accessed on 5 July 2010).
26. PCI DSS Download - PCI Security Standards Council (2009) Available at https://www.pcisecuritystandards.org/security-standards/pci-dss-download.html (accessed on 9 April 2010).
27. Qiu, X., Ekanayake, J., Beason, S., Gunarathne, T., Fox, G., Barga, R. and Gannon, D. (2009) 'Cloud technologies for bioinformatics applications', in Proceedings of the 2nd Workshop on Many-Task Computing on Grids and Supercomputers, ACM, Portland, Oregon, pp.1-10.
28. Smith, G.H. (2005) Search Results - THOMAS (Library of Congress) s, 1408 - Identity Theft Protection Act, available at http://thomas.loc.gov/cgibin/ query/D?c109:2:./temp/~c109iXK2Te (accessed on 1 May 2010).
29. Ubuntu One: Home (2010) Available at https://one.ubuntu.com/ (accessed on 6 June 2010).
30. Violino, B. (2010) 'IT asset management: it's all about trade-offs enterprise wide solutions; cost, performance and application compatibility are some of the interlocking issues impacting hardware replacement decisions', Insurance Networking News.
31. Wei, J., Zhang, X., Ammons, G., Bala, V. and Ning, P. (2009) 'Managing security of virtual machine images in a cloud environment', in Proceedings of the 2009 ACM Workshop on Cloud Computing Security, ACM, Chicago, Illinois, USA, pp.91-96.
32. Wheeler, D. (2003) Is Open Source Good for Security?, available at http://www.dwheeler.com/secure-programs/Secure-Programs-HOWTO/ open-source-security.html (accessed on 18 April 2010).
33. Williams, J., Clegg, P. and Dulaney, E. (2005) 'Inform IT: the advantages of adopting open source software > open source advantages, in Expanding Choice: Moving to Linux and Open Source with Novell Open Enterprise Server, SAMS, available at http://www.informit.com/articles/article.aspx?p=376255.
34. Zhou, J. (2010) 'EMC bets its future on private cloud (IDEAS insights)', IDEAS Insights, available at http://ideasint.blogs.com/ideasinsights/2010/05/ emc-bets-its-future-on-private-cloud.html (accessed on 6 June 2010).