SecAgreement: Advancing security risk calculations in cloud services

Proceedings - 2012 IEEE 8th World Congress on Services, SERVICES 2012

Volumn , Issue , 2012, Pages 133-140

  Hale, Matthew L ^a   Gamble, Rose ^a  

^a The University of Tulsa Tulsa   (United States)

Author keywords

audit; cloud; quality of security service; risk; security; service level agreement; web services; xml

Indexed keywords

AUDIT; CLOUD SERVICES; CONTRACTUAL OBLIGATIONS; INTERNAL SYSTEMS; MISSION CRITICAL SYSTEMS; POLICY COMPLIANCE; QUALITY OF SERVICE METRICS; QUALITY-OF-SECURITY; SECURITY; SECURITY CONSTRAINT; SECURITY CONTROLS; SECURITY METRICS; SECURITY RISKS; SERVICE DESCRIPTION; SERVICE LEVEL AGREEMENTS; SERVICE LEVEL OBJECTIVE; SERVICE OFFERING; WS-AGREEMENT;

CLOUDS; NETWORK ARCHITECTURE; QUALITY OF SERVICE; RISKS; SEMANTICS; WEB SERVICES; XML;

DISTRIBUTED DATABASE SYSTEMS;

EID: 84867244563     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/SERVICES.2012.31     Document Type: Conference Paper

References (21)

1. A. Minkiewicz, "Cloud Nine, are we there yet?," Journal of Software Technology, vol. 14, no. 4, pp. 4-8, 2011.
2. HHS, "Summary of the HIPAA Privacy Rule," 2003.
3. NIST, "Special Publication 800-53," 2009.
4. DoD. "Instruction DODI 8500.2, IA Implementation," 2003.
5. A. Andrieux et al. "Web Services Agreement Specification (WS-Agreement)," http://www.ogf.org/documents/GFD.107.pdf.
6. IBM. "WSLA "; http://www.research.ibm.com/wsla/WSLA093.xsd.
7. K. Bernsmed et al., "Security SLAs for Federated Cloud Services," in Sixth Int'l. Conference on Availability, Reliabilty and Security, 2011.
8. M. Hepner et al., "Forming a Security Certification Enclave for Service-Oriented Architectures," in Services Computing Wrks., 2006.
9. H. Ludwig, et al., "A Service Level Agreement Language for Dynamic Electronic Services," in 4th Int'l Workshop on Advanced Issues of E-Commerce and Web-Based Information Systems, 2002.
10. P. Patel et al., "Service Level Agreement in Cloud Computing," in Cloud Workshops at OOPSLA, 2009.
11. K. P. Clark et al., "Secure Monitoring of Service Level Agreements,," in Int'l Conf. on Availability, Reliability, and Security, 2010.
12. C. Chen et al., "AOP Based Trustable SLA Compliance Monitoring for Web Services," in 7th Int'l Conf. on Quality Software, 2007.
13. R. Henning, "Security Service Level Agreements: Quantifiable Security for the Enterprise?," New Security Paradigms Wrks., 1999.
14. C. Irvine, and T. Levin, "Quality of Security Service," in Proceedings of the New Security Paradigms Workshop, 2000.
15. S. Lindskog, "Modeling and Tuning Security from a Quality of Service Perspective," Chalmers Univ. Of Tech. Sweden, 2005.
16. S. Chaves et al., "SLA Perspective in Security Management for Cloud Computing," in Int'l Conf. on Networking and Services, 2010.
17. A. Celesti et al., "How to Enhance Cloud Architectures to Enable Cross-Federation," in 3rd Int'l Conf. on Cloud Computing, 2010.
18. R. Hu et al., "WSRank: A Method for Web Service Ranking in Cloud Environment," in Int'l Conf. on Dependable, Autonomic and Secure Computing, 2011.
19. M. Klusch et al., "Hybrid Adaptive Web Service Selection with SAWSDL-MX and WSDL-Analyzer" The Semantic Web: Research and Applications," L. Aroyo et al., eds., pp. 550-564: Springer, 2009.
20. Working group, "WSML" http://www.wsmo.org/TR/d16/d16.1/v1.0/
21. M. Hale and R.Gamble, " A Semantic Model for Software Security Compliance Certification" Report No. SEAT-UTULSA-122011, 2011 (under review).