A methodology for management of cloud computing using security criteria

Proceedings of the 2012 IEEE Latin America Conference on Cloud Computing and Communications, LatinCloud 2012

Volumn , Issue , 2012, Pages 49-54

  Da Silva, Carlos Alberto ^a   Ferreira, Anderson Soares ^a   De Geus, Paulo Licio ^a  

^a UNIVERSITY OF CAMPINAS   (Brazil)

Author keywords

[No Author keywords available]

Indexed keywords

ALLOCATION ALGORITHM; CLOUD COMPUTING ENVIRONMENTS; CLOUD COMPUTING SECURITIES; ENERGY EFFICIENT; SECURITY CRITERION; SECURITY INDICES; SECURITY LEVEL; SECURITY METRICS;

CLOUD COMPUTING;

COMPUTER SYSTEMS;

EID: 84880293922     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/LatinCloud.2012.6508157     Document Type: Conference Paper

References (27)

1. P. Mell and T. Grance. (2011, May) The nist definition of cloud computing. [Online]. Available: http://csrc.nist.gov/publications/nistpubs/800- 145/SP800-145.pdflastaccessin28/11/2011.
2. L. M. Vaquero, L. Rodero-Merino, J. Caceres, and M. Lindner, "A break in the clouds: Towards a cloud definition," ACM SIGCOMM Computer Communication Review, vol. 39, no. 1, pp. 50-55, January 2009.
3. CSA. (2009) Security guidance for critical areas of focus in cloud computing, cloud security alliance. V2.1. Cloud Security Alliance. [Online]. Available: http://www.cloudsecurityalliance.org/guidance/csaguide.v2.1.pdf
4. G. B., W. T., and S. E., "Understanding cloud computing vulnerabilities," IEEE Security and Privacy, 2010.
5. A. J. Younge, G. von Laszewski, L. Wang, S. Lopez-Alarcon, and W. Carithers, "Efficient resource management for cloud computing environments," IEEE, no. 978-1-4244-7614-5/10, 2010.
6. C. Landwehr, "Computer security," International Journal of Information Security, vol. 1, pp. 3-13, 2001.
7. ISO/IEC. (2009) Iso/iec 27000-information technology-security techniques-information security management systems-requirements. international organization for standartization.
8. H. L., IT Security Metrics: A Practical Framework for Measuring Security & Protecting Data. McGraw-Hill Osborne, 2010.
9. D. S. Herrmann, Complete guide to security and privacy metrics. Auerbach Publications, 2007, iSBN: 0-8493-5402-1.
10. I. Foster, Y. Zhao, I. Raicu, and L. Shiyong, "Cloud computing and grid computing 360-degree compared," in Grid Computing Environments Workshop, 2008, ser. GCE '08, November 2008, pp. 1-10.
11. R. Buyya, S. K. Garg, and R. N. Calheiros, "Sla-oriented resource provisioning for cloud computing: Challenges, architecture, and solutions," Proceedings of the 2011 IEEE, International Conference on Cloud and Service Computing (CSC 2011, IEEE Press, USA), 2011.
12. F. R. Lamin, C. B. Westphall, and S. A. de Chaves, "Sla perspective in security management for cloud computing," in Sixth International Conference on Networking and Services, ser. ICNS'10. IEEE Computer Society, March 2010, pp. 212-217.
13. R. R. Righi, F. R. Pellissari, and C. B. Westphall, "Sec-sla: specification and validation of metrics for service level agreements oriented to security," in IV Workshop in Computer Security System. Porto Alegre, RS: SBC, 2004, pp. 199-210.
14. A. Mana and G. Pujol, "Towards formal specification of abstract security properties," The Third International Conference on Availability, Reliability and Security (ARES 08)-IEEE, pp. 80-87, 2008.
15. L. Krautsevich, F. Martinelli, and A. Yautsiukhin, "Formal approach to security metrics.: what does "more secure" mean for you?" Proceedings of the Fourth European Conference on Software Architecture-ECSA '10, vol. Companion Volume, pp. 162-169, 2010.
16. S. N. Foley, S. Bistarelli, B. O'Sullivan, J. Herbert, and G. Swart, "Multilevel security and quality of protection," in QUALITY OF PROTECTION-Security Measurements and Metrics, ser. Part 3, vol. 23. Springer US, 2006, pp. 93-105.
17. R. M. Savola, "Towards a security metrics taxonomy for the information and communication technology industry," International Conference on Software Engineering Advances (ICSEA)-IEEE, p. 60, 2007.
18. -, "Towards a taxonomy for information security metrics," Proceeding QoP '07 Proceedings of the 2007 ACM workshop on Quality of protection-ACM, pp. 28-30, 2007.
19. -, "A security metrics taxonomization model for software-intensive systems," Journal of Information Processing Systems, vol. 5, p. 197, 2009.
20. P. Halonen and K. Hatonen, "Towards holistic security management through coherent measuring," 2010, pp. 155-161.
21. O. Rebollo, D. Mellado, and E. Fernndez-Medina, "A systematic review of information security governance frameworks in the cloud computing environment," Journal of Universal Computer Science, vol. 18, pp. 798-815, 2012.
22. Y. Zhang, G. Huang, X. Liu, and H. Mei, "Integrating resource consumption and allocation for infrastructure resources on-demand," IEEE 3rd International Conference on Cloud Computing, 2010.
23. Y. O. Yazr, C. Matthews, R. Farahbod, S. Neville, A. Guitouni, S. Ganti, and Y. Coady, "Dynamic resource allocation in computing clouds using distributed multiple criteria decision analysis," 3rd International Conference on Cloud Computing-IEEE, no. 978-0-7695-4130-3/10, pp. 91-98, 2010.
24. W. E. Walsh, G. Tesauro, J. O. Kephart, and R. Das, "Utility functions in autonomic systems in icac 04," Proceedings of the first international conference on autonomic computing, IEEE Computer Society, p. 7077, 2004.
25. F. Hermenier, X. Lorca, J. M. Menaud, G. Muller, and J. Lawall, "Entropy: A consolidation manager for clusters, in vee09: Proceedings of the 2009," ACM SIGPLAN/SIGOPS International Conference on Virtual Execution Environments, p. 4150, 2009.
26. J. Arshad, P. Townend, and J. Xu, "Quantification of security for compute intensive workloads in clouds," 15th International Conference on Parallel and Distributed Systems-IEEE, 2009.
27. V. Basili, G. Caldiera, and H. D. Rombach, "The goal question metric approach," 1994.