An Integrated Meta-model for Cloud Application Security Modelling

Procedia Computer Science

Volumn 97, Issue , 2016, Pages 84-93

  Kritikos, Kyriakos ^a   Massonet, Philippe ^b  

^a INSTITUTE OF COMPUTER SCIENCE   (Greece)

^b Centre d'Excellence en Technologies de l'Information et de la Communication   (Belgium)

Author keywords

cloud; control; DSL; meta model; metrics; model; requirements; rules; scalability; security

Indexed keywords

CLOUDS; CONTROL; DSL; MODELS; SEMANTICS;

META MODEL; METRICS; REQUIREMENTS; RULES; SECURITY;

SCALABILITY;

EID: 84999025026     PISSN: None     EISSN: 18770509     Source Type: Conference Proceeding    
DOI: 10.1016/j.procs.2016.08.283     Document Type: Conference Paper

References (21)

1. D.C. Schmidt Guest editor's introduction: Model-driven engineering Computer 39 2 2006 25 31 10.1109/MC.200658
2. U. Amann, N. Bencomo, B.H.C. Cheng, and R.B. France Models@run.time (dagstuhl seminar 11481) Dagstuhl Reports 1 11 2011 91 123
3. Catteddu, D., Hogben, G. Benefits, risks and recommendations for information security. Technical Report; European Network and Information. Security Agency; Heraklion, Crete, Greece; 2009. URL: https://www.sbs.ox.ac.uk/cybersecurity-capacity/system/. files/ENISA%20Cloud%20Computing%20Security%20Risk%20Assessment.pdf.
4. Cloud Security Alliance,. Cloud Control Matrix. Tech. Rep.; 2011. URL: https://cloudsecurityalliance.org/research/ccm/.
5. Joint Task Force Transformation Initiative,. Security and Privacy Controls for Federal Information Systems and Organizations. Technical. Report. National Institute of Standards and Technology; USA; 2013.
6. Object Management Group,. Object Constraint Language; 2014. http://www.omg.org/spec/OCL/2.4/.
7. A.M. Ǵomez, M.A. Ferńandez, R. Harjani, and A. MuÌnoz An Engineering Process to Address Security Challenges in Cloud Computing Proc. of the Third ASE International Conference on Cyber Security. ASE; 2014
8. J. Domaschka, K. Kritikos, and A. Rossini SRL: A Scalability Rule Language for Multi-Cloud Environments Proceedings of the 2014. IEEE International Conference on Cloud Computing Technology and Science; CLOUDCOM'14. IEEE Computer Society; 2014
9. Cloud Security Alliance,. Consensus Assessments Initiative Questionnaire. Tech. Rep. v3.0.1
10. Cloud Select Industry Group (C-SIG),. Cloud Service Level Agreement Standardization Guidelines. Technical Report; 2014. URL:. http://ec.europa.eu/information-society/newsroom/cf/dae/document.cfm?action=display&doc-id=6138.
11. A. Pannetrat D2.1: Security-aware SLA specification language and cloud security dependency model Cumulus Project Deliverable 2013
12. P. Trimintzios Measurement Frameworks and Metrics for Resilient Networks and Services Technical Report; 2011
13. The Center for Internet Security,. The CIS security metrics v.1.10. Technical Report 28; USA; 2010. URL: https://buildsecurityin. us-cert.gov/sites/default/files/CIS-Security-Metrics-v1.0.0.pdf.
14. E. Chew, M. Swanson, K. Stine, N. Bartol, A. Brown, and W. Robinson Performance measurement guide for information security Technical Report; National Institute of Standards and Technology; USA; 2008
15. J. Arshad, P. Townend, and J. Xu Quantification of security for compute intensive workloads in clouds ICPADS. IEEE; 2009 479 486
16. A.J.A. Wang Information security models and metrics ACM-SE. Kennesaw, Georgia: ACM; 2005 178 184
17. S. Fenz, and A. Ekelhart Formalizing Information Security Knowledge. In: ASIACCS. Sydney Australia: ACM 2009 183 194
18. S. Fenz Ontology-based Generation of IT-security Metrics. In: SAC. Sierre Switzerland: ACM 2010 1833 1839
19. C. Basile, J. Silvestro, A. Lioy, D. Canavese, M.A. Neri, S. Paraboschi, and et al. D3.2: Security Ontology Definition PoSecCo Project. Deliverable 2011
20. M. Almorsy, J. Grundy, and A. Ibrahim Adaptable, model-driven security engineering for saas cloud-based applications Automated Software. Engineering 21 2 2014 187 224 10.1007/s10515-013-z 0133
21. D. NuÌnez, C. Fernandez-Gago, S. Pearson, and M. Felici A metamodel for measuring accountability attributes in the cloud. CLOUDCOM. 2013 IEEE Computer Society Washington, DC, USA 978-0-7695-5095-4 355 362