Abstract
Large amounts of business-critical data are transferred, processed and stored in cloud services, raising concerns about their security level.
Adequate security management of cloud services is vital to their success. Systematically developed and maintained security metrics can be used to offer evidence of the security effectiveness of cloud services.
We propose a metrics based approach for remote security correctness monitoring in the Cloud.
The approach was investigated by building a monitoring system within an experimental cloud system set-up.
Moreover, we discuss how risk-driven security metrics modeling based on the decomposition of security objectives is used to manage monitoring activities.
Adequate security management of cloud services is vital to their success. Systematically developed and maintained security metrics can be used to offer evidence of the security effectiveness of cloud services.
We propose a metrics based approach for remote security correctness monitoring in the Cloud.
The approach was investigated by building a monitoring system within an experimental cloud system set-up.
Moreover, we discuss how risk-driven security metrics modeling based on the decomposition of security objectives is used to manage monitoring activities.
Original language | English |
---|---|
Title of host publication | Proceedings of the 6th International Conference on Application of Information and Communication Technologies, AICT 2013 |
Publisher | IEEE Institute of Electrical and Electronic Engineers |
Pages | 21-27 |
ISBN (Electronic) | 978-1-4673-1740-5 |
ISBN (Print) | 978-1-4673-1739-9 |
DOIs | |
Publication status | Published - 2012 |
MoE publication type | A4 Article in a conference publication |
Event | IEEE 6th International Conference on Application of Information and Communication Technologies, AICT 2012 - Tbilisi, Georgia Duration: 17 Oct 2012 → 19 Oct 2012 |
Conference
Conference | IEEE 6th International Conference on Application of Information and Communication Technologies, AICT 2012 |
---|---|
Abbreviated title | AICT 2012 |
Country/Territory | Georgia |
City | Tbilisi |
Period | 17/10/12 → 19/10/12 |