Towards remote security monitoring in cloud services utilizing security metrics

Reijo Savola, Jukka Ahola

    Research output: Chapter in Book/Report/Conference proceedingConference article in proceedingsScientificpeer-review

    2 Citations (Scopus)

    Abstract

    Large amounts of business-critical data are transferred, processed and stored in cloud services, raising concerns about their security level.
    Adequate security management of cloud services is vital to their success. Systematically developed and maintained security metrics can be used to offer evidence of the security effectiveness of cloud services.
    We propose a metrics based approach for remote security correctness monitoring in the Cloud.
    The approach was investigated by building a monitoring system within an experimental cloud system set-up.
    Moreover, we discuss how risk-driven security metrics modeling based on the decomposition of security objectives is used to manage monitoring activities.
    Original languageEnglish
    Title of host publicationProceedings of the 6th International Conference on Application of Information and Communication Technologies, AICT 2013
    PublisherIEEE Institute of Electrical and Electronic Engineers
    Pages21-27
    ISBN (Electronic)978-1-4673-1740-5
    ISBN (Print)978-1-4673-1739-9
    DOIs
    Publication statusPublished - 2012
    MoE publication typeA4 Article in a conference publication
    EventIEEE 6th International Conference on Application of Information and Communication Technologies, AICT 2012 - Tbilisi, Georgia
    Duration: 17 Oct 201219 Oct 2012

    Conference

    ConferenceIEEE 6th International Conference on Application of Information and Communication Technologies, AICT 2012
    Abbreviated titleAICT 2012
    CountryGeorgia
    CityTbilisi
    Period17/10/1219/10/12

      Fingerprint

    Cite this

    Savola, R., & Ahola, J. (2012). Towards remote security monitoring in cloud services utilizing security metrics. In Proceedings of the 6th International Conference on Application of Information and Communication Technologies, AICT 2013 (pp. 21-27). IEEE Institute of Electrical and Electronic Engineers . https://doi.org/10.1109/ICAICT.2012.6398469