A Test-Based Incremental Security Certification Scheme for Cloud-Based Systems

被引：8

作者：

Anisetti, Marco ^{[1
]}

Ardagna, Claudio A. ^{[1
]}

Damiani, Ernesto ^{[1
]}

机构：

[1] DI Univ Milano, I-26013 Crema, Italy

来源：

2015 IEEE 12TH INTERNATIONAL CONFERENCE ON SERVICES COMPUTING (SCC 2015) | 2015年

关键词：

Cloud; Incremental security certification; Testing;

D O I：

10.1109/SCC.2015.104

中图分类号：

TP301 [理论、方法];

学科分类号：

081202 ;

摘要：

We present a test-based assurance scheme aimed at incremental security certification. Our scheme assesses the impact of changes at cloud, system, and certification methodology levels on existing certification processes. The proposed solution minimizes the risk of unnecessary certificate revocation and reduces as much as possible the amount of re-certification activities. To this aim, it reuses evidence available in existing certificates to re-validate them when relevant changes are observed.

引用

页码：736 / 741

页数：6

共 50 条

[1] A Test-Based Security Certification Scheme for Web Services
Anisetti, Marco
Ardagna, Claudio A.
Damiani, Ernesto
Saonara, Francesco
[J]. ACM TRANSACTIONS ON THE WEB, 2013, 7 (02)
[2] Test-Based Security Certification of Composite Services
Anisetti, Marco
Ardagna, Claudio
Damiani, Ernesto
Polegri, Gianluca
[J]. ACM TRANSACTIONS ON THE WEB, 2019, 13 (01)
[3] Test-based cloud service certification of opportunistic providers
Stephanow, Philipp
Srivastava, Gaurav
Schuette, Julian
[J]. PROCEEDINGS OF 2016 IEEE 9TH INTERNATIONAL CONFERENCE ON CLOUD COMPUTING (CLOUD), 2016, : 843 - 848
[4] Evaluating the performance of continuous test-based cloud service certification
Stephanow, Philipp
Banse, Christian
[J]. 2017 17TH IEEE/ACM INTERNATIONAL SYMPOSIUM ON CLUSTER, CLOUD AND GRID COMPUTING (CCGRID), 2017, : 1117 - 1126
[5] Test-based risk assessment and security certification proposal for the Internet of Things
Matheu Garcia, Sara N.
Hernandez-Ramos, Jose L.
Skarmeta, Antonio E.
[J]. 2018 IEEE 4TH WORLD FORUM ON INTERNET OF THINGS (WF-IOT), 2018, : 641 - 646
[6] Dependability Modeling and Certification of Cloud-Based Distributed Systems
Ravindran, Kaliappa
[J]. INTERNET AND DISTRIBUTED COMPUTING SYSTEMS, IDCS 2013, 2013, 8223 : 333 - 350
[7] An Auditing Scheme for Cloud-Based Checkout Systems
Chang, Tao-Ku
Lu, Cheng-Yen
[J]. SECURITY WITH INTELLIGENT COMPUTING AND BIG-DATA SERVICES, 2020, 895 : 423 - 437
[8] An Auditing Scheme for Cloud-based Checkout Systems
Chang, Tao-Ku
Lu, Cheng-Yen
[J]. Journal of Computers (Taiwan), 2019, 30 (06) : 252 - 262
[9] Towards the Certification of Covert Channel Freeness in Cloud-Based Systems
Jaskolka, Jason
Khedri, Ridha
[J]. 6TH INTERNATIONAL CONFERENCE ON AMBIENT SYSTEMS, NETWORKS AND TECHNOLOGIES (ANT-2015), THE 5TH INTERNATIONAL CONFERENCE ON SUSTAINABLE ENERGY INFORMATION TECHNOLOGY (SEIT-2015), 2015, 52 : 318 - 325
[10] On the Security of a Cloud-Based Revocable IBPRE Scheme for Data Sharing
Zhang, Jindan
Wang, Baocang
[J]. ADVANCES ON P2P, PARALLEL, GRID, CLOUD AND INTERNET COMPUTING, 2017, 1 : 405 - 413

← 1 2 3 4 5 →