4.5 Article

Formal verification of secure information flow in cloud computing

JOURNAL OF INFORMATION SECURITY AND APPLICATIONS (2016)

Get Full Text
Add to Collection

Journal

JOURNAL OF INFORMATION SECURITY AND APPLICATIONS
Volume 27-28, Issue -, Pages 103-116

Publisher

ELSEVIER
DOI: 10.1016/j.jisa.2016.03.002

Keywords

Federated cloud system; Information flow security; Bell-LaPadula rules; Petri net; Diagnosability; Model checking

Categories

Computer Science, Information Systems

Ask authors/readers for more resources

Protocol

Community support

Reagent

Community support

Federated cloud systems increase the reliability and reduce the cost of computational support to an organisation. However, the resulting combination of secure private clouds and less secure public clouds impacts on the overall security of the system as applications need to be located within different clouds. In this paper, the entities of a federated cloud system as well as the clouds are assigned security levels of a given security lattice. Then a dynamic flow sensitive security model for a federated cloud system is introduced within which the Bell-LaPadula rules and cloud security rule can be captured. The rest of the paper demonstrates how Petri nets and the associated verification techniques could be used to analyse the security of information flow in federated cloud systems. (C) 2016 Published by Elsevier Ltd.

Authors

I am an author on this paper
Click your name to claim this paper and add it to your profile.

Reviews

Primary Rating

4.5
Not enough ratings

Secondary Ratings

Novelty
-
Significance
-
Scientific rigor
-
Rate this paper

Recommended

No Data Available
No Data Available
Webinars Posters Questions Hubs Funding Journals Papers Connect Collections Reviewers About Us FAQs Mobile App Privacy Policy Terms of Use
© Peeref 2019-2024. All rights reserved.