Modeling time, probability, and configuration constraints for continuous cloud service certification

Anisetti, Marco; Ardagna, Claudio Agostino; Damiani, Ernesto; Ioini, Nabil El; Gaudenzi, Filippo

doi:10.1016/j.cose.2017.09.012

Cited by 12 publications

(11 citation statements)

References 35 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Traditional assurance solutions do not consider human behavior in the evaluation of data trustworthiness and, in turn, of the validity of the corresponding processes/applications. They rather implement a verification process where either the system or devices generating data are tested/monitored 5,11,12 , or the reputation of the entity owning the system or devices is evaluated. Both these approaches are however not viable in complex IT scenarios based on a multitude of smart devices for different reasons, which can be summarized as follows.…”

Section: Assurance Methodologymentioning

confidence: 99%

“…5 Di Giulio et al 22 compared cloud assurance/security standards to evaluate how much they fulfill current threats to cloud assurance. Anisetti et al 23 presented a trustworthy test-based certification scheme for the cloud that supports continuous assessment, certification adaptation, and a chain of trust grounded on the certification authority requirements, and extend it in the work of Anisetti et al 11 to support continuous verification of model correctness against real and synthetic service execution traces to guarantee certification process soundness. Lins and Sunyaev 24 analyzed whether certification can properly increase the user trustworthiness in using cloud services.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

A trust assurance technique for Internet of things based on human behavior compliance

Anisetti

Ardagna

Damiani

et al. 2019

Concurrency and Computation

Self Cite

View full text Add to dashboard Cite

The advent of the Internet of Things (IoT) has radically changed the way in which computations and communications are carried out. People are just becoming another component of IoT environments and, in turn, IoT environments are becoming a mixture of platforms, software, services, things, and people. The price we pay for such dynamic and powerful environment is an intrinsic uncertainty and low trustworthiness due to its opaque perimeter, the multitude of different data sources with unknown providers, and uncertain responsibilities. Trustworthiness of observables collected by smart devices (from minuscle sensors to bigger machines) is fundamental to build a chain of trust on a decision process taken according to these observables. Some assurance solutions evaluate the quality of collected data, though they are difficult to apply in IoT environments for performance and cost reasons. In this paper, we take a different approach and put forward the idea that, in many cases, the behavior of people owning smart devices can contribute to the evaluation of the trustworthiness of collected data and, in turn, of the whole decision process. We therefore define an assurance methodology based on data analytics evaluating the compliance of people to behavioral policies. The more people behavior is compliant, the higher the trustworthiness of data collected through their smart devices.

show abstract

Section: Assurance Methodologymentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

A trust assurance technique for Internet of things based on human behavior compliance

Anisetti

Ardagna

Damiani

et al. 2019

Concurrency and Computation

Self Cite

View full text Add to dashboard Cite

show abstract

“…We extend our assurance framework in (Anisetti et al, 2018), designed for the assessment of cloud systems, to satisfy the requirements in Section 2 and address the peculiarities of modern environments. The framework in (Anisetti et al, 2018), in fact, does not fully satisfy property extensibility and needs to be modified to target those private deployments not directly reachable from the outside (e.g., traditional private corporate networks and private clouds). The simplest solution of moving assurance controls to the private network, directly connecting them to the target system, is not viable because it would cause the violation of different requirements in Section 2.…”

Section: Assurance Frameworkmentioning

confidence: 99%

“…The architecture of the new assurance framework is presented in Figure 1, adding three components to the one in (Anisetti et al, 2018): VPN Server, VPN Client, and VPN Manager. In a nutshell, different VPN Servers are installed within the framework, each one responsible to handle isolated VPN tunnels with client devices placed in the target networks.…”

Section: Assurance Frameworkmentioning

confidence: 99%

“…A different solution has been given in our work in (Anisetti et al, 2018), where we described the cloud-ready framework briefly summarized at the beginning of Section 3. As already discussed, the proposed approach is based on probes and meta-probes, and fails to address requirements extensibility, noninvasiveness, and partially, safety.…”

Section: Comparison With Existing Solutionsmentioning

confidence: 99%

See 1 more Smart Citation

Stay Thrifty, Stay Secure: A VPN-based Assurance Framework for Hybrid Systems

Anisetti

Ardagna

Bena

et al. 2020

Proceedings of the 17th International Joint Conference on E-Business and Telecommunications

View full text Add to dashboard Cite

Security assurance provides a wealth of techniques to demonstrate that a target system holds some nonfunctional properties and behaves as expected. These techniques have been recently applied to the cloud ecosystem, while encountering some critical issues that reduced their benefit when hybrid systems, mixing public and private infrastructures, are considered. In this paper, we present a new assurance framework that evaluates the trustworthiness of hybrid systems, from traditional private networks to public clouds. It implements an assurance process that relies on a Virtual Private Network (VPN)-based solution to smoothly integrate with the target systems. The assurance process provides a transparent and non-invasive solution that does not interfere with the working of the target system. The performance of the framework have been experimentally evaluated in a simulated scenario.

show abstract

Towards Conceptual Models for Machine Learning Computations

Damiani

Frati

2018

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Modeling time, probability, and configuration constraints for continuous cloud service certification

Cited by 12 publications

References 35 publications

A trust assurance technique for Internet of things based on human behavior compliance

A trust assurance technique for Internet of things based on human behavior compliance

Stay Thrifty, Stay Secure: A VPN-based Assurance Framework for Hybrid Systems

Towards Conceptual Models for Machine Learning Computations

Contact Info

Product

Resources

About