Secure Monitoring of Service Level Agreements

Clark, Kassidy P.; Warnier, Martijn; Brazier, Frances M. T.; Quillinan, Thomas B.

doi:10.1109/ares.2010.33

Cited by 18 publications

(14 citation statements)

References 16 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Clark et al [11] incorporate their SLA management framework into WS-Agreement specified SLAs by modifying the underlying agreement schema. They insert additional elements into SDTs (see Section III.B) to allow services to be monitored by trusted third parties.…”

Section: A Towards Cloud Security Slasmentioning

confidence: 99%

See 1 more Smart Citation

SecAgreement: Advancing Security Risk Calculations in Cloud Services

Hale

Gamble

2012

2012 IEEE Eighth World Congress on Services

View full text Add to dashboard Cite

Abstract-By choosing to use cloud services, organizations seek to reduce costs and maximize efficiency. For mission critical systems that must satisfy security constraints, this push to the cloud introduces risks associated with cloud service providers not implementing organizationally selected security controls or policies. As internal system details are abstracted away as part of the cloud architecture, the organization must rely on contractual obligations embedded in service level agreements (SLAs) to assess service offerings. Current SLAs focus on quality of service metrics and lack the semantics needed to express security constraints that could be used to measure risk. We create a framework, called SecAgreement (SecAg), that extends the current SLA negotiation standard, WS-Agreement, to allow security metrics to be expressed on service description terms and service level objectives. The framework enables cloud service providers to include security in their SLA offerings, increasing the likelihood that their services will be used. We define and exemplify a cloud service matchmaking algorithm to assess and rank SecAg enhanced WS-Agreements by their risk, allowing organizations to quantify risk, identify any policy compliance gaps that might exist, and as a result select the cloud services that best meet their security needs.

show abstract

Section: A Towards Cloud Security Slasmentioning

confidence: 99%

“…Much cloud research has focused on understanding on how best to manage and monitor SLAs to detect when SLOs are violated [10][11][12]. Clark et al [11] incorporate their SLA management framework into WS-Agreement specified SLAs by modifying the underlying agreement schema.…”

Section: A Towards Cloud Security Slasmentioning

confidence: 99%

SecAgreement: Advancing Security Risk Calculations in Cloud Services

Hale

Gamble

2012

2012 IEEE Eighth World Congress on Services

View full text Add to dashboard Cite

show abstract

“…For example, the SLA framework in AgentScape [10] has been extended to support monitoring and penalty enforcement [3]. A trusted monitoring module is required to measure the provided services and ensure that the GTs in the SLA are being fulfilled by both parties.…”

Section: Violations and Penaltiesmentioning

confidence: 99%

“…In this paper, a number of recent proposals (from [3,8,12,13]) in the area of service violations and penalities negotiation, as well as suggesting approaches that could be used to support renegotiation of SLAs during enactment. The remainder of this paper is organised as follows: Section 2 discusses WSAgreement and how it can be used to formulate agreements between clients and providers.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Negotiation and Monitoring of Service Level Agreements

Quillinan

Clark

Warnier

et al. 2010

Grids and Service-Oriented Architectures for Service Level Agreements

View full text Add to dashboard Cite

Service level agreements (SLAs) provide a means to define specific Quality of Service (QoS) guarantees between providers and consumers of services. Negotiation and definition of these QoS characteristics is an area of significant research. However, defining the actions that take place when an agreement is violated is a topic of more recent focus. This paper discusses recent advances in this field and propose some additional features that can help both consumers and producers during the enactment of services. These features include the ability to (re)negotiate penalties in an agreement, and specifically focuses on the renegotiation of penalties during enactment to reflect ongoing violations.

show abstract

Web Service-Based Trust Management in Cloud Environments

Noor

Sheng

2013

Advanced Web Services

View full text Add to dashboard Cite

Secure Monitoring of Service Level Agreements

Cited by 18 publications

References 16 publications

SecAgreement: Advancing Security Risk Calculations in Cloud Services

SecAgreement: Advancing Security Risk Calculations in Cloud Services

Negotiation and Monitoring of Service Level Agreements

Web Service-Based Trust Management in Cloud Environments

Contact Info

Product

Resources

About