Toward a Dynamic Trust Establishment approach for multi-provider Intercloud environment

Ngo, Canh; Demchenko, Yuri; Laat, Cees de

doi:10.1109/cloudcom.2012.6427548

Cited by 22 publications

(11 citation statements)

References 17 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In [9] a Secure Reference Architecture has been developed for the Cloud Computing using patterns. Some works have been very detailed in proposing trust, identity management, authorization and authentication solutions for securing the Inter-Cloud [3,4,18,20]; however, these security approaches are also mixed with special components, technologies and long descriptions of protocols and specifications, which make their proposals too rigid and harder to implement in legacy designs or in ongoing Inter-Cloud developments. No effort to define a holistic view of the federated inter-Cloud system has been proposed.…”

Section: Related Workmentioning

confidence: 99%

Towards Secure Inter-Cloud Architectures

Fernández

2014

Proceedings of the 8th Nordic Conference on Pattern Languages of Programs (VikingPLoP)

View full text Add to dashboard Cite

Section: Related Workmentioning

confidence: 99%

Towards Secure Inter-Cloud Architectures

Fernández

2014

Proceedings of the 8th Nordic Conference on Pattern Languages of Programs (VikingPLoP)

View full text Add to dashboard Cite

“…We consider it as candidate platform for OCX TTP implementation that can also integrate solutions proposed in the research work by the University of Kent [20] and also integrate the authors' earlier works on trust establishment trust based policy evaluation [29] and trust bootstrapping protocol [30].…”

Section: B Related Researchmentioning

confidence: 99%

“…The intended solution will review the solutions being developed by the ABFAB WG at IETF [27,31], works by the University of Kent [20] and the University of Amsterdam [29,30].…”

Section: Conlusion and Future Developmentsmentioning

confidence: 99%

Open Cloud eXchange (OCX): Architecture and Functional Components

Demchenko

Ham

Ngo

et al. 2013

2013 IEEE 5th International Conference on Cloud Computing Technology and Science

Self Cite

View full text Add to dashboard Cite

Abstract-This paper presents the concept of Open Cloud eXchange (OCX) that has been proposed to bridge the gap between two major components of the cloud services provisioning infrastructure: Cloud Service Provider (CSP) infrastructure; and cloud services delivery infrastructure which in many cases requires dedicated local infrastructure and quality of services that cannot be delivered by the public Internet infrastructure. In both cases there is a need for interconnecting the CSP infrastructure and local access network infrastructure, in particular, to solve the "last mile" problem in delivering cloud services to customer locations and individual (end-)users. The OCX remains neutral to actual cloud services provisioning and limit its services to Layer 0 through Layer 2 to remain transparent to current cloud services model. The proposed document identifies the initial set of requirements to OCX, that can be run by NRENs, as a part of the GÉANT network, or jointly, and provides suggestions about OCX implementation. The proposed OCX concept will leverage the existing Internet eXchange (IX) and GLIF Open Lightpath Exchange (GOLE) solutions and practices, adding specific functionality that will simplify inter-CSP and customer infrastructure integration when supporting basic cloud services provisioning models, in particular Trusted Third Party (TTP) services to allow federated infrastructure and access control, commonly used by NRENs. The paper also describes trusted/secured topology exchange protocol and dynamic trust establishment protocol as a part of the OCX services.

show abstract

“…FEDERICA Error! Reference source not found., OFELIA [30] or GENI Error! Reference source not found..…”

Section: Geysers Future Internet Testbedmentioning

confidence: 99%

“…It will also be valid for experimenting with the new dynamic trust management and scalable access control policy deployment initially proposed in the GEYSERS project [30]. Further research is being conducted on the SLA based infrastructure resources provisioning following the initial results presented in [27].…”

mentioning

confidence: 99%