Trustworthy Cloud Certification: A Model-Based Approach

Anisetti, Marco; Ardagna, Claudio Agostino; Damiani, Ernesto; Ioini, Nabil El

doi:10.1007/978-3-319-27243-6_5

Cited by 3 publications

(4 citation statements)

References 26 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…To ll in this gap, we extend our model-based certication process in Anisetti et al (2014aAnisetti et al ( , 2015 with a methodology for the verication of the correctness of the system model. We assume the system model to be either manually gener-ated by the system provider with the help of the accredited lab or automatically generated according to existing solutions (e.g., Anisetti et al (2014b); Merten et al (2012); Ernst et al (1999)). Our certication process implements the pre-deployment and production evaluation steps, and extends the system model adding time, probability, conguration constraints, and attack paths tested on the ToC.…”

Section: Trustworthy Certication Processmentioning

confidence: 99%

“…More recently, the works in Anisetti et al (2014aAnisetti et al ( , 2015Anisetti et al ( , 2014b; Ardagna et al (2016) have provided the basic building blocks for the denition of a certication process addressing cloud peculiarities. In this paper, we consider advanced aspects aimed to guarantee the trustworthiness of the certication process in a dynamic cloud, including constraints on time relations between dierent states of the model, transition probabilities, and congurations, and attack paths for certicate validity.…”

Section: Related Workmentioning

confidence: 99%

“…We note that, although our methodology is applied to a specic certication scheme, it is general and can be used for any model-based assurance technique. This paper develops on our previous work (Anisetti et al (2014b(Anisetti et al ( , 2015) by providing i) a trustworthy certication scheme extended with checks on model correctness (Section 2); ii) a methodology composed of four processes and corresponding algorithms for verifying the model structure, as well as time, probability, and conguration constraints (Section 3); iii) an architecture including components supporting online verication of model correctness (Section 4); iv) an extensive evaluation of our trustworthy certication scheme (Section 5). The evaluation considers the eHealth application of ATOS SA, a major IT enterprise, deployed on top of open source IaaS OpenStack.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Modeling time, probability, and configuration constraints for continuous cloud service certification

Anisetti

Ardagna

Damiani

et al. 2018

Computers & Security

View full text Add to dashboard Cite

Cloud computing proposes a paradigm shift where resources and services are allocated, provisioned, and accessed at runtime and on demand. New business opportunities emerge for service providers and their customers, at a price of an increased uncertainty on how their data are managed and their applications operate once stored/deployed in the cloud. This scenario calls for assurance solutions that formally assess the working of the cloud and its services/processes. Current assurance techniques increasingly rely on model-based verication, but fall short to provide sound checks on the validity and correctness of their assessment over time. The approach in this paper aims to close this gap catching unexpected behaviors emerging when a veried service is deployed in the target cloud. We focus on certication-based assurance techniques, which provide customers with veriable and formal evidence on the behavior of cloud services/processes. We present a trustworthy cloud certication scheme based on the continuous verication of model correctness against real and synthetic service execution traces, according to time, probability, and conguration constraints, and attack ows. We test the eectiveness of our approach in a real scenario involving ATOS SA eHealth application deployed on top of open source IaaS OpenStack.

show abstract

Section: Trustworthy Certication Processmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Modeling time, probability, and configuration constraints for continuous cloud service certification

Anisetti

Ardagna

Damiani

et al. 2018

Computers & Security

View full text Add to dashboard Cite

show abstract

“…A failure returned by the verification process is triggered by i) an inconsistency between the certification model and the execution traces, or ii) a violation of configuration constraints. Scenario i) requires a system adaptation and has been already tackled in our previous work in [13]. Scenario ii) is the target of the adaptation approach in this paper.…”

Section: Definition 1 (Certification Model)mentioning

confidence: 99%

Certification-Based Cloud Adaptation

Ardagna

Asal

Damiani

et al. 2018

IEEE Trans. Serv. Comput.

View full text Add to dashboard Cite

Performance and dependability levels of cloud-based computations are difficult to guarantee by-design due to segregation of visibility and control between applications, data owners, and cloud providers. Lack of predictability increases users' uncertainty about the service levels they will actually achieve. Cloud tenants compete for shared resources/services at all layers of the cloud stack, and pose heterogeneous and conflicting non-functional requirements over them. These requirements have implications for platform and infrastructure layers, which have to be configured to satisfy inter-tenants requirements. We argue that adaptation techniques can play a crucial role in providing a reliable cloud, supporting definite behavior of applications and stable quality of service. Existing adaptation techniques however are unsuitable for cloud use, since they mostly focus on single tenancy, performance requirements, and are based on unverifiable evidence, which is collected in an untrusted way. In this paper, we propose a multi-tenant, general-purpose adaptation technique for the cloud, based on evidence collected by means of a trustworthy certification process. We depart from traditional heavy and comprehensive certification processes, such as ISO/IEC 27017, and consider a flexible and lightweight certification process for the cloud. It is based on authentic evidence and provides accountable validation on the compliance of a cloud-based system. Our approach adapts the cloud at all layers to maintain stable non-functional properties in certificates over time, by continuously verifying certificate validity. We assess the performance and quality of our adaptation approach in a wide range of settings.

show abstract