Multilevel classification of security concerns in cloud computingShow others and affiliations
2017 (English)In: Applied Computing and Informatics, E-ISSN 2210-8327, Vol. 13, no 1, p. 57-65Article in journal (Refereed) Published
Abstract [en]
Threats jeopardize some basic security requirements in a cloud. These threats generally constitute privacy breach, data leakage and unauthorized data access at different cloud layers. This paper presents a novel multilevel classification model of different security attacks across different cloud services at each layer. It also identifies attack types and risk levels associated with different cloud services at these layers. The risks are ranked as low, medium and high. The intensity of these risk levels depends upon the position of cloud layers. The attacks get more severe for lower layers where infrastructure and platform are involved. The intensity of these risk levels is also associated with security requirements of data encryption, multi-tenancy, data privacy, authentication and authorization for different cloud services. The multilevel classification model leads to the provision of dynamic security contract for each cloud layer that dynamically decides about security requirements for cloud consumer and provider. © 2016 King Saud University
Place, publisher, year, edition, pages
Elsevier B.V. , 2017. Vol. 13, no 1, p. 57-65
Keywords [en]
Cloud computing, IaaS, PaaS, SaaS, Security, Virtualization
National Category
Computer Sciences
Identifiers
URN: urn:nbn:se:bth-16546DOI: 10.1016/j.aci.2016.03.001Scopus ID: 2-s2.0-85047871495OAI: oai:DiVA.org:bth-16546DiVA, id: diva2:1220091
Note
open access
2018-06-182018-06-182023-06-28Bibliographically approved