CloudSurfer - A Cloud Broker Application for Security Concerns

Milena Frtunic, Filip Jovanovic, Mladen Gligorijvic, Lazar Dordevic, Srecko Janicijevic, Per Håkon Meland, Karin Bernsmed, Humberto Castejon

Abstract

The broker is foreseen to take an important role in the future Cloud ecosystem. A Cloud broker will simplify the relationships between Cloud providers and customers, by aggregating, integrating and customizing services in accordance to the customers’ needs. This paper demonstrates how security requirements can be a part of the Cloud brokering model. We present CloudSurfer, which is a prototype implementation of an independent Cloud broker that allows the customer to search for services that fulfill a set of security requirements. The application has been evaluated by representatives from the software industry and academia, and is freely available for further research.

References

  1. Andrieux, A., Czajkowski, K., Dan, A., Keahey, K., Ludwig, H., Nakata, T., Pruyne, J., Rofrano, J., Tuecke, S., and Xu, M. (2003). Web Services Agreement Specification (WS-Agreement). https:// forge.gridforum.org/projects/graap-wg/.
  2. Cloud Security Alliance (2012). CSA Cloud Controls Matrix. Technical report. https:// cloudsecurityalliance.org/research/ccm/.
  3. Contrail Consortium (2010). http://contrail-project.eu/.
  4. Contrail FP7 EU Project.
  5. Ferrer et al (2012). OPTIMIS: A holistic approach to cloud service provisioning. Future Gener. Comput. Syst., 28(1):66-77.
  6. Frtunic, M., Jovanovic, F., Gligorijvic, M., Dordevic, L., and Janicijevic, S. (2012). CloudSurfer. Security Requirements for Cloud Brokering. Customer Driven Project, project report, NTNU.
  7. Hevner, A. and Chatterjee, S. (2010). Design Research in Information Systems: Theory and Practice. Springer Publishing Company, Incorporated, 1st edition.
  8. Hogben, G. and Dekker, M. (2012). Procure Secure: A guide to monitoring of security service levels in cloud contracts. Technical report. http:// www.enisa.europa.eu/activities/Resilience-and-CIIP/ cloud-computing/.
  9. Jansen, W. and Grance, T. (2011). Guidelines on Security and Privacy in Public Cloud Computing. NIST Special Publication 800-144.
  10. Jensen, J. et al. (2011). SLA Management Services Terms and Initial Architecture. Contrail deliverable D3.2.
  11. Liu, F., Tong, J., Mao, J., Bohn, R., Messina, J., Badger, L., and Leaf, D. (2011). NIST Cloud Computing Reference Architecture. NIST Special Publication 500-292.
  12. Meland, P., Bernsmed, K., Jaatun, M., Castejon, H., and Undheim, A. (2013). Expressing cloud security requirements for SLAs in deontic contract languages for cloud brokers. International Journal of Cloud Computing (to appear).
  13. Moscato, F., Aversa, R., Di Martino, B., Fortis, T., and Munteanu, V. (2011). An analysis of mOSAIC ontology for Cloud resources annotation. In Computer Science and Information Systems (FedCSIS), 2011 Federated Conference on, pages 973 -980.
Download


Paper Citation


in Harvard Style

Frtunic M., Jovanovic F., Gligorijvic M., Dordevic L., Janicijevic S., Meland P., Bernsmed K. and Castejon H. (2013). CloudSurfer - A Cloud Broker Application for Security Concerns . In Proceedings of the 3rd International Conference on Cloud Computing and Services Science - Volume 1: CLOSER, ISBN 978-989-8565-52-5, pages 199-206. DOI: 10.5220/0004375001990206


in Bibtex Style

@conference{closer13,
author={Milena Frtunic and Filip Jovanovic and Mladen Gligorijvic and Lazar Dordevic and Srecko Janicijevic and Per Håkon Meland and Karin Bernsmed and Humberto Castejon},
title={CloudSurfer - A Cloud Broker Application for Security Concerns},
booktitle={Proceedings of the 3rd International Conference on Cloud Computing and Services Science - Volume 1: CLOSER,},
year={2013},
pages={199-206},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0004375001990206},
isbn={978-989-8565-52-5},
}


in EndNote Style

TY - CONF
JO - Proceedings of the 3rd International Conference on Cloud Computing and Services Science - Volume 1: CLOSER,
TI - CloudSurfer - A Cloud Broker Application for Security Concerns
SN - 978-989-8565-52-5
AU - Frtunic M.
AU - Jovanovic F.
AU - Gligorijvic M.
AU - Dordevic L.
AU - Janicijevic S.
AU - Meland P.
AU - Bernsmed K.
AU - Castejon H.
PY - 2013
SP - 199
EP - 206
DO - 10.5220/0004375001990206