Cloud Security Requirements Analysis and Security Policy Development Using HOOMT

2017 ◽  
pp. 553-582 ◽  
Author(s):  
Kenneth Kofi Fletcher ◽  
Xiaoqing (Frank) Liu
Keyword(s):  
Policy Development ◽  
Security Policy ◽  
Cloud Security ◽  
Requirements Analysis ◽  
Security Requirements

scholarly journals Cloud Security - A Semantic Approach in End to End Security Compliance

2017 ◽  
Vol 5 (2) ◽  
pp. 97-106
Author(s):  
VNS Surendra Chimakurthi
Keyword(s):  
Security Policy ◽  
Service Providers ◽  
Cloud Service ◽  
Cloud Security ◽  
Cloud Services ◽  
Security Requirements ◽  
Security And Privacy ◽  
Cloud Service Providers ◽  
Compliance Requirements ◽  
Cloud Users

Many firms are seeing the benefits of moving to the cloud. For the sake of their customers' data, cloud service providers are required by law to maintain the highest levels of data security and privacy. Most cloud service providers employ a patchwork of security and privacy safeguards while industry standards are being created. The upshot is that customers of cloud services are unsure whether or not the security protections supplied by these services are enough to meet their specific security and compliance requirements. In this article, we have discussed the many threats cloud users face and emphasized the compliance frameworks and security processes that should be in place to minimize the risk. To categorize cloud security measures, risks, and compliance requirements, we developed an ontology. We needed to design software to identify the high-level policy rules that must be applied in response to each danger as part of this initiative. Additionally, the program provides a list of cloud service providers that now satisfy specific security requirements. Even if they aren't familiar with the underlying technology, cloud users may utilize our system to build up their security policy and identify compatible providers.

Cloud Security Requirements

2014 ◽  
Vol 1 (1) ◽  
pp. 1-5
Author(s):  
Poonam Rawat ◽  
◽  
Neha Rawat ◽  
Shikha Singh ◽  
Awantika . ◽  
...  
Keyword(s):  
Cloud Security ◽  
Security Requirements

Dynamic FCFS ACM Model for Risk Assessment on Real Time Unix File System

2015 ◽  
pp. 551-571
Author(s):  
Prashant Kumar Patra ◽  
Padma Lochan Pradhan
Keyword(s):  
Risk Assessment ◽  
Access Control ◽  
Security Policy ◽  
Security Requirements ◽  
Management Policy ◽  
Security Model ◽  
Distributed Environment ◽  
Web Portal ◽  
Proposed Model ◽  
The Right

The access control is a mechanism that a system grants, revoke the right to access the object. The subject and object can able to integrate, synchronize, communicate and optimize through read, write and execute over a UFS. The access control mechanism is the process of mediating each and every request to system resources, application and data maintained by a operating system and determining whether the request should be approve, created, granted or denied as per top management policy. The AC mechanism, management and decision is enforced by implementing regulations established by a security policy. The management has to investigate the basic concepts behind access control design and enforcement, point out different security requirements that may need to be taken into consideration. The authors have to formulate and implement several ACM on normalizing and optimizing them step by step, that have been highlighted in proposed model for development and production purpose. This research paper contributes to the development of an optimization model that aims and objective to determine the optimal cost, time and maximize the quality of services to be invested into security model and mechanisms deciding on the measure components of UFS. This model has to apply to ACM utilities over a Web portal server on object oriented and distributed environment. This ACM will be resolve the uncertainty, un-order, un formal and unset up (U^4) problems of web portal on right time and right place of any where & any time in around the globe. It will be more measurable and accountable for performance, fault tolerance, throughput, bench marking and risk assessment on any application.

Cloud Security Engineering Concept and Vision

2018 ◽  
pp. 93-101 ◽  
Author(s):  
Shadi Aljawarneh
Keyword(s):  
Cloud Security ◽  
Research Community ◽  
Security Requirements ◽  
Software System ◽  
Security Engineering ◽  
Security Issues ◽  
Requirements Specifications ◽  
Evolutionary Changes ◽  
World Environment ◽  
Engineering Concept

The research community found that a software system should be evolved once every few months to ensure it is adapted to the real-world environment. The system evolution requires regularly amendments that append, delete, or alter features. It also migrates or converts the software system from one operating platform to another. These amendments may result in requirements/ specifications that were satisfied in a previous release of a software system not being satisfied in the subsequent versions. As a result, software evolutionary changes violate security requirements, and then a system may become vulnerable to different kinds of attacks. In this paper, concepts and visions are presented to avoid/minimize the Cloud security issues.

Dynamic FCFS ACM Model for Risk Assessment on Real Time Unix File System

2013 ◽  
Vol 5 (4) ◽  
pp. 41-62
Author(s):  
Prashant Kumar Patra ◽  
Padma Lochan Pradhan
Keyword(s):  
Risk Assessment ◽  
Access Control ◽  
Security Policy ◽  
Security Requirements ◽  
Management Policy ◽  
Security Model ◽  
Distributed Environment ◽  
Web Portal ◽  
Proposed Model ◽  
The Right

The access control is a mechanism that a system grants, revoke the right to access the object. The subject and object can able to integrate, synchronize, communicate and optimize through read, write and execute over a UFS. The access control mechanism is the process of mediating each and every request to system resources, application and data maintained by a operating system and determining whether the request should be approve, created, granted or denied as per top management policy. The AC mechanism, management and decision is enforced by implementing regulations established by a security policy. The management has to investigate the basic concepts behind access control design and enforcement, point out different security requirements that may need to be taken into consideration. The authors have to formulate and implement several ACM on normalizing and optimizing them step by step, that have been highlighted in proposed model for development and production purpose. This research paper contributes to the development of an optimization model that aims and objective to determine the optimal cost, time and maximize the quality of services to be invested into security model and mechanisms deciding on the measure components of UFS. This model has to apply to ACM utilities over a Web portal server on object oriented and distributed environment. This ACM will be resolve the uncertainty, un-order, un formal and unset up (U^4) problems of web portal on right time and right place of any where & any time in around the globe. It will be more measurable and accountable for performance, fault tolerance, throughput, bench marking and risk assessment on any application.

Sign in / Sign up

Export Citation Format

Share Document