evidence for accountable cloud computing services
play

Evidence for Accountable Cloud Computing Services Aryan - PowerPoint PPT Presentation

Dec 04, 2023 •419 likes •542 views

Evidence for Accountable Cloud Computing Services Aryan Taherimonfared, Tomasz Thomas Rbsamen, Christoph Wiktor Wlodarczyk, Chunming Reich Rong Hochschule Furtwangen Center for IP-based Service University HFU Innovation, TN-IDE,

  1. Evidence for Accountable Cloud Computing Services Aryan Taherimonfared, Tomasz Thomas Rübsamen, Christoph Wiktor Wlodarczyk, Chunming Reich Rong Hochschule Furtwangen Center for IP-based Service University HFU Innovation, TN-IDE, University of Stavanger

  2. Agenda 1. Introduction 2. Accountability and evidence 3. What should be evidence? 4. Where is evidence collected? 5. Challenges 6. Summary 2 6/21/2013 Evidence for Accountable Cloud Computing Services

  3. Introduction • Transparency and control issues arise, when data is stored remotely in the cloud • Lost control over physical servers/networks • Service provision/de-provision • Tenant isolation • Data processing/movement • Adding key terms to cloud SLAs is not enough • Processes and mechanisms must be developed to monitor and audit these terms • Providers must provide evidence • Cloud customer must be allowed to verify, that his data is being stored and maintained correctly in the cloud, and that his policies are adhered to • Evidence collection shall capture, integrate and process logs, (data) policies and context • Showing what happens in the cloud and providing evidence for it can address transparency and accountability issues 3 6/21/2013 Evidence for Accountable Cloud Computing Services

  4. Accountability and Evidence I • Evidence may be derived from different sources, events and architectural layers • Mapping of evidence to accountability contracts/SLAs and other policy requirements • No efficient mechanisms to gather convincing evidence from verified log data • No incentive for providers to publish log information • How to make evidence gathering mechanisms compatible and interoperable? 4 6/21/2013 Evidence for Accountable Cloud Computing Services

  5. Accountability and Evidence II • Collect evidence to support (external) audits and verification • Evidence is provided to (automated) audits for fault detection • Accountability attributes are assured by evidence • Attributability: a property of an observation can be assigned to an actor • Observability: how well internal actions of a system can be described by observing the external output • Assurance: Provision of evidence to proof an incident has happened / not happened • Verifiability: An aspect of a contractual relationship can be observed through evidence 5 6/21/2013 Evidence for Accountable Cloud Computing Services

  6. Accountability and Evidence IV 6 6/21/2013 Evidence for Accountable Cloud Computing Services

  7. What should be evidence? • Information about data traveling in the cloud (where, juristiction) • Information about data access (by whom and when, role, identity, purpose, time) • Information about processes (data lifecycle events) • Logging data from involved components/services 7 6/21/2013 Evidence for Accountable Cloud Computing Services

  8. Where is Evidence Collected - Gathering Points Guest Usage Guest SaaS App Guest PaaS OS IaaS Hypervisor CMS Host OS Hardware Network 8 6/21/2013 Evidence for Accountable Cloud Computing Services

  9. Challenges of Evidence • Large amounts of data (Big Data?) • Various data formats • How can evidence be trusted (certification, singing, tamper-evident recording) • Retention-time of evidence (laws may apply) • Interoperability of evidence collection in multi-provider scenarios (cloud provider accountability chains) • Multi-tenancy in monitoring tools and devices 9 6/21/2013 Evidence for Accountable Cloud Computing Services

  10. Summary • Build an evidence base for collected information to assure accountability and support audits • Evidence will be collected at many architectural layers in the cloud stack • Many challenges to address 10 6/21/2013 Evidence for Accountable Cloud Computing Services

  11. Thank You for Your Attention! 11 6/21/2013 Evidence for Accountable Cloud Computing Services

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

What is the Cloud? Simply put, Cloud Computing is the delivery of computing services,

What is the Cloud? Simply put, Cloud Computing is the delivery of computing services,

What is the Cloud? Simply put, Cloud Computing is the delivery of computing services, including Servers, Storage, Databases, Networking, Software, Analytics and Intelligence over the Internet (The Cloud) to offer faster innovation,

338 views • 13 slides
Cloud Computing & Cloud Models Cloud Models Topics Defining cloud computing

Cloud Computing & Cloud Models Cloud Models Topics Defining cloud computing

Cloud Computing & Cloud Models Cloud Models Topics Defining cloud computing Understanding: Distributed Application Design Resource Management Automation Virtualized Computing Environments High-performance Computing

1.02k views • 49 slides
Old Man Yells at Cloud Computing Presented by: Terry Labach Information Security Services, IST

Old Man Yells at Cloud Computing Presented by: Terry Labach Information Security Services, IST

Old Man Yells at Cloud Computing Presented by: Terry Labach Information Security Services, IST December 4, 2019 Old Man Yells at Cloud Computing Old Man Yells at Cloud Computing PAGE 2 The plan for today Whats all this cloud

920 views • 39 slides
Terminology Chapter 1 Cloud Computing Advantages and Disadvantages

Terminology Chapter 1 Cloud Computing Advantages and Disadvantages

Cloud Computing Concepts, Models, and Terminology Chapter 1 Cloud Computing Advantages and Disadvantages https://www.youtube.com/watch?v=ojDnOyIQeJU Topics Cloud Service Models Cloud Delivery Models and Services Cloud

641 views • 28 slides
Cloud Computing and Financial Mobile Financial Services Services for The Poor: Promise and

Cloud Computing and Financial Mobile Financial Services Services for The Poor: Promise and

September 16, 2011 Cloud Computing and Financial Mobile Financial Services Services for The Poor: Promise and Perils of a New Computing Paradigm microlinks.kdid. org/events Bryan Barnett Independent Consultant Participate during the seminar

831 views • 27 slides
cloud computing Ridwaan Boda Director | Technology, Media and Telecommunications Overview

cloud computing Ridwaan Boda Director | Technology, Media and Telecommunications Overview

cloud computing Ridwaan Boda Director | Technology, Media and Telecommunications Overview What is cloud computing? Types of cloud computing services Benefits of cloud computing Key risks associated with cloud computing

553 views • 37 slides
A View of Cloud Computing Summary by Nikhil Buduma Cloud Computing Definition Refers to: 1)

A View of Cloud Computing Summary by Nikhil Buduma Cloud Computing Definition Refers to: 1)

A View of Cloud Computing Summary by Nikhil Buduma Cloud Computing Definition Refers to: 1) applications delivered over the Internet 2) Hardware and systems software in data centers that provide these services The composite of SaaS

551 views • 16 slides
An Introduction to Cloud Computing with OpenNebula Carlos Martn OpenNebula Project Engineer

An Introduction to Cloud Computing with OpenNebula Carlos Martn OpenNebula Project Engineer

OpenNebula Cloud Management Platform > Innovative Open Source Technologies and Professional Services to Build your Enterprise-ready Cloud Computing Environment An Introduction to Cloud Computing with OpenNebula Carlos Martn OpenNebula

1.52k views • 18 slides
The MNM-CloudLab -- Ideas, Concepts & Implemenation 17.7. 22.7. 2011 Nils gentschen Felde

The MNM-CloudLab -- Ideas, Concepts & Implemenation 17.7. 22.7. 2011 Nils gentschen Felde

DEUTSCH-FRANZSISCHE SOMMERUNIVERSITT UNIVERSIT DT FRANCO-ALLEMANDE FR NACHWUCHSWISSENSCHAFTLER 2011 POUR JEUNES CHERCHEURS 2011 CLOUD COMPUTING : CLOUD COMPUTING : CLOUD COMPUTING : CLOUD COMPUTING : DFIS ET OPPORTUNITS

965 views • 50 slides
Building and Delivering Next Generation Developer Services Using Private Cloud Infrastructure

Building and Delivering Next Generation Developer Services Using Private Cloud Infrastructure

Building and Delivering Next Generation Developer Services Using Private Cloud Infrastructure Chris Pinkham CEO, Nimbula 19 June 2012 Cloud Computing Grid Computing Grid-Cloud Computing Nimbula Vision: One Cloud

428 views • 18 slides
Announcements R3 Final Exam Cloud Introduction SWEN-343 Cloud Computing Services SaaS:

Announcements R3 Final Exam Cloud Introduction SWEN-343 Cloud Computing Services SaaS:

Announcements R3 Final Exam Cloud Introduction SWEN-343 Cloud Computing Services SaaS: Software as a service Apps through browser PaaS: Platforms as a service Delivery of a computing platform for custom software development as a service

436 views • 12 slides
CLOUD COMPUTING Overview of Use, Benefits, and Risks of Commercial Cloud Computing Commercial

CLOUD COMPUTING Overview of Use, Benefits, and Risks of Commercial Cloud Computing Commercial

CLOUD COMPUTING Overview of Use, Benefits, and Risks of Commercial Cloud Computing Commercial Cloud Computing PRESENTED TO HOUSE COMMITTEE ON GOVERNMENT TRANSPARENCY & OPERATION LEGISLATIVE BUDGET BOARD STAFF April 5, 2016 Statement of

373 views • 8 slides
Cloud Computing Pat West and Colin Gillette SSE 3200: Analysis and Design of Web-Based Services

Cloud Computing Pat West and Colin Gillette SSE 3200: Analysis and Design of Web-Based Services

Cloud Computing Pat West and Colin Gillette SSE 3200: Analysis and Design of Web-Based Services "Content-Centered Collaboration Spaces in the Cloud" by:John S. Erickson et al. IEEE Internet Computing, September/October 2009, pages

477 views • 15 slides
Chapter 3 Cloud Infrastructure Cloud Computing: Theory and Practice. 1 Dan C. Marinescu

Chapter 3 Cloud Infrastructure Cloud Computing: Theory and Practice. 1 Dan C. Marinescu

Chapter 3 Cloud Infrastructure Cloud Computing: Theory and Practice. 1 Dan C. Marinescu Chapter 3 Contents IaaS services from Amazon. Regions and availability zones for Amazon Web Services. Instances attributes and cost.

3.37k views • 45 slides
HPC Cloud Interactive User support Floris Sluiter Project leader SARA computing &

HPC Cloud Interactive User support Floris Sluiter Project leader SARA computing &

HPC Cloud Interactive User support Floris Sluiter Project leader SARA computing & networking services SARA Project involvements HPC Cloud Philosophy HPC Cloud Computing: Self Service Dynamically Scalable Computing Facilities Cloud

491 views • 17 slides
Cloud Computing Tom Hendrickx RESEARCH QUESTION Define Cloud Computing in context of the higher

Cloud Computing Tom Hendrickx RESEARCH QUESTION Define Cloud Computing in context of the higher

Cloud Computing Tom Hendrickx RESEARCH QUESTION Define Cloud Computing in context of the higher education and research community in general and of an NREN in specific. CLOUD COMPUTING SaaS PaaS STaaS IaaS Utility GRID computing

458 views • 9 slides
COMP 6611B: Topics on Cloud Computing and Data Analytics Systems Wei Wang Department of

COMP 6611B: Topics on Cloud Computing and Data Analytics Systems Wei Wang Department of

COMP 6611B: Topics on Cloud Computing and Data Analytics Systems Wei Wang Department of Computer Science & Engineering HKUST Fall 2015 Data, data, data! Large Hadron Collider generates 40 TB data Crawls 20B web per second pages a

1.05k views • 44 slides
Secure Outsourcing Computation Li Xiong Outline Cloud computing Computing on encrypted

Secure Outsourcing Computation Li Xiong Outline Cloud computing Computing on encrypted

CS573 Data Privacy and Security Secure Outsourcing Computation Li Xiong Outline Cloud computing Computing on encrypted data Homomorphic encryption What is Cloud Computing ? Cloud computing Type of computing that relies on sharing

1.29k views • 62 slides
A Brief History of the Cloud Dan Kohn, Executive Director A B r i e f H i s t o r y o f

A Brief History of the Cloud Dan Kohn, Executive Director A B r i e f H i s t o r y o f

A Brief History of the Cloud Dan Kohn, Executive Director A B r i e f H i s t o r y o f t h e C l o u d | Cloud Native Computing Foundation Founded December 2015 Non-profit, part of the Linux Foundation Initial projects

479 views • 28 slides
E-Commerce in the Cloud Featuring David S. Linthicum CTO, Founder Blue Mountain Labs

E-Commerce in the Cloud Featuring David S. Linthicum CTO, Founder Blue Mountain Labs

E-Commerce in the Cloud Featuring David S. Linthicum CTO, Founder Blue Mountain Labs David@bluemountainlabs.com Brought to you by: Sponsored by: THREE LAYERS OF CLOUD COMPUTING Software as a Service (SaaS) Finished applications that you

207 views • 19 slides
Cloud Computing for on-Demand Resource Provisioning Distributed Systems Architecture Research

Cloud Computing for on-Demand Resource Provisioning Distributed Systems Architecture Research

7th NRENs and Grids Workshop Trinity College, Dublin, September 2, 2008 Cloud Computing for on-Demand Resource Provisioning Distributed Systems Architecture Research Group Universidad Complutense de Madrid 1/23 Objectives Show the benefits

354 views • 23 slides
Cloud Computing for the Humanities Graham Wilcock University of Helsinki What is Cloud

Cloud Computing for the Humanities Graham Wilcock University of Helsinki What is Cloud

Cloud Computing for the Humanities Graham Wilcock University of Helsinki What is Cloud Computing? Run your app in the cloud Using somebody elses computers Computing resources on-demand Like electricity, or pizza delivery

508 views • 28 slides
Selected Topics in Cloud Computing Marko Vukoli Distributed Systems and Cloud Computing This

Selected Topics in Cloud Computing Marko Vukoli Distributed Systems and Cloud Computing This

Selected Topics in Cloud Computing Marko Vukoli Distributed Systems and Cloud Computing This part of the course Sample distributed systems that power clouds Amazon Dynamo Apache Cassandra Apache Zookeeper To complement HDFS,

961 views • 60 slides
Intrusion Detection for Grid and Cloud Computing (Slides) Article January 2010 CITATION READS

Intrusion Detection for Grid and Cloud Computing (Slides) Article January 2010 CITATION READS

See discussions, stats, and author profiles for this publication at: https://www.researchgate.net/publication/256497819 Intrusion Detection for Grid and Cloud Computing (Slides) Article January 2010 CITATION READS 1 14,336 4 authors ,

286 views • 17 slides

More recommend