发布求助
文献互助 智能选刊 最新文献

2011 1st International Workshop on Securing Services on the Cloud (IWSSC)最新文献

筛选
英文 中文
An architecture for certification-aware service discovery 用于认证感知服务发现的体系结构
2011 1st International Workshop on Securing Services on the Cloud (IWSSC) Pub Date : 2011-10-20 DOI: 10.1109/IWSSCLOUD.2011.6049020
M. Bezzi, A. Sabetta, G. Spanoudakis
{"title":"An architecture for certification-aware service discovery","authors":"M. Bezzi, A. Sabetta, G. Spanoudakis","doi":"10.1109/IWSSCLOUD.2011.6049020","DOIUrl":"https://doi.org/10.1109/IWSSCLOUD.2011.6049020","url":null,"abstract":"Service-orientation is an emerging paradigm for building complex systems based on loosely coupled components, deployed and consumed over the network. Despite the original intent of the paradigm, its current instantiations are limited to a single trust domain (e.g., a single organization) One of the main reasons for this is the trust gap that normally arises when software services, offered by previously unknown providers, are to be selected at run-time, without any human intervention. The idea of machine-readable security certificates (called asserts) paves the way to automated reasoning about security properties of services. Similarly to current security certification schemes, the assessment of the security properties of a service is delegated to an independent third party (certification authority), who issues a corresponding assert, bound to the service. Building on the assert concept, this paper describes our proposal for a modular architecture to realise a certification-aware service discovery framework. The architecture supports the discovery of single services based on certified security properties, as well as the dynamic synthesis of service compositions that satisfy the required security properties.","PeriodicalId":396741,"journal":{"name":"2011 1st International Workshop on Securing Services on the Cloud (IWSSC)","volume":"53 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2011-10-20","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"128333585","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 11
Security and trust in Cloud scenarios 云场景中的安全性和信任
2011 1st International Workshop on Securing Services on the Cloud (IWSSC) Pub Date : 2011-10-20 DOI: 10.1109/IWSSCLOUD.2011.6049021
M. Fugini, G. Hadjichristofi
{"title":"Security and trust in Cloud scenarios","authors":"M. Fugini, G. Hadjichristofi","doi":"10.1109/IWSSCLOUD.2011.6049021","DOIUrl":"https://doi.org/10.1109/IWSSCLOUD.2011.6049021","url":null,"abstract":"Nowadays Cloud computing has introduced a new paradigm in distributed services, enabling the provision of services or computational resources to remote entities with no need to have them in house. In this paper, we consider two real life scenarios; 1) risk management in work areas, and 2) the execution of scientific experiments in cooperation among various computation nodes. We investigate how we can leverage Cloud capabilities and extend the aforementioned scenarios to the Cloud. We define the role of the Cloud in these scenarios and identify new dynamics between the Cloud and the services. Through these extensions, we identify security issues and vulnerabilities that need to be addressed. We describe some preliminary directions for security on the Cloud.","PeriodicalId":396741,"journal":{"name":"2011 1st International Workshop on Securing Services on the Cloud (IWSSC)","volume":"418 ","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2011-10-20","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"120866892","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 5
Secure and efficient multitenant database for an ad hoc cloud 用于临时云的安全高效的多租户数据库
2011 1st International Workshop on Securing Services on the Cloud (IWSSC) Pub Date : 2011-10-20 DOI: 10.1109/IWSSCLOUD.2011.6049024
S. Pippal, Vishu Sharma, Shakti Mishra, D. S. Kushwaha
{"title":"Secure and efficient multitenant database for an ad hoc cloud","authors":"S. Pippal, Vishu Sharma, Shakti Mishra, D. S. Kushwaha","doi":"10.1109/IWSSCLOUD.2011.6049024","DOIUrl":"https://doi.org/10.1109/IWSSCLOUD.2011.6049024","url":null,"abstract":"Effectively utilizing, unlocking and harnessing the data is the key to the success of organizations in the time to come. Although the software development and delivery technologies are matured, yet people are forced to start from scratch, when they encounter a new project, thus inducing cost and delay. In the proposed solution Organizations can collaborate to create a Data-center, that doesn't harm their existence or profitability. At the same time, these organizations can compete by spreading to those locations where they carry certain edge over others. This is where an ad-hoc cloud helps to venture into remote areas. We propose multitenancy for database in ad hoc cloud that helps multiple organizations to collaborate and yet compete with each other. In our proposed approach, shared database shared schema approach has been proposed that offers larger number of tenants per database server. Authentication and authorization are prime requirements when dealing with multitenancy. Kerberos authentication protocol is used on the top of multitenant database for participating educational institution.","PeriodicalId":396741,"journal":{"name":"2011 1st International Workshop on Securing Services on the Cloud (IWSSC)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2011-10-20","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"132405701","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 10
On the effectiveness of XML Schema validation for countering XML Signature Wrapping attacks XML模式验证对抗XML签名包装攻击的有效性研究
2011 1st International Workshop on Securing Services on the Cloud (IWSSC) Pub Date : 2011-10-20 DOI: 10.1109/IWSSCLOUD.2011.6049019
Meiko Jensen, Christopher Meyer, Juraj Somorovsky, Jörg Schwenk
{"title":"On the effectiveness of XML Schema validation for countering XML Signature Wrapping attacks","authors":"Meiko Jensen, Christopher Meyer, Juraj Somorovsky, Jörg Schwenk","doi":"10.1109/IWSSCLOUD.2011.6049019","DOIUrl":"https://doi.org/10.1109/IWSSCLOUD.2011.6049019","url":null,"abstract":"In the context of security of Web Services, the XML Signature Wrapping attack technique has lately received increasing attention. Following a broad range of real-world exploits, general interest in applicable countermeasures rises. However, few approaches for countering these attacks have been investigated closely enough to make any claims about their effectiveness. In this paper, we analyze the effectiveness of the specific countermeasure of XML Schema validation in terms of fending Signature Wrapping attacks. We investigate the problems of XML Schema validation for Web Services messages, and discuss the approach of Schema Hardening, a technique for strengthening XML Schema declarations. We conclude that XML Schema validation with a hardened XML Schema is capable of fending XML Signature Wrapping attacks, but bears some pitfalls and disadvantages as well.","PeriodicalId":396741,"journal":{"name":"2011 1st International Workshop on Securing Services on the Cloud (IWSSC)","volume":"106 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2011-10-20","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"128138527","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 33
Dynamic security monitoring for Virtualized Environments in Cloud computing 云计算虚拟化环境的动态安全监控
2011 1st International Workshop on Securing Services on the Cloud (IWSSC) Pub Date : 2011-10-20 DOI: 10.1109/IWSSCLOUD.2011.6049018
A. Maña, A. Muñoz, Javier González
{"title":"Dynamic security monitoring for Virtualized Environments in Cloud computing","authors":"A. Maña, A. Muñoz, Javier González","doi":"10.1109/IWSSCLOUD.2011.6049018","DOIUrl":"https://doi.org/10.1109/IWSSCLOUD.2011.6049018","url":null,"abstract":"An architecture for dynamic security monitoring and enforcement for client software running in Virtualized Environments for Cloud computing is presented. Monitoring mechanisms check a set of policy-defined conditions at runtime in order to detect threats or anomalous behaviour. Enforcement is achievable by using secure software execution methods that comply with the defined policies. The presented architecture allows for context adaptation of the defined policies by using a new event-sequence language. Such automatic policy runtime enforcement is crucial to achieve proper security in virtualized platforms for cloud computing.","PeriodicalId":396741,"journal":{"name":"2011 1st International Workshop on Securing Services on the Cloud (IWSSC)","volume":"65 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2011-10-20","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"121661096","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 9
Using in-memory encrypted databases on the cloud 在云上使用内存加密数据库
2011 1st International Workshop on Securing Services on the Cloud (IWSSC) Pub Date : 2011-09-16 DOI: 10.1109/IWSSCLOUD.2011.6049022
Francesco Pagano, Davide Pagano
{"title":"Using in-memory encrypted databases on the cloud","authors":"Francesco Pagano, Davide Pagano","doi":"10.1109/IWSSCLOUD.2011.6049022","DOIUrl":"https://doi.org/10.1109/IWSSCLOUD.2011.6049022","url":null,"abstract":"Storing data in the cloud poses a number of privacy issues. A way to handle them is supporting data replication and distribution on the cloud via a local, centrally synchronized storage. In this paper we propose to use an in-memory RDBMS with row-level data encryption for granting and revoking access rights to distributed data. This type of solution is rarely adopted in conventional RDBMSs because it requires several complex steps. In this paper we focus on implementation and benchmarking of a test system, which shows that our simple yet effective solution overcomes most of the problems.","PeriodicalId":396741,"journal":{"name":"2011 1st International Workshop on Securing Services on the Cloud (IWSSC)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2011-09-16","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"128208169","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 30
0
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
现在去查看 取消
×
提示
确定
请完成安全验证×
相关产品
×
本文献相关产品
联系我们:info@booksci.cn Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。 Copyright © 2023 布克学术 All rights reserved.
京ICP备2023020795号-1
ghs 京公网安备 11010802042870号
Book学术文献互助
Book学术文献互助群
群 号:481959085
Book学术官方微信