评估在公共平台即服务云环境中实现的安全机制案例研究:Windows Azure

8th International Conference for Internet Technology and Secured Transactions (ICITST-2013) Pub Date : 2013-12-01 DOI:10.1109/ICITST.2013.6750183

A. Akinbi, E. Pereira, Chris Beaumont

{"title":"评估在公共平台即服务云环境中实现的安全机制案例研究:Windows Azure","authors":"A. Akinbi, E. Pereira, Chris Beaumont","doi":"10.1109/ICITST.2013.6750183","DOIUrl":null,"url":null,"abstract":"The security risks of cloud computing and ambiguity of security mechanisms implemented on an on-demand cloud service like Platform-as-a-Service (PaaS), continues to raise concerns in cloud consumers. These risks clearly affect the adoption of the potentials offered by provisioning of computer resources of this scale. Examining an on-demand Platform-as-a-Service public cloud environment, this paper focuses on the security controls and mechanisms implemented on each component of Windows Azure. Using a security framework which consists of industry standard controls to evaluate its security offerings, this study attempts to understand how its security controls and implementations meet the needs of consumers in identity management, access management and virtualization security in the development of web based applications hosted on the cloud.","PeriodicalId":246884,"journal":{"name":"8th International Conference for Internet Technology and Secured Transactions (ICITST-2013)","volume":"247 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2013-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"9","resultStr":"{\"title\":\"Evaluating security mechanisms implemented on public Platform-as-a-Service cloud environments case study: Windows Azure\",\"authors\":\"A. Akinbi, E. Pereira, Chris Beaumont\",\"doi\":\"10.1109/ICITST.2013.6750183\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The security risks of cloud computing and ambiguity of security mechanisms implemented on an on-demand cloud service like Platform-as-a-Service (PaaS), continues to raise concerns in cloud consumers. These risks clearly affect the adoption of the potentials offered by provisioning of computer resources of this scale. Examining an on-demand Platform-as-a-Service public cloud environment, this paper focuses on the security controls and mechanisms implemented on each component of Windows Azure. Using a security framework which consists of industry standard controls to evaluate its security offerings, this study attempts to understand how its security controls and implementations meet the needs of consumers in identity management, access management and virtualization security in the development of web based applications hosted on the cloud.\",\"PeriodicalId\":246884,\"journal\":{\"name\":\"8th International Conference for Internet Technology and Secured Transactions (ICITST-2013)\",\"volume\":\"247 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2013-12-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"9\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"8th International Conference for Internet Technology and Secured Transactions (ICITST-2013)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICITST.2013.6750183\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"8th International Conference for Internet Technology and Secured Transactions (ICITST-2013)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICITST.2013.6750183","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 9

摘要

云计算的安全风险和在按需云服务(如平台即服务(PaaS))上实现的安全机制的模糊性继续引起云消费者的关注。这些风险显然影响到利用提供这种规模的计算机资源所提供的潜力。本文考察了一个按需平台即服务的公共云环境，重点介绍了在Windows Azure的每个组件上实现的安全控制和机制。使用由行业标准控制组成的安全框架来评估其安全产品，本研究试图了解其安全控制和实现如何满足消费者在身份管理、访问管理和虚拟化安全方面的需求，以开发托管在云上的基于web的应用程序。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Evaluating security mechanisms implemented on public Platform-as-a-Service cloud environments case study: Windows Azure

The security risks of cloud computing and ambiguity of security mechanisms implemented on an on-demand cloud service like Platform-as-a-Service (PaaS), continues to raise concerns in cloud consumers. These risks clearly affect the adoption of the potentials offered by provisioning of computer resources of this scale. Examining an on-demand Platform-as-a-Service public cloud environment, this paper focuses on the security controls and mechanisms implemented on each component of Windows Azure. Using a security framework which consists of industry standard controls to evaluate its security offerings, this study attempts to understand how its security controls and implementations meet the needs of consumers in identity management, access management and virtualization security in the development of web based applications hosted on the cloud.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

8th International Conference for Internet Technology and Secured Transactions (ICITST-2013)

自引率

0.00%

发文量