基于云的软件迁移过程的定量风险评估

IF 1.5 4区 计算机科学 Q3 COMPUTER SCIENCE, SOFTWARE ENGINEERING
Wen Zeng, Wenjing Yan, Emily Simpson, Carlos Molina–Jimenez
{"title":"基于云的软件迁移过程的定量风险评估","authors":"Wen Zeng,&nbsp;Wenjing Yan,&nbsp;Emily Simpson,&nbsp;Carlos Molina–Jimenez","doi":"10.1002/cpe.70009","DOIUrl":null,"url":null,"abstract":"<div>\n \n <p>Cloud migration is the process of moving data, files, and applications to a cloud computing environment. With the success of cloud computing, cloud migration is becoming fashionable. However, different cloud service providers have their own migration processes as currently, no standard cloud-based software migration procedure exists to guide how to move digital resources to the cloud. Moreover, there are serious security risks associated with cloud migration processes that threaten business processes that have not been systematically analyzed. In addition, no formal models and security metrics exist to evaluate and analyze these risks. Therefore, it is necessary to develop a generic approach with real customer use cases. In this study, firstly, we will develop a general cloud-based software migration procedure to help organizations migrate their digital resources to cloud platforms. Secondly, we will develop a risk assessment model for analyzing migration processes. Thirdly, on the basis of this risk assessment model, we use stochastic colored Petri nets to describe the dynamic behavior of the model, thus the concurrency, synchronization, mutual exclusion, and conflicts can be analyzed to assess the risks of migration automatically. Fourthly, security metrics will be defined to quantitatively evaluate the risks and vulnerabilities of the organizations. We believe that this study can help chief information officers identify which risk will have more opportunity to occur during the migration processes and make informed decisions about software migration and security.</p>\n </div>","PeriodicalId":55214,"journal":{"name":"Concurrency and Computation-Practice & Experience","volume":"37 6-8","pages":""},"PeriodicalIF":1.5000,"publicationDate":"2025-03-12","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Quantitative Risk Assessment for Cloud-Based Software Migration Processes\",\"authors\":\"Wen Zeng,&nbsp;Wenjing Yan,&nbsp;Emily Simpson,&nbsp;Carlos Molina–Jimenez\",\"doi\":\"10.1002/cpe.70009\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"<div>\\n \\n <p>Cloud migration is the process of moving data, files, and applications to a cloud computing environment. With the success of cloud computing, cloud migration is becoming fashionable. However, different cloud service providers have their own migration processes as currently, no standard cloud-based software migration procedure exists to guide how to move digital resources to the cloud. Moreover, there are serious security risks associated with cloud migration processes that threaten business processes that have not been systematically analyzed. In addition, no formal models and security metrics exist to evaluate and analyze these risks. Therefore, it is necessary to develop a generic approach with real customer use cases. In this study, firstly, we will develop a general cloud-based software migration procedure to help organizations migrate their digital resources to cloud platforms. Secondly, we will develop a risk assessment model for analyzing migration processes. Thirdly, on the basis of this risk assessment model, we use stochastic colored Petri nets to describe the dynamic behavior of the model, thus the concurrency, synchronization, mutual exclusion, and conflicts can be analyzed to assess the risks of migration automatically. Fourthly, security metrics will be defined to quantitatively evaluate the risks and vulnerabilities of the organizations. We believe that this study can help chief information officers identify which risk will have more opportunity to occur during the migration processes and make informed decisions about software migration and security.</p>\\n </div>\",\"PeriodicalId\":55214,\"journal\":{\"name\":\"Concurrency and Computation-Practice & Experience\",\"volume\":\"37 6-8\",\"pages\":\"\"},\"PeriodicalIF\":1.5000,\"publicationDate\":\"2025-03-12\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Concurrency and Computation-Practice & Experience\",\"FirstCategoryId\":\"94\",\"ListUrlMain\":\"https://onlinelibrary.wiley.com/doi/10.1002/cpe.70009\",\"RegionNum\":4,\"RegionCategory\":\"计算机科学\",\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q3\",\"JCRName\":\"COMPUTER SCIENCE, SOFTWARE ENGINEERING\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Concurrency and Computation-Practice & Experience","FirstCategoryId":"94","ListUrlMain":"https://onlinelibrary.wiley.com/doi/10.1002/cpe.70009","RegionNum":4,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q3","JCRName":"COMPUTER SCIENCE, SOFTWARE ENGINEERING","Score":null,"Total":0}
引用次数: 0

摘要

云迁移是将数据、文件和应用程序迁移到云计算环境的过程。随着云计算的成功,云迁移正在成为一种时尚。然而,不同的云服务提供商有自己的迁移流程,因为目前还没有标准的基于云的软件迁移流程来指导如何将数字资源迁移到云中。此外,存在与云迁移过程相关的严重安全风险,这些风险会威胁到尚未系统分析的业务流程。此外,没有正式的模型和安全度量来评估和分析这些风险。因此,有必要开发一种具有真实客户用例的通用方法。在本研究中,首先,我们将开发一个通用的基于云的软件迁移程序,以帮助组织将其数字资源迁移到云平台。其次,我们将开发一个风险评估模型来分析迁移过程。第三,在此风险评估模型的基础上,利用随机彩色Petri网描述模型的动态行为,从而对迁移的并发性、同步性、互斥性和冲突性进行分析,自动评估迁移的风险。第四,将定义安全度量标准,以定量评估组织的风险和漏洞。我们相信这项研究可以帮助首席信息官识别在迁移过程中哪些风险更有可能发生,并对软件迁移和安全性做出明智的决定。
本文章由计算机程序翻译,如有差异,请以英文原文为准。
Quantitative Risk Assessment for Cloud-Based Software Migration Processes

Cloud migration is the process of moving data, files, and applications to a cloud computing environment. With the success of cloud computing, cloud migration is becoming fashionable. However, different cloud service providers have their own migration processes as currently, no standard cloud-based software migration procedure exists to guide how to move digital resources to the cloud. Moreover, there are serious security risks associated with cloud migration processes that threaten business processes that have not been systematically analyzed. In addition, no formal models and security metrics exist to evaluate and analyze these risks. Therefore, it is necessary to develop a generic approach with real customer use cases. In this study, firstly, we will develop a general cloud-based software migration procedure to help organizations migrate their digital resources to cloud platforms. Secondly, we will develop a risk assessment model for analyzing migration processes. Thirdly, on the basis of this risk assessment model, we use stochastic colored Petri nets to describe the dynamic behavior of the model, thus the concurrency, synchronization, mutual exclusion, and conflicts can be analyzed to assess the risks of migration automatically. Fourthly, security metrics will be defined to quantitatively evaluate the risks and vulnerabilities of the organizations. We believe that this study can help chief information officers identify which risk will have more opportunity to occur during the migration processes and make informed decisions about software migration and security.

求助全文
通过发布文献求助,成功后即可免费获取论文全文。 去求助
来源期刊
Concurrency and Computation-Practice & Experience
Concurrency and Computation-Practice & Experience 工程技术-计算机:理论方法
CiteScore
5.00
自引率
10.00%
发文量
664
审稿时长
9.6 months
期刊介绍: Concurrency and Computation: Practice and Experience (CCPE) publishes high-quality, original research papers, and authoritative research review papers, in the overlapping fields of: Parallel and distributed computing; High-performance computing; Computational and data science; Artificial intelligence and machine learning; Big data applications, algorithms, and systems; Network science; Ontologies and semantics; Security and privacy; Cloud/edge/fog computing; Green computing; and Quantum computing.
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
确定
请完成安全验证×
copy
已复制链接
快去分享给好友吧!
我知道了
右上角分享
点击右上角分享
0
联系我们:info@booksci.cn Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。 Copyright © 2023 布克学术 All rights reserved.
京ICP备2023020795号-1
ghs 京公网安备 11010802042870号
Book学术文献互助
Book学术文献互助群
群 号:481959085
Book学术官方微信