MISP: Model for IaaS Security and Privacy

Recent Trends in Intensive Computing Pub Date : 2021-12-01 DOI:10.3233/apc210222

IndraKumar Sahua, Manisha J Nenea

{"title":"MISP: Model for IaaS Security and Privacy","authors":"IndraKumar Sahua, Manisha J Nenea","doi":"10.3233/apc210222","DOIUrl":null,"url":null,"abstract":"Paradigm shift towards cloud computing offers plethora of advantages both for cloud users and Cloud Service Provider (CSP). For cloud users, it offers saving of cost, scaling of resources, pay per use, elastic and on-demand services. On the other hand, it offers centralized resource management and provisioning of operations, safety and security for CSP. By holding multiple virtual IT resources (CPUs, storage servers, network components and software) over the internet, Infrastructure-as-a-Service (IaaS) serves as fundamental layer for all other delivery models. Along with benefits of IaaS, there exists several security and privacy issues and threats to confidentiality, integrity, authentication, access control and availability. In this paper, detailed study of IaaS components, associated security and privacy issues are explored and counter measures for the same are determined. Furthermore, as a result of the study, Model for IaaS Security and Privacy (MISP) is proposed. The model presents a cubical structure and adds more features than the existing models to enhance the security and privacy of data and operations and guide security assessment for safer adoption by enterprises","PeriodicalId":429440,"journal":{"name":"Recent Trends in Intensive Computing","volume":"37 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Recent Trends in Intensive Computing","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.3233/apc210222","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

Paradigm shift towards cloud computing offers plethora of advantages both for cloud users and Cloud Service Provider (CSP). For cloud users, it offers saving of cost, scaling of resources, pay per use, elastic and on-demand services. On the other hand, it offers centralized resource management and provisioning of operations, safety and security for CSP. By holding multiple virtual IT resources (CPUs, storage servers, network components and software) over the internet, Infrastructure-as-a-Service (IaaS) serves as fundamental layer for all other delivery models. Along with benefits of IaaS, there exists several security and privacy issues and threats to confidentiality, integrity, authentication, access control and availability. In this paper, detailed study of IaaS components, associated security and privacy issues are explored and counter measures for the same are determined. Furthermore, as a result of the study, Model for IaaS Security and Privacy (MISP) is proposed. The model presents a cubical structure and adds more features than the existing models to enhance the security and privacy of data and operations and guide security assessment for safer adoption by enterprises

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

MISP: IaaS安全和隐私模型

向云计算的范式转变为云用户和云服务提供商(CSP)提供了大量的优势。对于云用户来说，它可以节省成本、扩展资源、按次付费、弹性和按需服务。另一方面，它为CSP提供集中的资源管理和运营、安全和保障。通过在互联网上持有多个虚拟IT资源(cpu、存储服务器、网络组件和软件)，基础设施即服务(IaaS)作为所有其他交付模型的基础层。除了IaaS的好处之外，还存在一些安全和隐私问题，以及对机密性、完整性、身份验证、访问控制和可用性的威胁。本文对IaaS组件进行了详细的研究，探讨了相关的安全和隐私问题，并确定了相应的对策。在此基础上，提出了IaaS安全与隐私模型(MISP)。该模型呈现立方体结构，比现有模型增加了更多的功能，增强了数据和操作的安全性和隐私性，并指导安全评估，供企业更安全地采用

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

Recent Trends in Intensive Computing

自引率

0.00%

发文量