Upload File

glitches in cloud trust protocol architecture and trust evaluation

  • Home
  • Technology
  • Glitches in cloud trust protocol architecture and trust evaluation
2
Glitches in Cloud Trust Protocol Architecture and Trust Evaluation By Sucheta Mandal Description Now a day’s cloud technology is becoming the most used architecture in the industry. But according to recent surveys done by CSA (Cloud Security Alliance), still 73% of survey participant hold them back to use cloud technology because of its data vulnerability. Reliability of cloud service providers and transparency is really crucial to the cloud business. For developing trust over consumers and providers several approaches have been introduced. One of them is Cloud Trust Protocol, a set of rules and process to establish digital trust among cloud users. [1] Cloud trust protocol is built on transparency, dynamic request, response based on trust value. But still there are many more flaws, which are needed to be improved to make CTP a vastly used protocol in the industry. Cloud trust management base, central storage location, lacks encryption and proper automation. This module is responsible for storing user authentication data, request- response history. [5][6] But it is accessible for all cloud consumers, who are using this same protocol. If one of those consumers able to hacks those data, then this could prompt an immense information rupture. Hence this component should be divided into different domain per consumer and every domain would be encrypted with a private key. On the other hand entry and management in this section should be automated, otherwise in manual processes this storage location might be exposed to wrong hands. More robust trust value calculation algorithm should be included for deciding probable threat and trustworthiness of both service providers and consumers. Trust evaluation is two way mechanism. It helps consumer to determine which provider is best for his business and other way around it helps cloud provider to distinguish safe and trustworthy consumers. Hence, if it is not evaluated properly then Cloud users can be trapped in a wrong and vulnerable cloud server and also cloud providers will be opened to data loss threats. [7] For determining trust value of cloud provider, cloud consumers should track cloud providers past history, reputation and level of transparency in service. On the second level, cloud providers also should use consumer’s behavioral approach towards other services. Those surveys need to be done in regular basis, otherwise it may happen that cloud users at first maintained a good trust value and after getting a good trust value, it chooses to misuse the trust. But, if a cloud user is new in the market, then it is really tough for them to get a good trust value. For those cases, a trial trust value and period should be introduced and then their trust value can be graded according to trust parameter matrix. As many cloud users will be using CTP protocol via CTP response engine, sometimes it may cause long waiting time for a user to get its required response. To solve this privilege escalation problem, CTP engine should process evidence access request s based on their trust value. If anything malicious thing happens then there trust value should be decreased. In this way trustworthy client will have fast access. An automated on the fly trust value evaluation system based on each transaction can be used to get updated accurate trust value. In first step, automated system will take already stored trust vale (which is calculated based on direct trust, recommended trust, preference trust etc) .Secondly, it will determine transactional trust value depending on its operation mode, type of query, symptoms of attacking other web services etc. Then it will update the final trust value and return it back to CTP engine. If its trust value is decreased, then CTP engine will further check the cause of this sudden change and afterwards can block the user from cloud services. If the trust value is increased then the request will be processed quickly. In this way trustworthy client will have fast access.

Upload: sucheta-mandal

Post on 06-Apr-2017

135 views

Category:

Technology


0 download

Report

TRANSCRIPT

Page 1: Glitches in cloud trust protocol architecture and trust evaluation

Glitches in Cloud Trust Protocol Architecture and Trust Evaluation

By Sucheta Mandal

Description

Now a day’s cloud technology is becoming the most used architecture in the industry. But according to recent surveys done by CSA (Cloud Security Alliance), still 73% of survey participant hold them back to use cloud technology because of its data vulnerability. Reliability of cloud service providers and transparency is really crucial to the cloud business. For developing trust over consumers and providers several approaches have been introduced. One of them is Cloud Trust Protocol, a set of rules and process to establish digital trust among cloud users. [1]

Cloud trust protocol is built on transparency, dynamic request, response based on trust value. But still there are many more flaws, which are needed to be improved to make CTP a vastly used protocol in the industry. Cloud trust management base, central storage location, lacks encryption and proper automation. This module is responsible for storing user authentication data, request- response history.

[5][6]But it is accessible for all cloud consumers, who are using this same protocol. If one of those consumers able to hacks those data, then this could prompt an immense information rupture. Hence this component should be divided into different domain per consumer and every domain would be encrypted with a private key. On the other hand entry and management in this section should be automated, otherwise in manual processes this storage location might be exposed to wrong hands.

More robust trust value calculation algorithm should be included for deciding probable threat and trustworthiness of both service providers and consumers. Trust evaluation is two – way mechanism. It helps consumer to determine which provider is best for his business and other way around it helps cloud provider to distinguish safe and trustworthy consumers. Hence, if it is not evaluated properly then Cloud users can be trapped in a wrong and vulnerable cloud server and also cloud providers will be opened to data loss threats. [7]For determining trust value of cloud provider, cloud consumers should track cloud providers past history, reputation and level of transparency in service. On the second level, cloud providers also should use consumer’s behavioral approach towards other services. Those surveys need to be done in regular basis, otherwise it may happen that cloud users at first maintained a good trust value and after getting a good trust value, it chooses to misuse the trust. But, if a cloud user is new in the market, then it is really tough for them to get a good trust value. For those cases, a trial trust value and period should be introduced and then their trust value can be graded according to trust parameter matrix.

As many cloud users will be using CTP protocol via CTP response engine, sometimes it may cause long waiting time for a user to get its required response. To solve this privilege escalation problem, CTP engine should process evidence access request s based on their trust value. If anything malicious thing happens then there trust value should be decreased. In this way trustworthy client will have fast access. An automated on the fly trust value evaluation system based on each transaction can be used to get updated accurate trust value. In first step, automated system will take already stored trust vale (which is calculated based on direct trust, recommended trust, preference trust etc) .Secondly, it will determine transactional trust value depending on its operation mode, type of query, symptoms of attacking other web services etc. Then it will update the final trust value and return it back to CTP engine. If its trust value is decreased, then CTP engine will further check the cause of this sudden change and afterwards can block the user from cloud services. If the trust value is increased then the request will be processed quickly. In this way trustworthy client will have fast access.

Page 2: Glitches in cloud trust protocol architecture and trust evaluation

Previous Work and Criticism

Several trust modeling mechanisms has been cited for improvement of this protocol.

• Some of them are using fuzzy comprehensive logic theory along side with direct and reputation based trust to determine optimum trust value. [3]

• Service Level Assignment based trust level. It is basically an agreement between the service provider and consumer for monitoring quality of service and service level violation if any. But this approach only focuses on visible elements and totally ignores invisible elements like transparency, privacy etc. [4]

• Reputation based approach. In this approach a new company will always suffer to get good trust value. [9][2]

• D-S Evidence theory and sliding window approach. In this process, the model only considers the evidence from interaction between that particular CSP and User. They did not consider any other trust value factor. [8]

• There are no special works accessible for tackling CTP engine’s special privilege acceleration problem.

References

[1] Acquiring forensic evidence from infrastructure-as-a-service cloud computing available at http://www.sciencedirect.com/science/article/pii/S1742287612000266

[2] A Survey Study on Reputation-Based Trust Management in P2P Networks, available at http://www.comp.nus.edu.sg/~cs6203/guidelines/topic7/survey-trust-reputation.pdf

[3] A Method for Trust Quantification in Cloud Computing Environments at http://dsn.sagepub.com/content/12/2/5052614.full

[4] SLA-Based Trust Model for Cloud Computing available at http://ieeexplore.ieee.org/document/5636125/

[5] Cloud Trust - a security assessment model for IaaS Clouds at https://www.computer.org/csdl/trans/cc/preprint/07072526.pdf

[6] Cloud Audit and Cloud Trust Protocol available at http://www.issa-dv.org/meetings/presentations/2011-12-09/2011-12-09_Presentation_01_Lingenfelter.pdf

[7] Trust Model for Measuring Security Strength of Cloud Computing Service available at http://ac.els-cdn.com/S1877050915004081/1-s2.0-S1877050915004081-main.pdf?_tid=e4e1e0a0-7ed3-11e6-b843-00000aacb35d&acdnat=1474336102_d8afa8db53d844660bf8387f1dc42de4

[8] Research in Cloud Security and Privacy available at https://www.cs.purdue.edu/homes/bb/cloud/cloud-complete.ppt

[9] A Trust Evaluation Model for Cloud Computing, available at http://www.sciencedirect.com/science/article/pii/S1877050913002822

http://www.sciencedirect.com/science/article/pii/S1742287612000266
http://www.comp.nus.edu.sg/~cs6203/guidelines/topic7/survey-trust-reputation.pdf
http://dsn.sagepub.com/content/12/2/5052614.full
http://ieeexplore.ieee.org/document/5636125/
https://www.computer.org/csdl/trans/cc/preprint/07072526.pdf
http://www.issa-dv.org/meetings/presentations/2011-12-09/2011-12-09_Presentation_01_Lingenfelter.pdf
http://www.issa-dv.org/meetings/presentations/2011-12-09/2011-12-09_Presentation_01_Lingenfelter.pdf
http://ac.els-cdn.com/S1877050915004081/1-s2.0-S1877050915004081-main.pdf?_tid=e4e1e0a0-7ed3-11e6-b843-00000aacb35d&acdnat=1474336102_d8afa8db53d844660bf8387f1dc42de4
http://ac.els-cdn.com/S1877050915004081/1-s2.0-S1877050915004081-main.pdf?_tid=e4e1e0a0-7ed3-11e6-b843-00000aacb35d&acdnat=1474336102_d8afa8db53d844660bf8387f1dc42de4
http://ac.els-cdn.com/S1877050915004081/1-s2.0-S1877050915004081-main.pdf?_tid=e4e1e0a0-7ed3-11e6-b843-00000aacb35d&acdnat=1474336102_d8afa8db53d844660bf8387f1dc42de4
https://www.cs.purdue.edu/homes/bb/cloud/cloud-complete.ppt
http://www.sciencedirect.com/science/article/pii/S1877050913002822

Authentication Step-Up Protocol and Metadata …docs.oasis-open.org/.../trust-el-protocol-v1.0-cos01.docx · Web viewAuthentication Step-Up Protocol and Metadata Version 1.0 Edited

Authentication Step-Up Protocol and Metadata …docs.oasis-open.org/.../v1.0/csprd01/trust-el-protocol-v… · Web viewAuthentication Step-Up Protocol and Metadata Version 1.0 Committee

Glitches and Hazards in Digital Circuits

System glitches Malicious intentOops! 39% 24% 37% 97% avoidable! Online Trust Alliance: 2013 Data Protection and Breach Readiness Guide

Glitches and precession

Evan Meaney on Glitches

Glitches in radio pulsars - uni-bonn.detauris/NS2012-2/Espinoza_Glitches.pdf · Glitches in radio pulsars Cristóbal Espinoza Jodrell Bank Centre for Astrophysics 42000 44000 46000

ECT Trust Wide Medical Protocol UPDATE

CIO Day 2012 - Choose your IT glitches wisely

Security Architecture and Protocol for Trust Verifications

New Glitches seen/studied in Block-Normal

Key Negotiation Protocol & Trust Router draft- howlett - radsec - knp

A Protocol Layer Trust-Based Intrusion Detection Scheme for ......sensors Article A Protocol Layer Trust-Based Intrusion Detection Scheme for Wireless Sensor Networks Jian Wang 1,*,

a technique to remove glitches in physical design stage

Authentication Step-Up Protocol and Metadata Version 1docs.oasis-open.org/trust-el/trust-el-protocol/v1.0/... · 2017. 5. 24. · trust-el-protocol-v1.0-os 24 May 2017 Standards Track

Pulsar glitches and neutron star massesphd.fisica.unimi.it/assets/Seminario-Montoli.pdf · 2019. 9. 12. · Pulsar glitches and neutron star masses Alessandro Montoli First-year PhD

Glitches and Big Deals

Computer Glitches - Babson Collegefaculty.babson.edu/goldstein/Teaching/FIN3560Fall2013... · 2014-09-22 · the glitch. The three main computer glitches that we analyzed occurred

Attention, ritual glitches, and attentional pull: the ...€¦ · Attention, ritual glitches, and attentional pull: the president and the queen C. Jason Throop & Alessandro Duranti

BWP Quantify Supply CHain Glitches Shareholder Value

Glitches bugsandimportanceofgoodprogramming

Finnish Trust Network SAML 2.0 Protocol Profile version 1 · Inledning och syfte med SAML protokoll profil dokument Namnet på dokumentet Finnish Trust Network SAML 2.0 Protocol Profile

Analysis of the implicit trust within the OLSR protocol

Observing Cosmic Superfluidity in Glitches of the Pulsars ...conferences.illinois.edu/bcs50/PDF/Alpar.pdfObserving Cosmic Superfluidity in Glitches of the Pulsars BCS50 Urbana –

interoperability, trust based information sharing protocol and security

Hazard and Glitches

Introduction to EXAFS III: XANES, Distortions, Debye-Waller, Glitches

Algebraic study of Glitches in Circuitssala/events2016/MariaChiaraMolteni-BunnyTN7.pdf · Algebraic study of Glitches in Circuits Hazard Algebra Worst case scenario for glitches propagation

TRUST Protocol v7-29-16 · The TRUST Study Protocol Version: July 29, 2016October 19, 2015 Page 1 of 17 RESEARCH PROTOCOL Title of project: Transcutaneous Vagus Nerve Stimulation

Data Glitches = Constraint Violations – Empirical …Divesh Srivastava AT&T Labs-Research A spaceman's word for irritating disturbances [Time, 23 Jul 1965]. ... – Data glitches

Open Trust Protocol Alliance - Cloud Object Storages3.amazonaws.com/connect.linaro.org/las16... · OTrP Agent Open Trust Protocol 12 ... TA’s private storage. Phase#1 ... “

Glitches and Big Deals A Social Story for Students

North Bristol NHS Trust Orthotic Service Protocol Bristol NHS NHS Trust North Bristol NHS Trust Orthotic Services Good Practice Guidance North Bristol NHS Trust Royal United Hospital

Trust Management for the World Wide Web · Web viewA trust protocol generally depends on the metadata format. A typical protocol contains methods to query specific metadata, heuristics

Detection of 107 glitches in 36 southern pulsars