Title: Enforcing the Chinese wall model for tenant conflict of interest in the service cloud

Authors: Sarra Alqahtani; Rose F. Gamble; Indrakshi Ray

Addresses: Tandy School of Computer Science, University of Tulsa, Tulsa, OK, USA ' Tandy School of Computer Science, University of Tulsa, Tulsa, OK, USA ' Department of Computer Science, Colorado State University, Fort Collins, CO, USA

Abstract: The service cloud provisions the services from different vendors into an application that can respond to tenant requests. Thus, the service cloud model must support provisioning services for the request without incurring a Conflict of Interest (COI) in their message exchange among vendors. Service vendors must disclose their COI classes for storage and analysis by the cloud because as services are provisioned to an application, additional conflict classes may be added, preventing the service from future compositions to avoid COI. In this paper, we present a strategy to centrally store and monitor COI classes for services using principles of the Chinese wall model. We introduce a Security Monitoring Database (SMDB) that encompasses the repositories and resources to audit the COI classes as they are assigned to hosted services. We describe an algorithm to prevent COI before provisioning services and dynamically detect it during runtime using the SMDB information.

Keywords: service cloud; web service composition; Chinese wall; auditing; security monitoring; conflicts of interest; web services; cloud computing; cloud security.

DOI: 10.1504/IJBPIM.2014.063520

International Journal of Business Process Integration and Management, 2014 Vol.7 No.2, pp.166 - 177

Published online: 21 Oct 2014 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article