Title: Addressing security compatibility for multi-tenant cloud services

Authors: Khaled M. Khan; Abdelkarim Erradi; Saleh Alhazbi; Jun Han

Addresses: Department of Computer Science and Engineering, Qatar University, P.O. Box 2713, Doha, Qatar ' Department of Computer Science and Engineering, Qatar University, P.O. Box 2713, Doha, Qatar ' Department of Computer Science and Engineering, Qatar University, P.O. Box 2713, Doha, Qatar ' Faculty of Information and Communication Technologies, Swinburne University of Technology, Hawthorn, Melbourne, Vic 3122, Australia

Abstract: This paper addresses the issue of compatibility checking between the security requirements of service clients and the security assurances provided by multi-tenant cloud services. To allow early detection of security mismatches, our proposed framework provides a security ontology to support flexible specification of security policies and to allow semantic matching and run-time reasoning about the compatibility between security requirements and assurances of the interacting systems in multi-tenant service-oriented systems. The paper also defines various compositional models of a client based on the requirements of specific use context and users' profile of the client for a service.

Keywords: software services; security compatibility; security properties; context-aware; security ontology; multi-tenant cloud services; security policies; semantic matching; run-time reasoning.

DOI: 10.1504/IJCAT.2013.055330

International Journal of Computer Applications in Technology, 2013 Vol.47 No.4, pp.370 - 378

Published online: 02 Dec 2013 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article