Authors: Donghoon Kim; Mladen A. Vouk
Addresses: Department of Computer Science, Arkansas State University, Jonesboro, AR, USA ' Department of Computer Science, North Carolina State University, Raleigh, NC, USA
Abstract: Scientific workflow management systems (SWFMS) may be vulnerable in a cloud since they may have not embraced practical security solutions yet. This paper presents an approach to formal modelling of scientific workflow security in the cloud. We focus on the procedure to build secure data flows in a holistic way. This work also suggests that a whitelist approach to input validation can play a role in protecting the flows from zero-day attacks.
Keywords: formal method; security; workflow; security property; input validation; access control; cloud.
International Journal of Cloud Computing, 2018 Vol.7 No.3/4, pp.226 - 236
Received: 11 Aug 2017
Accepted: 13 Feb 2018
Published online: 20 Sep 2018 *