Security risk analysis of IaaS based on the abstract state machine model Online publication date: Tue, 22-Nov-2016
by Xiang Shuang; Zhao Bo; Xiao Yu; An Yang
International Journal of High Performance Computing and Networking (IJHPCN), Vol. 9, No. 5/6, 2016
Abstract: In order to handle the problem of a lack of formal modelling for the IaaS and its validation, this paper focuses on the interactions between internal components triggered by user behaviour, modelling the IaaS service as the interactions between the users and the entities within inter-cloud platform, as well as the entities within cloud platform. We take the abstract state machine (ASM) as operation semantics for formalising communication model when using IaaS platform services, which can show the changes of dynamic performance about the platform status. Meanwhile, we simplify the model without sacrificing the service correctness from user's perspective. Finally, we give the security attributes of cloud services and find some threats prone to service failure by using model checking tools UPPAAL to analyse the performance of current IaaS platform. This paper also provides a theory fundamental for the security enforcement of IaaS service and contributes to the prevailing of cloud computing.
Online publication date: Tue, 22-Nov-2016
If you are not a subscriber and you just want to read the full contents of this article, buy online access here.Complimentary Subscribers, Editors or Members of the Editorial Board of the International Journal of High Performance Computing and Networking (IJHPCN):
Login with your Inderscience username and password:
Want to subscribe?
A subscription gives you complete access to all articles in the current issue, as well as to all articles in the previous three years (where applicable). See our Orders page to subscribe.
If you still need assistance, please email firstname.lastname@example.org