Security certification for the Cloud: the CUMULUS approach

Anisetti, M.; Ardagna, C.A.; Damiani, E.; Maña, A.; Spanoudakis, G.; Pino, L.; Koshutanski, H.

doi:10.1007/978-3-319-25988-8_8

This chapter presents a certification-based assurance solution for the cloud, which has been developed as part of the FP7 EU Project CUMULUS. It provides an overview of the CUMULUS certification models, which are at the basis of the certification processes implemented and managed by the CUMULUS certification framework. Certification models drive the collection of evidence used by the framework to assess whether the system under certification supports required security properties, and generate and manage certificates proving compliance to such properties (certification process). Collected evidence can be of different types (i.e., test-based, monitoring-based, and trusted computing-based evidence) and addresses the peculiarities of cloud environments. The framework also supports continuous and incremental evaluation of services in the production cloud.

Security certification for the Cloud: the CUMULUS approach / M. Anisetti, C.A. Ardagna, E. Damiani, A. Maña, G. Spanoudakis, L. Pino, H. Koshutanski (COMPUTER COMMUNICATIONS AND NETWORKS). - In: Guide to security assurance for Cloud computing / [a cura di] S.Y. Zhu, R. Hill, M. Trovati. - [s.l] : Springer International Publishing, 2015. - ISBN 9783319259864. - pp. 111-137 [10.1007/978-3-319-25988-8_8]

Security certification for the Cloud: the CUMULUS approach

M. Anisetti^Primo;C.A. Ardagna^Secondo;E. Damiani;A. Maña;G. Spanoudakis;L. Pino;H. Koshutanski

2015

Abstract

This chapter presents a certification-based assurance solution for the cloud, which has been developed as part of the FP7 EU Project CUMULUS. It provides an overview of the CUMULUS certification models, which are at the basis of the certification processes implemented and managed by the CUMULUS certification framework. Certification models drive the collection of evidence used by the framework to assess whether the system under certification supports required security properties, and generate and manage certificates proving compliance to such properties (certification process). Collected evidence can be of different types (i.e., test-based, monitoring-based, and trusted computing-based evidence) and addresses the peculiarities of cloud environments. The framework also supports continuous and incremental evaluation of services in the production cloud.

Scheda breve

Scheda completa

Scheda completa (DC)

	Parole chiave
	
				Assurance; Certification; Cloud; Security
			
	Settori scientifico-disciplinari del contributo
	
				Settore INF/01 - Informatica
			
	Data di pubblicazione
	
				2015
			
	DOI
	
				https://dx.doi.org/10.1007/978-3-319-25988-8_8
			
	Tipologia
	
				Book Part (author)
			
	Appare nelle tipologie:
	
				03 - Contributo in volume

File in questo prodotto:

Non ci sono file associati a questo prodotto.

Pubblicazioni consigliate

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/2434/371230

Citazioni

ND

ND

ND

IRIS Institutional Research Information System - AIR Archivio Istituzionale della Ricerca