Title :
A Test-Based Incremental Security Certification Scheme for Cloud-Based Systems
Author :
Anisetti, Marco ; Ardagna, Claudio A. ; Damiani, Ernesto
Author_Institution :
DI - Univ. Studi di Milano, Crema, Italy
Abstract :
We present a test-based assurance scheme aimed at incremental security certification. Our scheme assesses the impact of changes at cloud, system, and certification methodology levels on existing certification processes. The proposed solution minimizes the risk of unnecessary certificate revocation and reduces as much as possible the amount of re-certification activities. To this aim, it reuses evidence available in existing certificates to re-validate them when relevant changes are observed.
Keywords :
certification; cloud computing; security of data; certificate revocation; cloud-based systems; re-certification activity reduction; risk minimization; test-based assurance scheme; test-based incremental security certification scheme; Cloud computing; Encryption; Gold; Labeling; Runtime; Testing; Cloud; Incremental security certification; Testing;
Conference_Titel :
Services Computing (SCC), 2015 IEEE International Conference on
Conference_Location :
New York, NY
Print_ISBN :
978-1-4673-7280-0
DOI :
10.1109/SCC.2015.104