Formal verification of secure information flow in cloud computing.
J. Inf. Sec. Appl.(2016)
摘要
Federated cloud systems increase the reliability and reduce the cost of computational support to an organisation. However, the resulting combination of secure private clouds and less secure public clouds impacts on the overall security of the system as applications need to be located within different clouds. In this paper, the entities of a federated cloud system as well as the clouds are assigned security levels of a given security lattice. Then a dynamic flow sensitive security model for a federated cloud system is introduced within which the Bell-LaPadula rules and cloud security rule can be captured. The rest of the paper demonstrates how Petri nets and the associated verification techniques could be used to analyse the security of information flow in federated cloud systems.
更多查看译文
关键词
Federated cloud system,Information flow security,Bell-LaPadula rules,Petri net,Diagnosability,Model checking
AI 理解论文
溯源树
样例
生成溯源树,研究论文发展脉络