From event to evidence: An approach for multi-tenant cloud services' accountability

Fatma Masmoudi; Mohamed Sellami; Monia Loulou; Ahmed Hadj Kacem

doi:10.1109/AINA.2017.48

From event to evidence: An approach for multi-tenant cloud services' accountability

Fatma Masmoudi, Mohamed Sellami, Monia Loulou, Ahmed Hadj Kacem

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

5 Scopus citations

Abstract

Accountability provides effective means for data protection in the cloud. On the provider's side, it consists in accepting to take responsibility for the users' data protection and governance in light of explicit agreements between them. Accountability is guaranteed through multiple measures ranging from preventive controls, violation detection, and analysis to compensatory and rectification measures. All the mentioned measures rely on proof concepts using forensic evidences. On the other hand, one of the properties making cloud popular is the multi-tenancy which reduces services costs and maximize resource usage. Therefore, it is important for a forensic evidence to support multi-tenancy. For this purpose, we propose a model-based approach which provides a description of multi-tenant aware evidence. We also define an algorithm for the definition of evidences from recorded transactions (a.k.a., event logs) between tenants and multi-tenant services. Furthermore, we propose a middleware layer on which we apply our approach to evaluate, through different scenarios, its efficiency.

Original language	English
Title of host publication	Proceedings - 31st IEEE International Conference on Advanced Information Networking and Applications, AINA 2017
Editors	Tomoya Enokido, Hui-Huang Hsu, Chi-Yi Lin, Makoto Takizawa, Leonard Barolli
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	1082-1089
Number of pages	8
ISBN (Electronic)	9781509060283
DOIs	https://doi.org/10.1109/AINA.2017.48
State	Published - 5 May 2017
Externally published	Yes
Event	31st IEEE International Conference on Advanced Information Networking and Applications, AINA 2017 - Taipei, Taiwan, Province of China Duration: 27 Mar 2017 → 29 Mar 2017

Publication series

Name	Proceedings - International Conference on Advanced Information Networking and Applications, AINA
ISSN (Print)	1550-445X

Conference

Conference	31st IEEE International Conference on Advanced Information Networking and Applications, AINA 2017
Country/Territory	Taiwan, Province of China
City	Taipei
Period	27/03/17 → 29/03/17

Keywords

Accountability
Cloud computing
Event log
Evidence
Model
Multi-tenancy

Access to Document

10.1109/AINA.2017.48

Cite this

Masmoudi, F., Sellami, M., Loulou, M., & Kacem, A. H. (2017). From event to evidence: An approach for multi-tenant cloud services' accountability. In T. Enokido, H.-H. Hsu, C.-Y. Lin, M. Takizawa, & L. Barolli (Eds.), Proceedings - 31st IEEE International Conference on Advanced Information Networking and Applications, AINA 2017 (pp. 1082-1089). Article 7921027 (Proceedings - International Conference on Advanced Information Networking and Applications, AINA). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/AINA.2017.48

Masmoudi, Fatma ; Sellami, Mohamed ; Loulou, Monia et al. / From event to evidence : An approach for multi-tenant cloud services' accountability. Proceedings - 31st IEEE International Conference on Advanced Information Networking and Applications, AINA 2017. editor / Tomoya Enokido ; Hui-Huang Hsu ; Chi-Yi Lin ; Makoto Takizawa ; Leonard Barolli. Institute of Electrical and Electronics Engineers Inc., 2017. pp. 1082-1089 (Proceedings - International Conference on Advanced Information Networking and Applications, AINA).

@inproceedings{66cfe5b3260141e08a79cb8381e4a187,

title = "From event to evidence: An approach for multi-tenant cloud services' accountability",

abstract = "Accountability provides effective means for data protection in the cloud. On the provider's side, it consists in accepting to take responsibility for the users' data protection and governance in light of explicit agreements between them. Accountability is guaranteed through multiple measures ranging from preventive controls, violation detection, and analysis to compensatory and rectification measures. All the mentioned measures rely on proof concepts using forensic evidences. On the other hand, one of the properties making cloud popular is the multi-tenancy which reduces services costs and maximize resource usage. Therefore, it is important for a forensic evidence to support multi-tenancy. For this purpose, we propose a model-based approach which provides a description of multi-tenant aware evidence. We also define an algorithm for the definition of evidences from recorded transactions (a.k.a., event logs) between tenants and multi-tenant services. Furthermore, we propose a middleware layer on which we apply our approach to evaluate, through different scenarios, its efficiency.",

keywords = "Accountability, Cloud computing, Event log, Evidence, Model, Multi-tenancy",

author = "Fatma Masmoudi and Mohamed Sellami and Monia Loulou and Kacem, \{Ahmed Hadj\}",

note = "Publisher Copyright: {\textcopyright} 2017 IEEE.; 31st IEEE International Conference on Advanced Information Networking and Applications, AINA 2017 ; Conference date: 27-03-2017 Through 29-03-2017",

year = "2017",

month = may,

day = "5",

doi = "10.1109/AINA.2017.48",

language = "English",

series = "Proceedings - International Conference on Advanced Information Networking and Applications, AINA",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "1082--1089",

editor = "Tomoya Enokido and Hui-Huang Hsu and Chi-Yi Lin and Makoto Takizawa and Leonard Barolli",

booktitle = "Proceedings - 31st IEEE International Conference on Advanced Information Networking and Applications, AINA 2017",

address = "United States",

}

Masmoudi, F, Sellami, M, Loulou, M & Kacem, AH 2017, From event to evidence: An approach for multi-tenant cloud services' accountability. in T Enokido, H-H Hsu, C-Y Lin, M Takizawa & L Barolli (eds), Proceedings - 31st IEEE International Conference on Advanced Information Networking and Applications, AINA 2017., 7921027, Proceedings - International Conference on Advanced Information Networking and Applications, AINA, Institute of Electrical and Electronics Engineers Inc., pp. 1082-1089, 31st IEEE International Conference on Advanced Information Networking and Applications, AINA 2017, Taipei, Taiwan, Province of China, 27/03/17. https://doi.org/10.1109/AINA.2017.48

From event to evidence: An approach for multi-tenant cloud services' accountability. / Masmoudi, Fatma; Sellami, Mohamed; Loulou, Monia et al.
Proceedings - 31st IEEE International Conference on Advanced Information Networking and Applications, AINA 2017. ed. / Tomoya Enokido; Hui-Huang Hsu; Chi-Yi Lin; Makoto Takizawa; Leonard Barolli. Institute of Electrical and Electronics Engineers Inc., 2017. p. 1082-1089 7921027 (Proceedings - International Conference on Advanced Information Networking and Applications, AINA).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - From event to evidence

T2 - 31st IEEE International Conference on Advanced Information Networking and Applications, AINA 2017

AU - Masmoudi, Fatma

AU - Sellami, Mohamed

AU - Loulou, Monia

AU - Kacem, Ahmed Hadj

PY - 2017/5/5

Y1 - 2017/5/5

N2 - Accountability provides effective means for data protection in the cloud. On the provider's side, it consists in accepting to take responsibility for the users' data protection and governance in light of explicit agreements between them. Accountability is guaranteed through multiple measures ranging from preventive controls, violation detection, and analysis to compensatory and rectification measures. All the mentioned measures rely on proof concepts using forensic evidences. On the other hand, one of the properties making cloud popular is the multi-tenancy which reduces services costs and maximize resource usage. Therefore, it is important for a forensic evidence to support multi-tenancy. For this purpose, we propose a model-based approach which provides a description of multi-tenant aware evidence. We also define an algorithm for the definition of evidences from recorded transactions (a.k.a., event logs) between tenants and multi-tenant services. Furthermore, we propose a middleware layer on which we apply our approach to evaluate, through different scenarios, its efficiency.

AB - Accountability provides effective means for data protection in the cloud. On the provider's side, it consists in accepting to take responsibility for the users' data protection and governance in light of explicit agreements between them. Accountability is guaranteed through multiple measures ranging from preventive controls, violation detection, and analysis to compensatory and rectification measures. All the mentioned measures rely on proof concepts using forensic evidences. On the other hand, one of the properties making cloud popular is the multi-tenancy which reduces services costs and maximize resource usage. Therefore, it is important for a forensic evidence to support multi-tenancy. For this purpose, we propose a model-based approach which provides a description of multi-tenant aware evidence. We also define an algorithm for the definition of evidences from recorded transactions (a.k.a., event logs) between tenants and multi-tenant services. Furthermore, we propose a middleware layer on which we apply our approach to evaluate, through different scenarios, its efficiency.

KW - Accountability

KW - Cloud computing

KW - Event log

KW - Evidence

KW - Model

KW - Multi-tenancy

UR - http://www.scopus.com/inward/record.url?scp=85019700577&partnerID=8YFLogxK

U2 - 10.1109/AINA.2017.48

DO - 10.1109/AINA.2017.48

M3 - Conference contribution

AN - SCOPUS:85019700577

T3 - Proceedings - International Conference on Advanced Information Networking and Applications, AINA

SP - 1082

EP - 1089

BT - Proceedings - 31st IEEE International Conference on Advanced Information Networking and Applications, AINA 2017

A2 - Enokido, Tomoya

A2 - Hsu, Hui-Huang

A2 - Lin, Chi-Yi

A2 - Takizawa, Makoto

A2 - Barolli, Leonard

PB - Institute of Electrical and Electronics Engineers Inc.

Y2 - 27 March 2017 through 29 March 2017

ER -

Masmoudi F, Sellami M, Loulou M, Kacem AH. From event to evidence: An approach for multi-tenant cloud services' accountability. In Enokido T, Hsu HH, Lin CY, Takizawa M, Barolli L, editors, Proceedings - 31st IEEE International Conference on Advanced Information Networking and Applications, AINA 2017. Institute of Electrical and Electronics Engineers Inc. 2017. p. 1082-1089. 7921027. (Proceedings - International Conference on Advanced Information Networking and Applications, AINA). doi: 10.1109/AINA.2017.48

From event to evidence: An approach for multi-tenant cloud services' accountability

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this