Vis enkel innførsel

dc.contributor.authorFrøystad, Christian
dc.contributor.authorTøndel, Inger Anne
dc.contributor.authorJaatun, Martin Gilje
dc.date.accessioned2018-12-19T13:15:22Z
dc.date.available2018-12-19T13:15:22Z
dc.date.created2018-12-12T10:02:52Z
dc.date.issued2018-12
dc.identifier.citationFrøystad, C., Tøndel, I.A., Jaatun, M.G., (2018) Security Incident Information Exchange for Cloud Service Provisioning Chains, 2(4)nb_NO
dc.identifier.issn2410-387X
dc.identifier.urihttp://hdl.handle.net/11250/2578337
dc.description.abstractOnline services are increasingly becoming a composition of different cloud services, making incident-handling difficult, as Cloud Service Providers (CSPs) with end-user customers need information from other providers about incidents that occur at upstream CSPs to inform their users. In this paper, we argue the need for commonly agreed-upon incident information exchanges between providers to improve accountability of CSPs, and present both such a format and a prototype implementing it. The solution can handle simple incident information natively as well as embed standard representation formats for incident-sharing, such as IODEF and STIX. Preliminary interviews show a desire for such a solution. The discussion considers both technical challenges and non-technical aspects related to improving the situation for incident response in cloud-computing scenarios. Our solution holds the potential of making incident-sharing more efficientnb_NO
dc.language.isoengnb_NO
dc.publisherMDPInb_NO
dc.rightsNavngivelse 4.0 Internasjonal*
dc.rights.urihttp://creativecommons.org/licenses/by/4.0/deed.no*
dc.subjectcryptographynb_NO
dc.subjectinformasjonsteknologinb_NO
dc.subjectaccountabilitynb_NO
dc.subjectcloud computingnb_NO
dc.subjectskyteknologinb_NO
dc.subjectincident responsenb_NO
dc.titleSecurity Incident Information Exchange for Cloud Service Provisioning Chainsnb_NO
dc.typeJournal articlenb_NO
dc.typePeer reviewednb_NO
dc.description.versionpublishedVersionnb_NO
dc.rights.holder(c) 2018 by the authorsnb_NO
dc.subject.nsiVDP::Teknologi: 500::Informasjons- og kommunikasjonsteknologi: 550nb_NO
dc.source.volume2nb_NO
dc.source.journalCryptographynb_NO
dc.source.issue4nb_NO
dc.identifier.doi10.3390/cryptography2040041
dc.identifier.cristin1641993
cristin.unitcode217,8,4,0
cristin.unitnameInstitutt for data- og elektroteknologi
cristin.ispublishedtrue
cristin.fulltextoriginal
cristin.qualitycode1


Tilhørende fil(er)

Thumbnail

Denne innførselen finnes i følgende samling(er)

Vis enkel innførsel

Navngivelse 4.0 Internasjonal
Med mindre annet er angitt, så er denne innførselen lisensiert som Navngivelse 4.0 Internasjonal