On Incorporating Security Parameters in Service Level Agreements

Aida Čaušević, Elena Lisova, Mohammad Ashjaei, Syed Ashgar

2019

Abstract

With development of cloud computing new ways for easy, on-demand, Internet-based access to computing resources have emerged. In such context a Service Level Agreement (SLA) enables contractual agreements between service providers and users. Given an SLA, service users are able to establish trust in that the service outcome corresponds to what they have demanded during the service negotiation process. However, an SLA provides a limited support outside of basic Quality of Service (QoS) parameters, especially when it comes to security. We find security as an important factor to be included in adjusting an SLA according to user defined objectives. Incorporating it in an SLA is challenging due to difficulty to provide complete and quantifiable metrics, thus we propose to focus on a systematic way of addressing security using the security process. In this paper we investigate ways in which security might be incorporated already in the service negotiation process and captured in an SLA. We propose a corresponding process to develop and maintain an SLA that considers both design-, and run-time. To demonstrate the approach we built upon the existing SLAC language and extend its syntax to support security. An example of a service being provided with security guarantees illustrates the concept.

Download


Paper Citation


in Harvard Style

Čaušević A., Lisova E., Ashjaei M. and Ashgar S. (2019). On Incorporating Security Parameters in Service Level Agreements.In Proceedings of the 9th International Conference on Cloud Computing and Services Science - Volume 1: CLOSER, ISBN 978-989-758-365-0, pages 48-57. DOI: 10.5220/0007658000480057


in Bibtex Style

@conference{closer19,
author={Aida Čaušević and Elena Lisova and Mohammad Ashjaei and Syed Ashgar},
title={On Incorporating Security Parameters in Service Level Agreements},
booktitle={Proceedings of the 9th International Conference on Cloud Computing and Services Science - Volume 1: CLOSER,},
year={2019},
pages={48-57},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0007658000480057},
isbn={978-989-758-365-0},
}


in EndNote Style

TY - CONF

JO - Proceedings of the 9th International Conference on Cloud Computing and Services Science - Volume 1: CLOSER,
TI - On Incorporating Security Parameters in Service Level Agreements
SN - 978-989-758-365-0
AU - Čaušević A.
AU - Lisova E.
AU - Ashjaei M.
AU - Ashgar S.
PY - 2019
SP - 48
EP - 57
DO - 10.5220/0007658000480057