Formal verification of secure information flow in cloud computing

Files

JISA-D-15-00079R3.pdf (1.91 MB)

Date

2016-04-11

Authors

Zeng, W.
Koutny, M.
Watson, P.
Germanos, Vasileios

Advisors

Journal Title

Journal ISSN

ISSN

2214‐2126

DOI

https://doi.org/10.1016/j.jisa.2016.03.002

Volume Title

Publisher

Elsevier

Type

Article

Peer reviewed

Yes

Abstract

Federated cloud systems increase the reliability and reduce the cost of computational support to an organisation. However, the resulting combination of secure private clouds and less secure public clouds impacts on the overall security of the system as applications need to be located within different clouds. In this paper, the entities of a federated cloud system as well as the clouds are assigned security levels of a given security lattice. Then a dynamic flow sensitive security model for a federated cloud system is introduced within which the Bell–LaPadula rules and cloud security rule can be captured. The rest of the paper demonstrates how Petri nets and the associated verification techniques could be used to analyse the security of information flow in federated cloud systems.

Description

The file attached to this record is the author's final peer reviewed version. The Publisher's final version can be found by following the DOI link.

Keywords

Federated cloud system, Information flow security, Bell–LaPadula rules, Petri net, Diagnosability, Model checking

Citation

Zeng, W., Koutny, M., Watson, P., Germanos, V. (2016) Formal verification of secure information flow in cloud computing. Journal of Information Security and Applications, 27-28, pp. 103-116.

URI

https://eprint.ncl.ac.uk/222849
 http://hdl.handle.net/2086/17409

Rights

Research Institute

Collections

School of Computer Science and Informatics