• International Journal of Computer Science & Network Security
• /
• v.21 no.2
• /
• pp.1-8
• /
• 2021

Cloud computing has proven its efficiency, especially after the increasing number of cloud services offered by a wide range of cloud providers, from different domains. Despite, these cloud services are mostly heterogeneous. Consequently, and due to the rising interest of cloud consumers to adhere to a multi-cloud environment instead of being locked-in to one cloud provider, the need for semantically interconnecting different cloud services from different cloud providers is a crucial and important task to ensure. In addition, considerable research efforts proposed interoperability solutions leading to different representation models of cloud services. In this work, we present our solution to overcome this limitation, precisely in the IAAS service model. This solution is a framework permitting the semantic interoperability of different IAAS resources in a multi-cloud environment, in order to assist cloud consumers to retrieve the cloud resource that meets specific requirements.

• KIPS Transactions on Computer and Communication Systems
• /
• v.4 no.3
• /
• pp.81-84
• /
• 2015

Cloud service is one of major technologies in modern IT business. Due to the dynamics of user demands, service providers need VM(Virtual Machine) provisioning mechanism to predict the amount of resources demanded by cloud users for the next service and to prepare the resources. VM provisioning provides the QoS to cloud user and maximize the revenue of a service provider by minimizing the expense. In this paper, we propose a new VM provisioning technique to minimize the total expense of a service provider by minimizing the expected value of the expense based on the predicted demands of users. To evaluate the effectiveness of our prediction technique, we compare the total expense of our technique with these of the other prediction techniques with a series of real trace data.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• v.10 no.12
• /
• pp.5529-5552
• /
• 2016

Mobile cloud computing (MCC) has revolutionized the way in which the services can be obtained from the cloud service providers. Manifold increase in the number of mobile devices and subscribers in MCC has further enhanced the need of an efficient and robust authentication solution. Earlier, the subscribers could get cloud-computing services from the cloud service providers only after having consulted the trusted third party. Recently, Tsai and Lo has proposed a multi-server authenticated key agreement solution for MCC based on bilinear pairing, to eliminate the trusted third party for mutual authentication. The scheme has been novel as far as the minimization of trusted party involvement in authenticating the user and service provider, is concerned. However, the Tsai and Lo scheme has been found vulnerable to server spoofing attack (misrepresentation attack), de-synchronization attack and denial-of-service attack, which renders the scheme unsuitable for practical deployment in different wireless mobile access networks. Therefore, we have proposed an improved model based on bilinear pairing, countering the identified threats posed to Tsai and Lo scheme. Besides, the proposed work also demonstrates performance evaluation and formal security analysis.

• Journal of the Korea Society for Simulation
• /
• v.23 no.4
• /
• pp.143-150
• /
• 2014

Cloud computing is fast becoming the wave of the future for both home and business computing. Because of this growing acceptance, we can expect an explosion of diverse cloud service providers in the coming years. However, the cloud is not a single entity, rather it is a set of many disconnected islands of application (SaaS), infrastructure (IaaS), and different platform (PaaS) services. Cloud brokering mechanisms are essential to transform the heterogeneous cloud market into a commodity-like service. Cloud service brokers (CSBs) are the new form of business entities to help to aggregate the scattered set of cloud services and make conveniently available to their diverse users. CSBs can reserve a certain percentage of their clients' (users') demand and satisfy the remaining portion in an on-demand basis. In doing so, they need to minimize cost of both reserved and on-demand instances as well as the distance of a link between the cloud service provider (CSP) and the user. The study proposes a reservation approach with a mixed integer model to optimizes the cloud service cost and quality.

• Journal of Digital Convergence
• /
• v.10 no.10
• /
• pp.523-528
• /
• 2012

The recent appearance and evolution of cloud service including IaaS(Infrastructure as a Service), PaaS(Platform as a Service) and SaaS(Software as a Service) is potentially one of the major advances in information and communication technology. While a lot of studies are currently taking place in the technology itself, there is an equally urgent need for understanding and researching the business-related issues surrounding cloud service. As more and more individuals and companies use the cloud service, their concerns are beginning to grow about just how safe and reliable an environment it is. This paper focus on SaaS as an one of the important cloud service. For successful implementation of SaaS service, it is necessary to establish the certification systems to ensure safety and reliability of SaaS. This paper provides the safe and reliable framework for systematic SaaS certification systems. In order to develop it, the critical issues related to service quality and certification of SaaS service are identified and the systematic framework for certification systems of SaaS service and service provider domains are developed. An evaluation methodology for the developed certification systems is also proposed.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• v.13 no.6
• /
• pp.3219-3237
• /
• 2019

The Cloud Computing is growing rapidly in the current IT industry. Cloud computing has become a buzzword in relation to Grid & Utility computing. It provides on demand services to customers and customers will pay for what they get. Various "Cloud Service Provider" such as Microsoft Azure, Google Web Services etc. enables the users to access the cloud in cost effective manner. However, security, privacy and integrity of data is a major concern. In this paper various security challenges have been identified and the survey briefs the comprehensive overview of various security issues in cloud computing. The classification of security issues in cloud computing have been studied. In this paper we have discussed security challenges in cloud computing and also list recommended methods available for addressing them in the literature.

• Journal of Korea Society of Industrial Information Systems
• /
• v.21 no.2
• /
• pp.73-91
• /
• 2016

This study sheds light on the quality aspect of cloud computing services as next IT platform. Three tasks of the research are to extract the quality factors of cloud service from the user's viewpoint, empirically analyze the perceptual differences between the user group and the provider group by applying the IPA technique, and suggest some quality factors that need to be improved. Based on the previous researches and focus group evaluation, 13 quality factors have been established. Two field surveys have been performed respectively to collect the perceptual importance and satisfaction level of the users and the providers. It is shown that the quality satisfaction of the user group is lower than the quality perceived by the providers. And there exist significant differences between two groups in respect to quality importance level and IPA matrix. In conclusion, 6 quality factors that need to be improved are suggested such as service functionality, service availability, interoperability, scalability, confidentiality, and provider's responsiveness.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.21 no.6
• /
• pp.55-65
• /
• 2011

Recently, use of cloud computing service is dramatically increasing due to wired and wireless communications network diffusion in a field of high performance Internet technique. Cloud computing is a model for enabling convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction. In a view of digital forensic investigation, it is difficult to obtain data from cloud computing service environments. therefore, this paper suggests analysis method of AWS(Amazon Web Service) and Rackspace which take most part in cloud computing service where IaaS formats presented for data acquisition in order to get an evidence.

• Journal of Korea Society of Digital Industry and Information Management
• /
• v.10 no.4
• /
• pp.181-195
• /
• 2014

The game Industry has been a major leader in business world with its size and volume in terms of profit and culture contents, and ever increasing at the moment. Cloud Game has appeared as a new, combined game format, playable on smart TV and smart phone with its upgraded storage size and fast spreading N-screen. This research studies the present reality of the cloud industry by focusing on three categories which are device type, Platform, and game contents consequently in order to determine the future prospect of cloud games. First, the cloud game business will thrive as devices such as smart TV and smart phone are used widely. Second, the cloud game industry will have a new era when OS systems of Platform are united effectively. Third, the previous platform holders will have to face new challenges brought up by cloud games' service providers. Forth, the gamer, developer, and service provider need each other in order to widen the spectrum of business in cloud game industry.

• International Journal of Computer Science & Network Security
• /
• v.24 no.3
• /
• pp.23-28
• /
• 2024

The multi-tenancy and high scalability of the cloud have inspired businesses and organizations across various sectors to adopt and deploy cloud computing. Cloud computing provides cost-effective, reliable, and convenient access to pooled resources, including storage, servers, and networking. Cloud service models, SaaS, PaaS, and IaaS, enable organizations, developers, and end users to access resources, develop and deploy applications, and provide access to pooled computing infrastructure. Despite the benefits, cloud service models are vulnerable to multiple security and privacy attacks and threats. The SaaS layer is on top of the PaaS, and the IaaS is the bottom layer of the model. The software is hosted by a platform offered as a service through an infrastructure provided by a cloud computing provider. The Hypertext Transfer Protocol (HTTP) delivers cloud-based apps through a web browser. The stateless nature of HTTP facilitates session hijacking and related attacks. The Open Web Applications Security Project identifies web apps' most critical security risks as SQL injections, cross-site scripting, sensitive data leakage, lack of functional access control, and broken authentication. The systematic literature review reveals that data security, application-level security, and authentication are the primary security threats in the SaaS model. The recommended solutions to enhance security in SaaS include Elliptic-curve cryptography and Identity-based encryption. Integration and security challenges in PaaS and IaaS can be effectively addressed using well-defined APIs, implementing Service Level Agreements (SLAs), and standard syntax for cloud provisioning.