TUM Logo

Self-adaptive, continuous certification of cloud services

Self-adaptive, continuous certification of cloud services

Supervisor(s): Philipp Stephanow
Status: open
Topic: Others
Type of Thesis: Masterthesis
Thesis topic in co-operation with the Fraunhofer Institute for Applied and Integrated Security AISEC, Garching

Description

Motivation and Tasks

Cloud service certification aims at increasing a customer’s trust and allowing comparison of cloud service’s alternatives to identify the most suitable one [2][3]. Whether a cloud service adheres to a customer’s set of requirements can be systematically assessed by a certification process. Traditionally, executing a certification process is a discrete task producing a certificate valid for a defined interval, e.g. one year. This implies stability of certification process’ results during the interval. In regard to cloud services, the assumption of stability underlying traditional certification does not hold. Thus applying the concept of certification to cloud services requires systems which continuously detect ongoing changes of the service, assess their impact on customer requirements, and adapt the certification service automatically to maintain the ability of continuous certification.

Within this master thesis, an approach has to be developed to describe different cloud services types, detect changes of these service types at runtime and propose response methods to adapt monitoring techniques. This involves addressing the following tasks:

  • Development of a language to describe cloud services types
  • Investigation of existing monitoring and testing methods to detect changes of cloud services
  • Development of methods to adapt to cloud services' changes

Requirements

  • very good programming skills (Python, Java)
  • basic knowledge in language design
  • experience with monitoring tools (e.g. Ganglia [4]) and testing tools (e.g. OpenVAS [1])

Contact

Philipp Stephanow
Fraunhofer Research Institution for Applied and Integrated Security (AISEC)
Parkring 4, 85748 Garching bei München
philipp.stephanow@aisec.fraunhofer.de

[1] OpenVAS. http://www.openvas.org/.
[2] S. Cimato, E. Damiani, F. Zavatarelli, and R. Menicocci. Towards the certification of cloud services. In 2013 IEEE Ninth World Congress on Services (SERVICES), pages 92–97. IEEE, 2013.
[3] M. Krotsiani, G. Spanoudakis, and K. Mahbub. Incremental certification of cloud services. In SECURWARE 2013-7th International Conference on Emerging Security Information, Systems and Technologies, pages 72–80, 2013.
[4] M. L. Massie, B. N. Chun, and D. E. Culler. The ganglia distributed monitoring system: design, implementation, and experience. Parallel Computing, 30(7):817–840, 2004.