Abstract
Analytics firm Cyence estimated Amazon's four-hour cloud computing outage in 2017 "cost S&P 500 companies at least $150 million" and traffic monitoring firm Apica claimed "54 of the top 100 online retailers saw site performance slump by at least 20 percent". According to Ponemon, 2015 data center outages cost Fortune 1000 companies between $1.25 and $2.5 billion. Despite potential risks, the cloud computing industry continues to grow. For example, Internet of Things, which is projected to grow 266% between 2013 and 2020, will drive increased demand on cloud computing as data across multiple industries is collected and sent back to cloud data centers for processing. RightScale estimates enterprises will continue to increase cloud demand with 85% having multi-cloud strategies. This growth and dependency will influence risk exposure and potential for impact (e.g. availability, performance, security, financial). The research in this paper and proposed solution calculates cloud service provider (CSP) trustworthiness levels and predicts cloud service and cloud service level agreement (SLA) availability performance. Evolving industry standards (e.g. NIST, ISO/IEC) for cloud SLAs and existing work regarding CSP trustworthiness will be leveraged as regression-based predictive models are constructed to analyze CSP cloud computing services, SLA performance and CSP trustworthiness.
Highlights
A 2017 cloud survey from Skyhigh Networks and Cloud Security Alliance [41] identified the following key drivers for moving applications to cloud infrastructure (i.e. Infrastructure-asa-Service providing subscription based processors, storage, network, software): increased security of cloud platforms, scalability based on workload, preference for operating expense vs capital, and lower costs
For this research paper and based on previous work reviewed in Section II (Related Work), cloud service provider (CSP) trustworthiness is analyzed in terms of the following: For historical QoS, did the CSP deliver the quality of service (QoS) they said they would deliver? Did they meet cloud service customer (CSC) expectations? How comprehensive and transparent are the CSP’s delivery and security capabilities (e.g. what is their level of Cloud Security Alliance (CSA) Cloud Controls Matrix (CCM) compliance)? With respect to future performance, does the CSP have the required capabilities to meet future
The analysis focused on the top three CSPs (Amazon, Google, Microsoft) and how the data influenced cloud service performance and predicting service level agreement (SLA) Availability
Summary
A 2017 cloud survey from Skyhigh Networks and Cloud Security Alliance [41] identified the following key drivers for moving applications to cloud infrastructure (i.e. Infrastructure-asa-Service providing subscription based processors, storage, network, software): increased security of cloud platforms, scalability based on workload, preference for operating expense vs capital, and lower costs. With the increased demand and dependency on cloud computing, risk to expected service levels (e.g. availability, reliability, performance, security), potential for financial impact, and level of trustworthiness of CSPs are all important areas requiring attention. For this research paper and based on previous work reviewed in Section II (Related Work), CSP trustworthiness is analyzed in terms of the following: For historical QoS, did the CSP deliver the quality of service (QoS) they said they would deliver? Did they meet cloud service customer (CSC) expectations? How comprehensive and transparent are the CSP’s delivery and security capabilities (e.g. what is their level of Cloud Security Alliance (CSA) Cloud Controls Matrix (CCM) compliance)? With respect to future performance, does the CSP have the required capabilities to meet future
Sign-in/Register to view highlights & summary Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a callDisclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.
