Design Issues of Trustworthy Cloud Platform Based on IP Monitoring and File Risk

Abstract

With the rising popularity of Web applications and cloud computing technology, a secure cloud computing environment is one of the main concerns. Currently, enterprise cloud platforms often rely on their maintenance and operation, and medium and small companies cannot effectively save manpower information security costs, and thus has affected the willingness of enterprises to use cloud services. In view of this, the cloud service provider (CSP) must be ready to support a full range of security services, such as firewalls, intrusion detection systems, VPN, etc, in order to providing good quality of service. The purpose of this paper is to explore IP address monitor and employ file risk concept to design Trustworthy Cloud Platform (TWCP). Hence, the TWCP can provide the security risk assess models for monitoring security and trust for cloud multi-tenants. Also, this cloud platform can provide value-added audit reports under the virtual cloud environment. It will be essential to a customer's loyalty and retention. In addition, each tenant in a virtual machine records all the abnormal file names and attributes, and illegal IP addresses daily, and also imports into CSP's database from these file lists and IP events. Then, the proposed TWCP will perform assessing tasks for analyzing daily log reports and e-mail the security risk status to every tenant. Finally, this paper performs simulations under IaaS, the experimental results indicate the TWCP can obtain a higher IP monitoring ratio and lower the file risk value, and thus allow all tenants to get more trustable TWCP to enhance all tenant's overall service quality and operational efficiency.