Visible to the public Biblio

Filters: Author is Kim, Donghoon  [Clear All Filters]
2017-10-02
Kim, Donghoon, Schaffer, Henry E., Vouk. Mladen A.  2017.  About PaaS Security. Int. J. of Cloud Computing.

Platform as a Service (PaaS) provides middleware resources to cloud customers. As demand for PaaS services increases, so do concerns about the security of PaaS. This paper discusses principal PaaS security and integrity requirements, and vulnerabilities and the corresponding countermeasures. We consider three core cloud elements—multi-tenancy, isolation, and virtualization and how they relate to PaaS services and security trends and concerns such as user and resource isolation, side-channel vulnerabilities in multi-tenant environments, and protection of sensitive data.

Kim, Donghoon, Ning, Peng, Vouk, Mladen A..  2014.  A survey of common security vulnerabilities and corresponding countermeasures for SaaS. IEEE Globecom Workshop on Cloud Computing Systems, Networks and Applications (CCSNA 2014). :59-63.

Software as a Service (SaaS) is the most prevalent service delivery mode for cloud systems. This paper surveys common security vulnerabilities and corresponding countermeasures for SaaS. It is primarily focused on the work published in the last five years. We observe current SaaS security trends and a lack of sufficiently broad and robust countermeasures in some of the SaaS security area such as Identity and Access management due to the growth of SaaS applications.

Kim, Donghoon, Vouk, Mladen A..  2016.  Assessing Run-time Overhead of Securing Kepler. The International Conference on Computational Science, ICCS 2016. 80:2281-2286.

We have developed a model for securing data-flow based application chains. We have imple- mented the model in the form of an add-on package for the scientific workflow system called Kepler. Our Security Analysis Package (SAP) leverages Kepler's Provenance Recorder (PR). SAP secures data flows from external input-based attacks, from access to unauthorized exter- nal sites, and from data integrity issues. It is not a surprise that cost of real-time security is a certain amount of run-time overhead. About half of the overhead appears to come from the use of the Kepler PR and the other half from security function added by SAP.

Kim, Donghoon, Vouk, Mladen A..  2016.  Securing Software Application Chains in a Cloud. 2nd International Conference on Information Science and Security (ICISS) 2015. :1-4.

This paper presents an approach for securing software application chains in cloud environments. We use the concept of workflow management systems to explain the model. Our prototype is based on the Kepler scientific workflow system enhanced with security analytics package.

2015-10-11
Kim, Donghoon, Vouk, Mladen A..  2014.  A survey of common security vulnerabilities and corresponding countermeasures for SaaS. Workshop on Cloud Computing Systems, Networks, and Applications (CCSNA), Globecom. :59-63.

Software as a Service (SaaS) is the most prevalent service delivery mode for cloud systems. This paper surveys common security vulnerabilities and corresponding countermeasures for SaaS. It is primarily focused on the work published in the last five years. We observe current SaaS security trends and a lack of sufficiently broad and robust countermeasures in some of the SaaS security area such as Identity and Access management due to the growth of SaaS applications.