Zusammenfassung
Dieses Kapitel beschreibt testbasierte Messverfahren, die die dynamische Zertifizierung unterstützen. Zu diesem Zweck werden Grundbegriffe des Testens eingeführt sowie existierende Forschungsarbeiten im Umfeld testbasierter Messmethoden zur Unterstützung der dynamischen Zertifizierung vorgestellt. Schließlich werden die Bausteine des Frameworks skizziert, das im Rahmen des NGCert-Projektes entwickelt wurde um die Implementierung kontinuierlicher, testbasierte Messmethoden zu unterstützen.
This chapter describes test-based approaches to support dynamic certification of cloud services. To that end, we define basic terminology of testing and outline current research efforts which aims to support dynamic certification through testing. Finally, we desribe the building blocks of the framework developed in the course of the NGCert project which guides the design of continuous tests to support dynamic certification.
This is a preview of subscription content, log in via an institution.
Preview
Unable to display preview. Download preview PDF.
Literaturverzeichnis
International Organisation for Standardization (2010) “IEEE, Systems and Software Engineering--Vocabulary.” ISO/IEC/IEEE 24765: 2010 (E)) Piscataway, NJ: IEEE computer society, Tech. Rep.
International Software Testing Qualifications Board (2015) Standard Glossary of Terms used in Software Testing - Version 3.1.
Albelooshi, Bushra, Khaled Salah, Thomas Martin, and Ernesto Damiani (2015) “Experimental Proof: Data Remanence in Cloud VMs.” 8th IEEE International Conference on Cloud Computing (CLOUD).
Anisetti, Marco, Claudio A Ardagna, and Ernesto Damiani (2013) “Security certification of composite services: A test-based approach.” IEEE 20th International Conference on Web Services (ICWS).
Anisetti, Marco, Claudio A Ardagna, Ernesto Damiani, Filippo Gaudenzi, and Roberto Veca (2015) “Toward Security and Performance Certification of Open Stack.” IEEE 8th International Conference on Cloud Computing (CLOUD).
Anisetti, Marco, Claudio Agostino Ardagna, Filippo Gaudenzi, and Ernesto Damiani (2016) “A certification framework for cloud-based services.” Proceedings of the 31st Annual ACM Symposium on Applied Computing.
Anisetti, Marco, Claudio Ardagna, Ernesto Damiani, and Filippo Gaudenzi (2017) “A semi-automatic and trustworthy scheme for continuous cloud service certification.” IEEE Transactions on Services Computing.
Bleikertz, Sören, Matthias Schunter, Christian W Probst, Dimitrios Pendarakis, and Konrad Eriksson (2010) “Security audits of multi-tier virtual infrastructures in public infrastructure clouds.” Proceedings of the 2010 ACM workshop on Cloud computing security workshop.
Felderer, Michael, Matthias Büchler, Martin Johns, Achim D Brucker, Ruth Breu, and Alexander Pretschner (2016) “Security Testing: A Survey.” Advances in Computers 101:1-51.
Gonzales, Daniel, Jeremy Kaplan, Evan Saltzman, Zev Winkelman, and Dulani Woods (2015) “Cloud-trust-a security assessment model for infrastructure as a service (IaaS) clouds.” IEEE Transactions on Cloud Computing.
Group, OpenStack Security (2017) https://wiki.openstack.org/wiki/Security.
Houlihan, Ryan, Xiaojiang Du, Chiu C Tan, Jie Wu, and Mohsen Guizani (2014) “Auditing cloud service level agreement on VM CPU speed.” IEEE International Conference on Communications (ICC).
Huang, Qiang, Lin Ye, Xinran Liu, and Xiaojiang Du (2013) “Auditing cpu performance in public cloud.” IEEE 9th World Congress on Services (SERVICES).
Juels, Ari, and Alina Oprea (2013) “New approaches to security and availability for cloud data.” Communications of the ACM 56 (2):64-73.
Koeppe, Falk, and Joerg Schneider (2010) “Do you get what you pay for? using proof-of-work functions to verify performance assertions in the cloud.” IEEE Second International Conference on Cloud Computing Technology and Science (CloudCom).
Stephanow, Philipp, and Christian Banse (2017) “Evaluating the performance of continuous test-based cloud service certification.” IEEE/ACM International Symposium on Cluster, Cloud, and Grid Computing (CCGrid).
Stephanow, Philipp, Gaurav Srivastava, and Julian Schütte (2016) “Test-based cloud service certification of opportunistic providers.” IEEE 9th International Conference on Cloud Computing (CLOUD).
Ullah, Kazi Wali, Abu Shohel Ahmed, and Jukka Ylitalo (2013) “Towards building an automated security compliance tool for the cloud.” 12th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom).
Utting, Mark, and Bruno Legeard (2010) Practical model-based testing: a tools approach: Morgan Kaufmann.
Ye, Lin, Hongli Zhang, Jiantao Shi, and Xiaojiang Du (2012) “Verifying cloud service level agreement.” IEEE Global Communications Conference (GLOBECOM).
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2018 Springer Fachmedien Wiesbaden GmbH
About this chapter
Cite this chapter
Stephanow, P., Banse, C. (2018). Testbasierte Messmethoden. In: Krcmar, H., Eckert, C., Roßnagel, A., Sunyaev, A., Wiesche, M. (eds) Management sicherer Cloud-Services. Springer Gabler, Wiesbaden. https://doi.org/10.1007/978-3-658-19579-3_17
Download citation
DOI: https://doi.org/10.1007/978-3-658-19579-3_17
Published:
Publisher Name: Springer Gabler, Wiesbaden
Print ISBN: 978-3-658-19578-6
Online ISBN: 978-3-658-19579-3
eBook Packages: Business and Economics (German Language)