Skip to main content
SpringerLink
Log in

Software-defined systems support for secure cloud computing based on data classification

  • Published:
Annals of Telecommunications Aims and scope Submit manuscript

Abstract

The newly emerged Software-Defined Systems (SDSs) promised to reduce computing systems management complexity. This can be achieved by separating the control plane from the data plane. On the other hand, cloud computing usage proliferation creates new challenges for managing user data efficiently. Such challenges include data ownership, data access policies, data privacy and integrity, and the availability of storage space. Using encryption-based solution is effective but very costly. Other solutions that used data classification based on the data priority can mitigate the high cost problem for data encryption. However, managing such data classification systems is very complex. In this paper, we are introducing a Software-Defined System-based solution for deploying efficient data classification framework. Our results show the superiority of the proposed model.

This is a preview of subscription content, log in via an institution to check access.

Access this article

Log in via an institution

Price excludes VAT (USA)
Tax calculation will be finalised during checkout.

Instant access to the full article PDF.

Institutional subscriptions

Fig. 1
Fig. 2
Fig. 3
Fig. 4
Fig. 5
Fig. 6
Fig. 7

Similar content being viewed by others

Notes

  1. 1 https://cloudsecurityalliance.org/.

References

  1. Mell P, Grance T (2011) The nist definition of cloud computing. Technical report, Computer Security Division, Information Technology Laboratory, National Institute of Standards and Technology Gaithersburg

  2. Guzhov V I, Bazhenov K O, Ilinykh S P, Vagizov A R (2011) Cloud computing security issues. In: The 2-nd Indo-Russian joint workshop on computational intelligence and modern heuristics in automation and robotics, pp 128–133

  3. Ogigȧu-Neamṫiu F (2012) Cloud computing security issues. J Def Resour Manag (JoDRM) 02:141–148

    Google Scholar 

  4. Jiyi W, Ping L, Ge X, Ya W, Jianqing F (2010) Cloud storage as the infrastructure of cloud computing. In: 2010 International conference on intelligent computing and cognitive informatics (ICICCI). IEEE, pp 380–383

  5. Duan X, Wang X (2015) Authentication handover and privacy protection in 5g hetnets using software-defined networking. IEEE Commun Mag 53(4):28–35

    Article  Google Scholar 

  6. Jararweh Y, Al-Ayyoub M, Ala’ Darabseh EB, Vouk M, Rindos A (2016) Software defined cloud: survey, system and evaluation. Future Gen Comput Syst 58:56–74

    Article  Google Scholar 

  7. Brindha T, Shaji R S, Rajesh G P (2013) A survey on the architectures of data security in cloud storage infrastructure. Eng Technol (IJET) 5:1108–1114

    Google Scholar 

  8. Kamara S, Lauter K (2010) Cryptographic cloud storage. In: Financial cryptography and data security. Springer, pp 136–149

  9. Wei Y, Jianpeng Z, Junmao Z, Wei Z, Xinlei Y (2012) Design and implementation of security cloud storage framework. In: 2012 Second international conference on instrumentation, measurement, computer, communication and control (IMCCC). IEEE, pp 323–326

  10. Shojafar M, Cordeschi N, Baccarelli E (2016) Energy-efficient adaptive resource management for real-time vehicular cloud services. IEEE Trans Cloud Comput PP(99):1–1

    Google Scholar 

  11. Baccarelli E, Cordeschi N, Mei A, Panella M, Shojafar M, Stefa J (2016) Energy-efficient dynamic traffic offloading and reconfiguration of networked data centers for big data stream mobile computing: review, challenges, and a case study. IEEE Netw 30(2):54–61

    Article  Google Scholar 

  12. Borgmann M, Waidner M (2012) On the security of cloud storage services. Fraunhofer-Verlag

  13. Grossman RL (2009) The case for cloud computing. IT Prof 11(2):23–27

    Article  Google Scholar 

  14. Rindos A, Vouk M, Jararweh Y (2014) The virtual computing lab (vcl): an open source cloud computing solution designed specifically for education and research. Int J Serv Sci Manag Eng Technol (IJSSMET) 5(2):51–63

    Article  Google Scholar 

  15. Darabseh M A-A A, Jararweh Y, Benkhelifa E, Vouk M, Sdsecurity A R (2015) A software defined security experimental framework. In: IEEE ICC 2014 Workshop on cloud computing systems, networks, and applications (CCSNA)

  16. Darabseh A, Al-Ayyoub M, Jararweh Y, Benkhelifa E, Vouk M, Rindos A (2015) Sdstorage: a software defined storage experimental framework. In: 2015 IEEE International conference on cloud engineering (IC2E). IEEE, pp 341–346

  17. Blair G, Schmidt D, Taconet C (2016) Middleware for internet distribution in the context of cloud computing and the internet of things. Ann Telecommun 71(3):87–92

    Article  Google Scholar 

  18. Lim L, Marie P, Conan D, Chabridon S, Desprats T, Manzoor A (2016) Enhancing context data distribution for the internet of things using qoc-awareness and attribute-based access control. Ann Telecommun 71 (3):121–132

    Article  Google Scholar 

  19. Kaufman LM (2009) Data security in the world of cloud computing. IEEE Secur Priv 7(4):61–64

    Article  Google Scholar 

  20. Lin H-Y, Tzeng W-G (2012) A secure erasure code-based cloud storage system with secure data forwarding. IEEE Trans Parallel Distrib Syst 23(6):995–1003

    Article  Google Scholar 

  21. Seiger R, Groß S, Schill A (2011) Seccsie: a secure cloud storage integrator for enterprises. In: 2011 IEEE 13th Conference on commerce and enterprise computing (CEC). IEEE, pp 252– 255

  22. Somani U, Lakhani K, Mundra M (2010) Implementing digital signature with rsa encryption algorithm to enhance the data security of cloud in cloud computing. In: 2010 1st International conference on parallel distributed and grid computing (PDGC). IEEE, pp 211–216

  23. Zhang Q, Luo B, Shi W, Almoharib AM (2013) Cloudsafe: storing your digital asset in the cloud-based safe. Technical report, Wayne State University, Detroit, USA

  24. Khalil I M, Khreishah A, Azeem M (2014) Cloud computing security: a survey. Computers 3(1):1–35

    Article  Google Scholar 

  25. Khalil IM, Khreishah A, Bouktif S, Ahmad A (2013) Security concerns in cloud computing. In: 2013 Tenth International conference on information technology: new generations (ITNG), pp 411– 416

  26. NIST-FIPS Standard Announcing the advanced encryption standard (AES). Federal Information Processing Standards Publication, November 2001. Processing Standards Publication 197

  27. FIPS PUB Secure hash standard (shs). 2012

  28. Jain R, Paul S (2013) Network virtualization and software defined networking for cloud computing: a survey. IEEE Commun Mag 51(11):24–31

    Article  Google Scholar 

  29. Dixon C, Olshefski D, Jain V, DeCusatis C, Felter W, Carter J, Banikazemi M, Mann V, Tracey JM, Recio R (2014) Software defined networking to support the software defined environment. IBM J Res Develop 58(2/3):3:1–3:14

    Article  Google Scholar 

  30. Openstack http://www.openstack.org/ [Online; accessed Oct-2014]

  31. Hu F, Hao Q, Bao K (2014) A survey on software defined networking (sdn) and openflow: From concept to implementation. IEEE Commun Surv Tutor PP(99):1–1

    Google Scholar 

  32. Foster N, Guha A, Reitblatt M, Story A, Freedman MJ, Katta NP, Monsanto C, Reich J, Rexford J, Schlesinger C, Walker D, Harrison R (2013) Languages for software-defined networks. IEEE Commun Mag 51(2):128–134

    Article  Google Scholar 

  33. Kotani D, Suzuki K, Shimonishi H (2012) A design and implementation of openflow controller handling ip multicast with fast tree switching. In: 2012 IEEE/IPSJ 12th International symposium on applications and the internet (SAINT), pp 60–67

  34. Bozakov Z, Autoslice PP (2012) Automated and scalable slicing for software-defined networks. In: Proceedings of the 2012 ACM Conference on CoNEXT student workshop, CoNEXT Student ’12. ACM, New York, pp 3–4

    Book  Google Scholar 

  35. Donatini L, Garroppo RG, Giordano S, Procissi G, Roma S, Foddis G, Topazzi S (2014) Advances in lte network monitoring: a step towards an sdn solution. In: 2014 17th IEEE Mediterranean electrotechnical conference (MELECON), pp 339–343

  36. Tootoonchian A, Gorbunov S, Ganjali Y, Casado M, Sherwood R (2012) On controller performance in software-defined networks. In: Proceedings of the 2Nd USENIX conference on hot topics in management of internet, cloud, and enterprise networks and services, Hot-ICE’12. USENIX Association, Berkeley, pp 10–10

    Google Scholar 

  37. Luo T, Tan H-P, Quan PC, Law YW, Jin J (2012) Enhancing responsiveness and scalability for openflow networks via control-message quenching. In: 2012 International conference on ICT convergence (ICTC), pp 348–353

  38. Kanizo Y, Hay D, Keslassy I (2013) Palette: distributing tables in software-defined networks. In: 2013 Proceedings IEEE INFOCOM, pp 545–549

  39. Yannan H, Wang W, Gong X, Que X, Cheng S (2012) Balanceflow: controller load balancing for openflow networks. In: 2012 IEEE 2nd International conference on cloud computing and intelligent systems (CCIS), vol 02, pp 780–785

  40. Wu F, Sun G (2013) Software-defined storage. Report, University of Minnesota

  41. Transform your storage for the software defined data center with emc vipr controller. white paper H11749.4, EMC Corporation (2015)

  42. Choose a storage platform that can handle big data and analytics. Solution Brief TSS03158-USEN-01, IBM Corporation (2014)

  43. Transform data center with vipr software-defined storage. white paper h11749.4, EMC Corporation (2014)

  44. Yaseen Q, Althebyan Q, Jararweh Y (2013) Pep-side caching: an insider threat port. In: 2013 IEEE 14th International conference on information reuse and integration (IRI). IEEE, pp 137–144

  45. Almodawar A, Al-Ayyoub M, Mohammad S (2013) Security-aware placement and migration algorithm in iaas interclouds. In: The Fourth international conference on information and communication systems (ICICS 2013)

  46. Vizardl M (2013) What software-defined security could mean for the channel. http://www.channelinsider.com/security/what-software-defined-security-could-mean-for-the-channel.html [Online; accessed Oct-2014]

  47. Software defined perimeter. white paper, Cloud Security Alliance (2013)

  48. Kerpan P Software defined data centers will change the way enterprises migrate and deploy to cloud-based applications. Report, CohesiveFT

  49. Software defined data center (sddc) definition. white paper, DMTF (2014)

  50. Defining moment:the software-defined data center. white paper, CDW LLC. (2014)

  51. Darabseh A, Al-Ayyoub M, Jararweh Y, Benkhelifa E, Vouk M, Rindos A Sddc: a software defined datacenter experimental framework

  52. Ko RKL, Jagadpramana P, Mowbray M, Pearson S, Kirchberg M, Liang Q, Lee BS (2011) Trustcloud: a framework for accountability and trust in cloud computing. In: 2011 IEEE World congress on services (SERVICES). IEEE, pp 584–588

  53. Tawalbeh L, Darwazeh NS, Al-Qassas RS, AlDosari F (2015) The 6th international conference on ambient systems, networks and technologies (ant-2015), the 5th international conference on sustainable energy information technology (seit-2015) a secure cloud computing model based on data classification. Procedia Comput Sci 52:1153–1158

    Article  Google Scholar 

  54. Jararweh Y, Al-Ayyoub M, Ala’ Darabseh EB, Vouk M, Rindos A (2015) Sdiot: a software defined based internet of things framework. J Ambient Intell Human Comput 6(4):453–461

    Article  Google Scholar 

  55. Al-Ayyoub M, Bousselham A, Jararweh Y, Darabseh A, Benkhelifa E (2015) Software defined based smart grid architecture. In: Second international workshop on internet of things, systems, management and security (IoTSMS)

Download references

Acknowledgments

The authors would like to thank Deanship of Scientific Research at the Umm Al-Qura University (project # 43408022) for the financial support.

Author information

Authors and Affiliations

  1. Jordan University of Science and Technology, Irbid, Jordan

    Yaser Jararweh, Mahmoud Al-Ayyoub, Lo’ai Tawalbeh & Ala’ Darabseh

  2. Computer Engineering Department, Umm-Alqura University, Makkah, Saudi Arabia

    Lo’ai Tawalbeh

  3. West Virginia University, Morgantown, WV, USA

    Houbing Song

Authors
  1. Yaser Jararweh
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Mahmoud Al-Ayyoub
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Lo’ai Tawalbeh
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Ala’ Darabseh
    View author publications

    You can also search for this author in PubMed Google Scholar

  5. Houbing Song
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Yaser Jararweh.

Electronic supplementary material

Below is the link to the electronic supplementary material.

(JPG 21.9 KB)

(JPG 38.6 KB)

(JPG 31.4 KB)

(JPG 33.7 KB)

(JPG 45.6 KB)

(JPG 32.2 KB)

Rights and permissions

Reprints and permissions

About this article

Check for updates. Verify currency and authenticity via CrossMark

Cite this article

Jararweh, Y., Al-Ayyoub, M., Tawalbeh, L. et al. Software-defined systems support for secure cloud computing based on data classification. Ann. Telecommun. 72, 335–345 (2017). https://doi.org/10.1007/s12243-016-0549-0

Download citation

  • Received:

  • Accepted:

  • Published:

  • Issue Date:

  • DOI: https://doi.org/10.1007/s12243-016-0549-0

Keywords

Search

Navigation