Security Governance in Multi-cloud Environment: A Systematic Mapping Study

Cloud computing has revolutionized delivery of IT solutions increasing economic advantages, robustness, scalability, elasticity and security. Nowadays to achieve their cloud goals, organizations are increasingly move towards enabling multi-cloud environments which promised to support very large-scale, worldwide, distributed applications using multiple and independent cloud environments. However, given their complexity and distribution, multi-cloud has to face several key challenges around security and governance such as interoperability, portability, provisioning, elasticity, high availability and security. Therefore, these challenges increase the needs of security governance in such environments. Although some researches have been realized in the multi-cloud security domain, it becomes imperative to asses the current state of research and practice of its security governance. This paper aims to categorize the existing works related to security governance in multi-cloud environments by applying a systematic mapping study methodology in order toidentify trends and future directions. Our results prove that multi-clouds security governance seems to be a promising areain multi-cloud research and evaluation.

[1]  James A. Thom,et al.  Cloud Computing Security: From Single to Multi-clouds , 2012, 2012 45th Hawaii International Conference on System Sciences.

[2]  Hong Zhu,et al.  Lightweight key management on sensitive data in the cloud , 2013, Secur. Commun. Networks.

[3]  Kai Petersen,et al.  Systematic Mapping Studies in Software Engineering , 2008, EASE.

[4]  Hiroyuki Sato,et al.  Data Management Approach for Multiple Clouds Using Secret Sharing Scheme , 2014, 2014 17th International Conference on Network-Based Information Systems.

[5]  Andrzej M. Goscinski,et al.  Multi-cloud application execution and data management , 2014, Int. J. Cloud Comput..

[6]  Antonio Brogi,et al.  SeaClouds: a European project on seamless management of multi-cloud applications , 2014, SOEN.

[7]  Antonio Brogi,et al.  EU Project SeaClouds - Adaptive Management of Service-based Applications Across Multiple Clouds , 2014, CLOSER.

[8]  Cees T. A. M. de Laat,et al.  Federated Access Control in Heterogeneous Intercloud Environment: Basic Models and Architecture Patterns , 2014, 2014 IEEE International Conference on Cloud Engineering.

[9]  Francesco D'Andria,et al.  Cloud4SOA: Multi-cloud Application Management Across PaaS Offerings , 2012, 2012 14th International Symposium on Symbolic and Numeric Algorithms for Scientific Computing.

[10]  T. Grance,et al.  SP 800-144. Guidelines on Security and Privacy in Public Cloud Computing , 2011 .

[11]  Nikos Loutas,et al.  Cloud4SOA: A Semantic-Interoperability PaaS Solution for Multi-cloud Platform Management and Portability , 2013, ESOCC.

[12]  Daniel Mellado,et al.  ISGcloud: a Security Governance Framework for Cloud Computing , 2015, Comput. J..

[13]  Petter Svärd,et al.  Self-management Challenges for Multi-cloud Architectures (Invited Paper) , 2011 .

[14]  Daniel Mellado,et al.  A Systematic Review of Information Security Governance Frameworks in the Cloud Computing Environment , 2012, J. Univers. Comput. Sci..

[15]  Hiroyuki Sato,et al.  A File-Distribution Approach to Achieve High Availability and Confidentiality for Data Storage on Multi-cloud , 2013, 2013 IEEE 37th Annual Computer Software and Applications Conference Workshops.

[16]  Marcos Vinicius Naves Bedo,et al.  MSSF: A Step towards User-Friendly Multi-cloud Data Dispersal , 2014, 2014 IEEE 7th International Conference on Cloud Computing.

[17]  Jörg Schwenk,et al.  Security Prospects through Cloud Computing by Adopting Multiple Clouds , 2011, 2011 IEEE 4th International Conference on Cloud Computing.

[18]  Harry G. Perros,et al.  A novel trust management framework for multi-cloud environments based on trust service providers , 2014, Knowl. Based Syst..

[19]  Schahram Dustdar,et al.  Virtualizing Software and Humans for Elastic Processes in Multiple Clouds- a Service Management Perspective , 2012, Int. J. Next Gener. Comput..

[20]  Mazleena Salleh,et al.  STATE OF THE ART SURVEY ON SECURITY ISSUE IN CLOUD COMPUTING ARCHITECTURES, APPROACHES AND METHODS , 2015 .

[21]  Kumud Wasnik,et al.  A Survey on Security Issues and Security Schemes for Cloud and Multi-Cloud Computing , 2015 .

[22]  Muttukrishnan Rajarajan,et al.  A scalable and dynamic application-level secure communication framework for inter-cloud services , 2015, Future Gener. Comput. Syst..