Cloud computing is a grid based application which eases "On demand network access to a shared pool of computing recourses". This environment strives to be secure, scalable and customized with guaranteed Quality of Service (QoS). However, QoS is guaranteed through fulfillment of non-functional requirements like Security, Scalability, Mobility and Virtualization in Cloud computing System. In this paper we proposed "the Open Cloud Security Architecture (OCSA) algorithm" is an approach to fulfillment of our goal. To meet the computing demands of everyday operations like Nonfunctional requirements, here we have introduced OCSA to achieve that first security, the misuse case and Attack Tree analysis posed threat and Attack Surface of any Cloud, Second scalability to overcome network traffic congestion and Denial of Service (DoS) because of rapid growth of customers and Third, Storage and Service providing consequences arise and mitigated to achieve Mobility and Virtualization. The above unpredictable constraints can be modeled through DREAD analysis, So that above consequences partly annihilated and use of Cloud can be extended by adding more capacity on demand.
[1]
Alwyn Roshan Pais,et al.
Security-aware Software Development Life Cycle (SaSDLC) - Processes and tools
,
2009,
2009 IFIP International Conference on Wireless and Optical Communications Networks.
[2]
Andreas L. Opdahl,et al.
Eliciting security requirements with misuse cases
,
2004,
Requirements Engineering.
[3]
Alwyn R. Pais,et al.
Suraksha: A Security Designers' Workbench
,
2009
.
[4]
Bruce Schneier,et al.
MODELING SECURITY THREATS
,
1999
.
[5]
Andreas L. Opdahl,et al.
Templates for Misuse Case Description
,
2001
.
[6]
Susan Elliott Sim,et al.
A Comparative Evaluation of Three Approaches to Specifying Security Requirements
,
2006
.
[7]
Asoke Talukder,et al.
Architecting Secure Software Systems
,
2008
.