A survey on cloud computing security

This paper contains a large literature review in the research field of Text Summarisation (TS) based on Human Language Technologies (HLT). TS helps users manage the vast amount of information available, by condensing documents' content and extracting the most relevant facts or topics included in them. The rapid development of emerging technologies poses new challenges to this research field, which still need to be solved. Therefore, it is essential to analyse its progress over the years, and provide an overview of the past, present and future directions, highlighting the main advances achieved and outlining remaining limitations. With this purpose, several important aspects are addressed within the scope of this survey. On the one hand, the paper aims at giving a general perspective on the state-of-the-art, describing the main concepts, as well as different summarisation approaches, and relevant international forums. Furthermore, it is important to stress upon the fact that the birth of new requirements and scenarios has led to new types of summaries with specific purposes (e.g. sentiment-based summaries), and novel domains within which TS has proven to be also suitable for (e.g. blogs). In addition, TS is successfully combined with a number of intelligent systems based on HLT (e.g. information retrieval, question answering, and text classification). On the other hand, a deep study of the evaluation of summaries is also conducted in this paper, where the existing methodologies and systems are explained, as well as new research that has emerged concerning the automatic evaluation of summaries' quality. Finally, some thoughts about TS in general and its future will encourage the reader to think of novel approaches, applications and lines to conduct research in the next years. The analysis of these issues allows the reader to have a wide and useful background on the main important aspects of this research field.

Text summarisation in progress: a literature review

A management server includes a configuration and management module processing server configuration information, including a VPN peer list and VLAN/subnet settings. The management server automatically calculates the VPN configuration information, including the VPN peer subnet route information identifying which of the subnets participating in the VPN are behind which of the routers and keys to establish VPN tunnels between those routers participating in the VPN. Each of the routers participating in the VPN includes a VPN tunnel with the other routers participating in the VPN, a set of data structures storing data identifying contact information for each of the subnets participating in the VPN, a combination of an IP address and port to reach one of routers that that subnet is behind, and a forwarding module to forward traffic between the subnets.

System and method for managing site-to-site vpns of a cloud managed network

An energy-aware service composition algorithm for multiple cloud-based IoT applications

The ultimate goal of cloud providers by providing resources is increasing their revenues. This goal leads to a selfish behavior that negatively affects the users of a commercial multicloud environment. In this paper, we introduce a pricing model and a truthful mechanism for scheduling single tasks considering two objectives: monetary cost and completion time. With respect to the social cost of the mechanism, i.e., minimizing the completion time and monetary cost, we extend the mechanism for dynamic scheduling of scientific workflows. We theoretically analyze the truthfulness and the efficiency of the mechanism and present extensive experimental results showing significant impact of the selfish behavior of the cloud providers on the efficiency of the whole system. The experiments conducted using real-world and synthetic workflow applications demonstrate that our solutions dominate in most cases the Pareto-optimal solutions estimated by two classical multiobjective evolutionary algorithms.

A Truthful Dynamic Workflow Scheduling Mechanism for Commercial Multicloud Environments

The cloud based delivery model for IT resources is revolutionizing the IT industry. Despite the marketing hype around “the cloud”, the paradigm itself is in a critical transition state from the laboratories to mass market. Many technical and business aspects of cloud computing need to mature before it is widely adopted for corporate use. For example, the inability to seamlessly burst between internal cloud and external cloud platforms, termed cloud bursting, is a significant shortcoming of current cloud solutions. Furthermore, the absence of a capability that would allow to broker between multiple cloud providers or to aggregate them into a composite service inhibits the free and open competition that would help the market mature. This paper describes the concepts of cloud bursting and cloud brokerage and discusses the open management and security issues associated with the two models. It also presents a possible architectural framework capable of powering the brokerage based cloud services that is currently being developed in the scope of OPTIMIS, an EU FP7 project.

/pdf/towards-secure-cloud-bursting-brokerage-and-aggregation-1y2a4tmu2a.pdf

Towards Secure Cloud Bursting, Brokerage and Aggregation

Cloud computing provides outsourcing of resources bringing economic benefits. The outsourcing however does not allow data owners to outsource the responsibility of confidentiality, integrity and access control, as it still is the responsibility of the data owner. As cloud computing is transparent to both the programmers and the users, it induces challenges that were not present in previous forms of distributed computing. Furthermore, cloud computing enables its users to abstract away from low-level configuration such as configuring IP addresses and routers. It creates an illusion that this entire configuration is automated. This illusion is also true for security services, for instance automating security policies and access control in cloud, so that individuals or end-users using the cloud only perform very high-level (business oriented) configuration. This paper investigates the security challenges posed by the transparency of distribution, abstraction of configuration and automation of services by performing a detailed threat analysis of cloud computing across its different deployment scenarios (private, bursting, federation or multi-clouds). This paper also presents a risk inventory which documents the security threats identified in terms of availability, integrity and confidentiality for cloud infrastructures in detail for future security risks. We also propose a methodology for performing security risk assessment for cloud computing architectures presenting some of the initial results.

Security risks and their management in cloud computing

Embodiments of the invention provide a method and system which allow for ready revocation of end user access rights by virtue of storing data in an encrypted form in a network environment, and using a trusted proxy server to re-encrypt the data itself to permit eventual decryption of the data by an authorised end user. However, if the end user's access rights are revoked then the trusted proxy does not perform the re-encryption of the data, and the end user is not then able to subsequently decrypt data stored in the network environment, even if it is able to access the data, without permission. Embodiments therefore have advantages that access control is decoupled from data confidentiality to provide scalability, and revocation of user access rights can be accomplished without requiring re- encryption of the stored data.

Method and system for network data access

summarization is defined as " The process of concisely restating the essential ideas of a text or passage, and synthesizing the ideas into an overarching, idea ". There is an increasing need of coming up with ideas that can perfectly generate summaries as there is large repository of data present online but to get to the right information is indeed very difficult. In order to achieve this task many summarizing techniques have been devised such as LEAD, MEAD and RANDOM. The paper proposes a new technique for information summarization that basically combines the rhetorical structure theory with the MEAD summarizer system as Mead is based totally based on mathematical calculation and lack a knowledge base Rhetorical Structure Theory is used to overcome this weakness and in the end the new summarizer system is evaluated against the original MEAD summarizer system exploit mainly two areas of information that are Financial Articles and Medline abstracts. In theory MRST should be better than Mead but in practice Mead came ahead of MRST and that's merely because of one reason and that is there is no true parser that completely implements the Rhetorical Structure Theory. The results show that Mead produces successful summaries 75% time for both short and long documents. Incase of MRST it produces successful summaries for short documents 70% of the time and for long documents it produces successful summaries 65% of the time, as the size of the document increases the performance of MRST deteriorate. The main finding of the work is if we could come up with a parser that comprehensively implement the rhetorical structure theory then we would be able to come up the summarizer system that would be better then MEAD.

MRST: A New Technique For Information Summarization.

A broadcasting server connectable to a plurality of user devices and connectable to or comprising a key distribution centre, the broadcasting server comprising a processor and a memory, the broadcasting server configured to generate a plurality of key parts which together form an encryption key and/or the memory of the broadcasting server includes a plurality of key parts which together form an encryption key, the broadcasting sever is configured to: send a first key part to a first user device of said plurality of user devices, the first key part being one of the plurality of key parts, send a second key part to a second user device of said plurality of user devices, the first key part being one of the plurality of key parts, and encrypt data for broadcast with the encryption key and to broadcast the encrypted data to said plurality of user devices.

Afnan Ullah Khan

Papers

Towards Secure Cloud Bursting, Brokerage and Aggregation

Security risks and their management in cloud computing

Method and system for network data access

MRST: A New Technique For Information Summarization.

Keys for protecting user access to media