D2.1.2

D2.1.2: Report on requirements for Cloud SLA negotiation – Final

In cloud security the “one size fits all” principle does not always apply: different customers have different security requirements, therefore rigid/static cloud security Service Level Agreements (SLA’s) will usually under-/over-provision the customers’ security needs. This fact becomes more critical if we take into account the increasing number of Cloud Service
Providers (CSPs), and the trade-offs associated with security (in particular performance and price). Because, how to provide customers with the cloud security level that is “good enough” for their requirements?
SPECS proposes a user-centric framework to negotiate security SLA’s between customers and CSPs, with the purpose of finding a set of measurable security Service Level Objectives (SLO’s) that fulfills the customer’s requirements. SPECS’ Negotiation framework consists of security SLA evaluation techniques, protocols and architectures to deploy it on top of the SPECS Platform being created by WP1.
The present document (Deliverable 2.1.2) is an incremental update of Deliverable 2.1.1, and introduces a detailed analysis of five representative SPECS use cases from the negotiation perspective. This analysis allows discussing in further details requirements that were pre-identified in Deliverable 2.1.1 e.g., the re-negotiation process that takes place as part of the actions to remediate a detected SLA violation. This deliverable also discusses new requirements based on the research activities associated with the preliminary design of the Negotiation component (Task 2.2), including a machine-readable specification language for SPECS SLA’s.
Finally, thanks to the feedback/validation received from other Work Packages this document also includes a refined version of the requirements originally elicited in Deliverable 2.1.1. In particular we refer to the security SLO’s requirements introduced in the previous version of this document, which were empirically validated by the partners between M9 and M12.