D2.2.1: Report on conceptual framework for Cloud SLA negotiation – Initial

The paucity of comprehensive approaches to specify, assess and quantitatively reason about security in cloud systems is a major impediment that users encounter when they decide to migrate their key applications to the cloud. On one hand, the CSPs are trying to convince End users to trust in the security of their provided services. On the other hand, users should themselves be able to assess and validate the security claims from the CSPs and then select the best provider that suits their security requirements. SPECS addresses this topic by providing a comprehensive framework to support the negotiation of the minimum level of security requested by an End-user when using cloud services. The level of security agreed between a user and a cloud service provider is formally defined within a Security Level Agreement (SLA). SPECS also guarantees the fulfillment of the SLA by providing monitoring and enforcement capabilities.
This deliverable is part of WP2, which provides a comprehensive framework for the negotiation and renegotiation of SLAs. This deliverable D2.2.1 provides an initial report on the conceptual framework for the negotiation of SLAs. This includes the specification of the format of an SLA, the definition of the steps involved in the negotiation and the initial architecture of the Negotiation module, including also its relationship with the rest of the modules of the SPECS framework. On top of that, D2.2.1 also presents mechanisms to transform EndBusers’ security requirements into measurable and quantifiable service level objectives (SLOs) and associated metrics. The creation of a list of different service offers and the evaluation of the security level provided by each offer is also part of this deliverable. The deliverable also includes an initial set of algorithms capable of providing a comprehensive security assessment to help CSCs in their decisionBmaking.
The next iteration of this deliverable (D2.2.2) will refine the D2.1.2 approaches, also including details of the negotiation and renegotiation protocols. A description of the API for interactions among the Negotiation components and the rest of the SPECS framework will also be presented.