Revisiting Security Ontologies
Contemporary exploration of all stages of
service models clearly proves the immense significance of
#8213;Security in Cloud Computing#8214;, which being as obtuse as
it is pertinent, demands attention. An analysis of recent
studies depicts certain useful approaches for the fulfillment
of security objective; however, these advancements are
largely inconsistent with the forays of research in other
fields. Numerous technologies amalgamate in the
implementation of cloud computing security, one of which
is ontology. In this paper, a critical study of security
ontologies has been accomplished in which these ontologies
have been further classified into three major categories:
Generalized, Specific with sub categories: Web Services
(WS) and Web Ontology Language (OWL) based Security
Ontologies, Network Security Ontologies, Security
Requirements Ontologies, Risk based Security Ontologies
and Application based Security Ontologies; and
Miscellaneous. The present research aims to firstly,
classify the above-said ontologies and thereby offer a
prismatic analysis of the same. By using ontology, one can
aim at securing the cloud through security
countermeasures with consideration of applicable threats
and security solutions deployed to support appropriate
security services and objectives.
Keywords: Cloud Computing, Security Ontology, Cloud Security, Cloud Security Ontology.
Download Full-Text
ABOUT THE AUTHORS
Vaishali Singh
Ms. Vaishali Singh is presently working as an Research Scholar in the Department of Computer Science, Jagannath University, Jaipur, India. She has an excellent academic background right from the school level. Under the Institute-Industry linkage program, she delivers expert lectures on various areas of Computer Science. She has contributed three research papers in reputed journals and national conferences. Her research interest includes: Cloud Security, Cloud Security vulnerabilities, threats and countermeasures, Access control, Identity measurement etc.
Santosh K. Pandey
Dr. Santosh K. Pandey is presently working as Scientist 'C' with the department of Electronics & Information Technology, Ministry of Communications & IT, Government of India New Delhi. Before joining DeitY he was a Faculty of Information Technology with Board of Studies, The Institute of Chartered Accountants of India (Set up by an Act of Parliament) New Delhi. Prior to this, he worked with the Department of Computer Science, Jamia Millia Islamia (A Central University) New Delhi and Directorate of Education, Govt. of NCT of Delhi. He has a rich Academics & Research experience in various areas of Computer Science. His research interest includes: Software Security, Requirements Engineering, Security Policies and Standards, Formal Methods, Cloud Computing, Security Metrics, Vulnerability Assessment etc. He has published around 46 high quality research papers and articles in various acclaimed International/National Journals (including IEEE, ACM, CSI) and Proceedings of the reputed International/ National Conferences (including Springer). Out of these publications, most of them have good citation records. He has been nominated in the board of editors/reviewers of various peer-reviewed and refereed Journals. In addition, he has also served as a Program Committee Member of several reputed conferences in India as well as abroad. He has also been designated in various academic/research committees by the government organizations as well as software companies as a subject expert.
Vaishali Singh
Ms. Vaishali Singh is presently working as an Research Scholar in the Department of Computer Science, Jagannath University, Jaipur, India. She has an excellent academic background right from the school level. Under the Institute-Industry linkage program, she delivers expert lectures on various areas of Computer Science. She has contributed three research papers in reputed journals and national conferences. Her research interest includes: Cloud Security, Cloud Security vulnerabilities, threats and countermeasures, Access control, Identity measurement etc.
Santosh K. Pandey
Dr. Santosh K. Pandey is presently working as Scientist 'C' with the department of Electronics & Information Technology, Ministry of Communications & IT, Government of India New Delhi. Before joining DeitY he was a Faculty of Information Technology with Board of Studies, The Institute of Chartered Accountants of India (Set up by an Act of Parliament) New Delhi. Prior to this, he worked with the Department of Computer Science, Jamia Millia Islamia (A Central University) New Delhi and Directorate of Education, Govt. of NCT of Delhi. He has a rich Academics & Research experience in various areas of Computer Science. His research interest includes: Software Security, Requirements Engineering, Security Policies and Standards, Formal Methods, Cloud Computing, Security Metrics, Vulnerability Assessment etc. He has published around 46 high quality research papers and articles in various acclaimed International/National Journals (including IEEE, ACM, CSI) and Proceedings of the reputed International/ National Conferences (including Springer). Out of these publications, most of them have good citation records. He has been nominated in the board of editors/reviewers of various peer-reviewed and refereed Journals. In addition, he has also served as a Program Committee Member of several reputed conferences in India as well as abroad. He has also been designated in various academic/research committees by the government organizations as well as software companies as a subject expert.