Abstract
Cloud computing is an emerging computing paradigm aimed at running services over the internet to provide scalability and flexibility. The advantages in using the cloud for start-up and small businesses that lack infrastructure have been shown to far outweigh the disadvantages. Cloud platform services, also known as Platform as a Service (PaaS), provide a computing platform or solution stack on which software can be developed for later deployment in a cloud. However, there are a number of security challenges because users of the cloud have to rely on third-party companies to provide confidentiality, integrity and availability. Geoprocessing is the manipulation of geographic information, ranging from simple feature overlays and geocoding to raster processing and advanced climate modelling. The Open Geospatial Consortium's Web Processing Service defines a standardized interface that facilitates the publishing of geospatial processes. Parallelization and distribution of geoprocessing services have received much attention lately, including running them in a cloud. However, work on the security aspects of geoprocessing in a cloud is limited. In this paper, we analyse security mechanisms and Service Level Agreements of PaaS clouds and present results of experiments run in PaaS clouds. The implications of these results for the development of geoprocessing services in a PaaS cloud are discussed. Finally, recommendations for future work are presented.
Similar content being viewed by others
References
Amazon EC2 (2009) Amazon EC2 service level agreement. At: http://aws.amazon.com/ec2-sla. Accessed 7 July 2009
Brauner J, Foerster T, Schaeffer B, Baranski B (2009) Towards a research agenda for geoprocessing services, 12th AGILE International Conference on Geographic Information Science. Leibniz Universität Hannover, Germany
Cloud Security Alliance (2009) Security guidance for critical areas of focus in cloud computing. At: http://www.cloudsecurityalliance.org. Accessed 9 June 2010
Coetzee S (2012) Reference model for a data grid approach to address data in a dynamic SDI. Geoinformatica 16(1):111–129
Coetzee S, Bishop J (2009) An analysis of technology choices for data grids in a spatial data infrastructure. In: van Loenen B, Zevenbergen J, Besemer J (eds). Spatial data infrastructure convergence: research, emerging trends, and critical assessment. Nederlandse Commissie voor Geodesie/Netherlands Geodetic Commission, 48, 2009
Everett C (2009) Cloud computing—a question of trust. Comput Fraud Secur 2009(6):5–7
GoGrid (2009a) Service Level Agreement. At: http://www.gogrid.com/legal/sla.php. Accessed 8 July 2009
GoGrid (2009b) Terms of Service. At: http://www.gogrid.com/legal/terms-service.php. Accessed 8 July 2009
Google Apps (2007) Comprehensive review of security and vulnerability protections for Google Apps. At: www.google.com/a/help/intl/en/admins/pdf/ds_gsa_apps_whitepaper_0207.pdf. Accessed 9 June 201
Goth G (2011) Public sector clouds beginning to blossom: efficiency, new culture trumping security fears. IEEE Internet Comput 15(6):7–9
Grobauer B, Walloschek T, Stocker E (2011) Understanding cloud-computing vulnerabilities. IEEE Security & Privacy 99(2):50–57
Grossman RL (2009) The case for cloud computing. IT Prof 11(2):23–27
Hutchinson C, Ward J, Castilon K (2009) Navigating the next-generation application architecture. IT Prof 11(2):18–22
InfoSecurity (2009) Three quarters of organisations to increase security for cloud computing. At: http://www.infosec.co.uk/page.cfm/Action=Press/PressID=1242. Accessed 22 February 2009
Kaufman LM (2009) Data security in the world of cloud computing. IEEE Secur Priv 7(4):61–64
Knights M (2009) Can security kill cloud computing? At: http://www.itpro.co.uk/610299/can-security-concerns-kill-cloud-computing. Accessed 9 June 2010
Ludwig B (2009) A comparison of PaaS clouds with a detailed reference to security, BSc Hons research report. University of Pretoria, South Africa
Microsoft Windows Azure (2009) Azure services platform. At: http://www.microsoft.com/azure/data.mspx. Accessed 9 June 2010
Open Cloud Consortium (2009) Open cloud consortium. At: http://www.opencloudconsortium.org. Accessed 9 June 2010
Open Cloud Manifesto (2009) Open cloud manifesto. At: http://www.opencloudmanifesto.org. Accessed 9 June 2010
Open Geospatial Consortium (2007) OpenGIS web processing service, reference number OGC 05-007r7, versions 1.0.0, Open Geospatial Consortium, Inc.
Pfleeger CP, Pfleeger SL (2007) Security in computing, 4th edn. Prentice Hall, Upper Saddle River
Sankar (2010) Security Risks of Moving to the Cloud – Risk Assessment (Part 1). At: http://cloudshoring.wordpress.com/2010/10/05/security-risks-of-moving-to-the-cloud-risk-assessment-part-1. Accessed 5 January 2011
Sloan K (2009) Security in a virtualised world. Netw Secur 2009(8):15–18
Twentyman J (2009) Security concerns for cloud computing. At: http://www.computerweekly.com/Articles/2009/03/27/235439/security-concerns-for-cloud-computing.htm. Accessed 9 June 2010
Wu J, Shen Q, Wang T, Ji Z, Zhang J (2011) Recent advances in cloud security. J Comput 6(10):2156–2163
Xi K, Tang Y, Hu J (2011) Correlation keystroke verification scheme for user access control in cloud computing environment. Comput J 54(10):1632–1644
Zhou L, Varadharajan V, Hitchens M (2011) Enforcing role-based access control for secure data storage in the cloud. Comput J 54(10):1632–1644
Zissis, Lekkas (2012) Addressing cloud computing security issues. Futur Gener Comput Syst 28(2012):583–592
Acknowledgments
This research was made possible via the support of AfriGIS (www.afrigis.co.za) and the Technology and Human Resources for Industry Programme (THRIP) managed by the South African National Research Foundation (NRF) and financed by the South African Department of Trade and Industry.
Author information
Authors and Affiliations
Corresponding author
Rights and permissions
About this article
Cite this article
Ludwig, B., Coetzee, S. Implications of security mechanisms and Service Level Agreements (SLAs) of Platform as a Service (PaaS) clouds for geoprocessing services. Appl Geomat 5, 25–32 (2013). https://doi.org/10.1007/s12518-012-0083-3
Received:
Accepted:
Published:
Issue Date:
DOI: https://doi.org/10.1007/s12518-012-0083-3