Distributed Quantitative Information Flow Evaluation for Service Composition in Clouds

Ning Xi,Cong Sun,Jianfeng Ma,Jing Lv
DOI: https://doi.org/10.1109/trustcom/bigdatase.2019.00035
2019-01-01
Abstract:Service composition provides a promising way for the delivery of IT applications to satisfy complex consumers' demands. The qualitative information flow control mechanism based on non-interference provides a solid security assurance on the propagation of customer's private data across multiple service providers. However, strict discipline limits the service availability and may cause a high failure rate on service composition. Therefore, we propose a distributed quantitative information flow evaluation approach for service composition across multiple clouds. The quantitative approach provides us a more precise way to evaluate the leakage and supports the customized disciplines on information flow security for the diverse requirements of different customers. Through the experiments and the proof, the results indicate that our approach can improve the availability of composite service effectively with affordable costs while satisfying the customer's security requirements.
What problem does this paper attempt to address?