Serena Nicolazzo,Antonino Nocera,Witold Pedrycz

2024-01-31

Abstract:A Service Level Agreement (SLA) is a formal contract between a service provider and a consumer, representing a crucial instrument to define, manage, and maintain relationships between these two parties. The SLA's ability to define the Quality of Service (QoS) expectations, standards, and accountability helps to deliver high-quality services and increase client confidence in disparate application domains, such as Cloud computing and the Internet of Things. An open research direction in this context is related to the possible integration of new metrics to address the security and privacy aspects of services, thus providing protection of sensitive information, mitigating risks, and building trust. This survey paper identifies state of the art covering concepts, approaches, and open problems of SLA management with a distinctive and original focus on the recent development of Security SLA (SecSLA). It contributes by carrying out a comprehensive review and covering the gap between the analyses proposed in existing surveys and the most recent literature on this topic, spanning from 2017 to 2023. Moreover, it proposes a novel classification criterium to organize the analysis based on SLA life cycle phases. This original point of view can help both academics and industrial practitioners to understand and properly locate existing contributions in the advancement of the different aspects of SLA technology. The present work highlights the importance of the covered topics and the need for new research improvements to tackle present and demanding challenges.

Distributed, Parallel, and Cluster Computing,Cryptography and Security

Frank S. de Boer,Elena Giachino,Stijn de Gouw,Reiner Hähnle,Einar Broch Johnsen,Cosimo Laneve,Ka I Pun,Gianluigi Zavattaro

DOI: https://doi.org/10.4204/EPTCS.302.1

2019-08-27

Abstract:Service Level Agreements (SLA) are commonly used to specify the quality attributes between cloud service providers and the customers. A violation of SLAs can result in high penalties. To allow the analysis of SLA compliance before the services are deployed, we describe in this paper an approach for SLA-aware deployment of services on the cloud, and illustrate its workflow by means of a case study. The approach is based on formal models combined with static analysis tools and generated runtime monitors. As such, it fits well within a methodology combining software development with information technology operations (DevOps).

Distributed, Parallel, and Cluster Computing,Software Engineering

Vincent C. Emeakaroha,Marco A. S. Netto,Rodrigo N. Calheiros,César A. F. De Rose

DOI: https://doi.org/10.4018/978-1-4666-1631-8.ch014

2012-01-01

Abstract:One of the key factors driving Cloud computing is flexible and on-demand resource provisioning in a pay-as-you-go manner. This resource provisioning is based on Service Level Agreements (SLAs) negotiated and signed between customers and providers. Efficient management of SLAs and Cloud resources to reduce cost, achieve high utilization, and generate profit is challenging due to the large-scale nature of Cloud environments and complex resource provisioning processes. In order to advance the adoption of this technology, it is necessary to identify and address the issues preventing proper resource and SLA management. The authors purport that monitoring is the first step towards successful management strategies. Thus, this chapter identifies the SLA management and monitoring challenges in Clouds and federated Cloud environments, and proposes a novel resource monitoring architecture as a basis for resource management in Clouds. It presents the design and implementation of this architecture and presents the evaluation of the architecture using heterogeneous application workloads.

Vincent C. Emeakaroha,Ivona Brandic,Michael Maurer,Ivan Breskovic

DOI: https://doi.org/10.1109/compsacw.2011.97

2011-07-01

Abstract:Provisioning resources as a service in a scalable on-demand manner is a basic feature in Cloud computing technology. Service provisioning in Clouds is based on Service Level Agreements (SLAs) representing a contract signed between the customer and the service provider stating the terms of the agreement including non-functional requirements of the service specified as Quality of Service (QoS), obligations, and penalties in case of agreement violations. On the one hand SLA violation should be prevented to avoid costly penalties and on the other hand providers have to efficiently utilize resources to minimize cost for the service provisioning. Thus, scheduling strategies considering multiple SLA parameters and efficient allocation of resources are necessary. Recent work considers various strategies with single SLA parameters. However, those approaches are limited to simple workflows and single task applications. Scheduling and deploying service requests considering multiple SLA parameters such as amount of CPU required, network bandwidth, memory and storage are still open research challenges. In this paper, we present a novel scheduling heuristic considering multiple SLA parameters for deploying applications in Clouds. We discuss in details the heuristic design and implementation and finally present detailed evaluations as a proof of concept emphasizing the performance of our approach.

Zhien Guo,Yiqi Dai

DOI: https://doi.org/10.1109/chinagrid.2012.14

2012-01-01

Abstract:For the actual use of existing security problems and lack of existing solutions for cloud computing, we introduce the SLA(Service Level Agreement) ideas to the security capability negotiations, which called sSLA(Security Service Level Agreement). The framework and data processes of sSLA were implemented on our IMS-based cloud systems, which were showed that this method can effectively eliminate the security concerns of the customers of cloud services.

Vincent C. Emeakaroha,Ivona Brandic,Michael Maurer,Schahram Dustdar

DOI: https://doi.org/10.1002/cpe.2944

2012-10-10

Concurrency and Computation: Practice and Experience

Abstract:SUMMARY Cloud computing represents a novel on‐demand computing technology where resources are provisioned in compliance to a set of predefined non‐functional properties specified and negotiated by means of service level agreements (SLAs). Currently, cloud providers strive to achieve efficient SLA enforcement strategies to avoid costly SLA violations during application provisioning and to timely react to failures and environmental changes. These strategies include advanced application deployment mechanisms and appropriate resource monitoring concepts. In terms of cloud resource monitoring, providers tend to adopt existing monitoring tools, such as those from grid environments. However, those tools are usually restricted to locality and homogeneity of monitored objects, are not scalable, and do not support mapping of low‐level resource metrics (e.g., system uptime and downtime) to high‐level application‐specific SLA parameters (e.g., system availability). In this paper, we present a novel low‐level metrics to high‐level SLA ( LoM2HiS ) framework for managing the monitoring of low‐level resource metrics and mapping them to high‐level SLAs and an application deployment mechanism for scheduling and provisioning applications in clouds. The LoM2HiS framework provides the application deployment mechanism with monitored information and SLA violation prevention techniques, thereby ensuring the performance of the applications and thus increasing the revenue of the cloud provider by avoiding SLA violation penalty cost. This framework is the building block of the Foundations of Self‐governing ICT Infrastructures project, which intends to facilitate autonomic SLA management and enforcement. Thus, the LoM2HiS framework detects future SLA violation threats and can notify the knowledge component to act so as to avert the threats. We discuss in detail the conceptual design of the LoM2HiS framework and the application deployment mechanism including their implementations. Finally, we present our evaluation results based on a use‐case scenario demonstrating the usage of the LoM2HiS framework in a real cloud environment. Copyright © 2012 John Wiley & Sons, Ltd.

English Else

Vincent C. Emeakaroha,Marco A.S. Netto,Rodrigo N. Calheiros,Ivona Brandic,Rajkumar Buyya,César A.F. De Rose

DOI: https://doi.org/10.1016/j.future.2011.08.018

IF: 7.307

2012-07-01

Future Generation Computer Systems

Abstract:Cloud computing has become a popular paradigm for implementing scalable computing infrastructures provided on-demand on a case-by-case basis. Self-manageable Cloud infrastructures are required in order to comply with users’ requirements defined by Service Level Agreements (SLAs) and to minimize user interactions with the computing environment. Thus, adequate SLA monitoring strategies and timely detection of possible SLA violations represent challenging research issues. This paper presents the Detecting SLA Violation infrastructure (DeSVi) architecture, sensing SLA violations through sophisticated resource monitoring. Based on the user requests, DeSVi allocates computing resources for a requested service and arranges its deployment on a virtualized environment. Resources are monitored using a novel framework capable of mapping low-level resource metrics (e.g., host up and down time) to user-defined SLAs (e.g., service availability). The detection of possible SLA violations relies on the predefined service level objectives and utilization of knowledge databases to manage and prevent such violations. We evaluate the DeSVi architecture using two application scenarios: (i) image rendering applications based on ray-tracing, and (ii) transactional web applications based on the well-known TPC-W benchmark. These applications exhibit heterogeneous workloads for investigating optimal monitoring interval of SLA parameters. The achieved results show that our architecture is able to monitor and detect SLA violations. The architecture output also provides a guideline on the appropriate monitoring intervals for applications depending on their resource consumption behavior.

English Else

Ming Jiang,James Byrne,Karsten Molka,Django Armstrong,Karim Djemame,Tom Kirkham

DOI: https://doi.org/10.5220/0004377302070212

2013-01-01

Abstract:Automated control of Cloud Service Level Agreements (SLA) is typically focused on Quality of Service (QoS) management and monitoring of the Cloud Infrastructure in-line with the SLA. Using risk assessments to bridge the needs of the Service Provider and Infrastructure Provider is one way in which the management of the whole Cloud SLA life-cycle can be achieved automatically. In this paper we adapt the QoS based risk approach and combine it with business orientated goal monitoring to improve the business input into the management of SLA from both a Cloud IP and SP perspective. We demonstrate this approach using probability of failure QoS risk linked to economic modelling of cost from the business goals of a SP.

Rajkumar Buyya,Saurabh Kumar Garg,Rodrigo N. Calheiros

DOI: https://doi.org/10.48550/arXiv.1201.4522

2012-01-22

Distributed, Parallel, and Cluster Computing

Abstract:Cloud computing systems promise to offer subscription-oriented, enterprise-quality computing services to users worldwide. With the increased demand for delivering services to a large number of users, they need to offer differentiated services to users and meet their quality expectations. Existing resource management systems in data centers are yet to support Service Level Agreement (SLA)-oriented resource allocation, and thus need to be enhanced to realize cloud computing and utility computing. In addition, no work has been done to collectively incorporate customer-driven service management, computational risk management, and autonomic resource management into a market-based resource management system to target the rapidly changing enterprise requirements of Cloud computing. This paper presents vision, challenges, and architectural elements of SLA-oriented resource management. The proposed architecture supports integration of marketbased provisioning policies and virtualisation technologies for flexible allocation of resources to applications. The performance results obtained from our working prototype system shows the feasibility and effectiveness of SLA-based resource provisioning in Clouds.

Krzysztof Bocianiak,Tomasz Pawlikowski,Aleksandra Podlasek,Jean-Philippe Wary,Jacek Wierzbowski

DOI: https://doi.org/10.1109/access.2024.3480688

IF: 3.9

2024-10-25

IEEE Access

Abstract:Vertical industries start taking advantage of computing continuum by hosting their applications or using additional services offered by several Cloud Service Providers. Computing continuum has many advantages for Verticals as it allows to fulfil their quality of service requirements and save costs. This could be achieved due to the distributed, heterogenous and dynamic nature of infrastructure of computing continuum and Vertical's application mobility thus its ability to migrate between different environments. However, this can progress only if in parallel to Vertical's application mobility, the security requirements are dynamically managed and met at the required level in each environment. It is particularly important due to new regulations (e.g. Cyber Resilience Act and Network and Information Security Directive - NIS2) which define new critical industries and introduce for them additional security obligations. Noncompliance with these regulations could lead to penalties. Therefore, Verticals will have to fulfil specific security requirements and be able to deliver proof of compliance. In this paper, we propose to address those needs using emerging concept of Security Service Level Agreement. Following that, we propose a novel Security Service Level Agreement Mediator for cloud applications in mobility which negotiates Security Service Level Agreement with Verticals, continuously fulfils it in computing continuum and delivers proofs of compliance. Based on that, we define main challenges for setting up the Security Service Level Agreement Mediator on the basis of considerations presented in this paper.

computer science, information systems,telecommunications,engineering, electrical & electronic

Malu Castellanos,Fabio Casati,Umeshwar Dayal,Ming-Chien Shan

DOI: https://doi.org/10.1007/978-3-540-39845-5_13

2003-01-01

Abstract:For every business, managing the Service Level Agreements (SLAs) stipulated with its customers is a crucial activity. Failing to meet an SLA may lead to contractual penalties and in loss of revenues generated by customers resorting to other providers to obtain the services they need. In this paper we present a framework and an infrastructure for intelligent SLA management, applicable when services are delivered as Web services. The goal of the platform is that of assisting service providers in monitoring SLA violations, in predicting SLA violations before they occur so to try corrective actions, and in analyzing SLA violations to understand their causes and therefore help identify how to improve operations to meet the SLA.

Shengli Zhou,Lifa Wu,Canghong Jin

DOI: https://doi.org/10.1109/cc.2017.8068773

2017-01-01

China Communications

Abstract:A Service Level Agreement（SLA） is a legal contract between any two parties to ensure an adequate Quality of Service（Qo S）. Most research on SLAs has concentrated on protecting the user data through encryption. However, these methods can not supervise a cloud service provider（CSP） directly. In order to address this problem, we propose a privacy-based SLA violation detection model for cloud computing based on Markov decision process theory. This model can recognize and regulate CSP’s actions based on specific requirements of various users. Additionally, the model could make effective evaluation to the credibility of CSP, and can monitor events that user privacy is violated. Experiments and analysis indicate that the violation detection model can achieve good results in both the algorithm’s convergence and prediction effect.

Sudip Mittal,Karuna P. Joshi,Claudia Pearce,Anupam Joshi

DOI: https://doi.org/10.1109/ic2e.2016.14

2016-04-01

Abstract:To effectively manage cloud based services, organizations need to continuously monitor the performance metrics listed in the Cloud service contracts. However, these legal documents, like Service Level Agreements (SLA) or privacy policy documents, are currently managed as plain text files meant principally for human consumption. Additionally, providers often define their own performance metrics for their services. These factors hinder the automation of SLA management and require manual effort to monitor the cloud service performance. We have significantly automated the process of extracting, managing and monitoring cloud SLA using natural language processing techniques and Semantic Web technologies. In this paper, we describe our technical approach and the ontology that we have developed to describe, manage, and reason about cloud SLAs. We also describe the prototype system that we have developed to automatically extract information from legal Terms of Service that are available on cloud provider websites.

Tom Kirkham,Karim Djemame,Mariam Kiran,Ming Jiang,Django Armstrong,George Kousiouris,George Vafiadis,Athanasia Evangelinou

2012-01-01

Abstract:Increasing emphasis in data protection legislation on the provision of user consent and privacy protection poses a challenge to automated Cloud Computing applications.. Here, the infrastructure is removed from the user and therefore no direct link for consent or user control exists. In such environments assurance and best effort from the Cloud Provider to carry out the users wishes and protect his or her privacy must be achieved. This paper introduces such an approach using legally focused risk assessment management of Service Level Agreements between Cloud Service Providers and Cloud Infrastructure Providers.

Marco Arazzi,Serena Nicolazzo,Antonino Nocera

2024-04-04

Abstract:The novel Internet of Things (IoT) paradigm is composed of a growing number of heterogeneous smart objects and services that are transforming architectures and applications, increasing systems' complexity, and the need for reliability and autonomy. In this context, both smart objects and services are often provided by third parties which do not give full transparency regarding the security and privacy of the features offered. Although machine-based Service Level Agreements (SLA) have been recently leveraged to establish and share policies in Cloud-based scenarios, and also in the IoT context, the issue of making end users aware of the overall system security levels and the fulfillment of their privacy requirements through the provision of the requested service remains a challenging task. To tackle this problem, we propose a complete framework that defines suitable levels of privacy and security requirements in the acquisition of services in IoT, according to the user needs. Through the use of a Reinforcement Learning based solution, a user agent, inside the environment, is trained to choose the best smart objects granting access to the target services. Moreover, the solution is designed to guarantee deadline requirements and user security and privacy needs. Finally, to evaluate the correctness and the performance of the proposed approach we illustrate an extensive experimental analysis.

Cryptography and Security,Artificial Intelligence

Zhi Liu,Shijie Sun,Ju Xing,Zhe Fu,Xiaohe Hu,Jianwen Pi,Xiaofeng Yang,Yunsong Lu,Jun Li

DOI: https://doi.org/10.26599/tst.2018.9010062

2018-01-01

Tsinghua Science & Technology

Abstract:With the proliferation of cloud services and development of fine-grained virtualization techniques, the Cloud Management System（CMS） is required to manage multiple resources efficiently for the large-scale, highdensity computing units. Specifically, providing guaranteed networking Service Level Agreement（SLA） has become a challenge. This paper proposes MN-SLA（Modular Networking SLA）, a framework to provide networking SLA and to enable its seamless integration with existing CMSes. Targeting at a modular, general, robust, and efficient design, MN-SLA abstracts general interacting Application Programming Interfaces（APIs） between CMS and SLA subsystem, and it is able to accomplish the integration with minor modifications to CMS. The evaluations based on large scale simulation show that the proposed networking SLA scheduling is promising in terms of resource utilization, being able to accommodate at least 1.4× the number of instances of its competitors.

Michael Maurer,Ivona Brandic,Rizos Sakellariou

DOI: https://doi.org/10.1109/cloud.2012.55

2012-06-01

Abstract:Cloud providers aim at guaranteeing Service Level Agreements (SLAs) in a resource-efficient way. This, amongst others, means that resources of virtual (VMs) and physical machines (PMs) have to be autonomically allocated responding to external influences as workload or environmental changes. Thereby, workload volatility (WV) is one of the crucial factors that influence the quality of suggested allocations. In this paper we devise a novel approach for self-adaptive and resource-efficient decision-making considering the three conflicting goals of minimizing the number of SLA violations, maximizing resource utilization, and minimizing the number of necessary time- and energy-consuming reconfiguration actions. We propose self-adaptive rule-based knowledge management for autonomic VM reconfiguration considering the rapidness of changes in the workload, i.e., WV. We introduce a novel WV categorization and present cost and volatility based methods for self-tuning. We evaluate these methods by a large variety of synthetically generated workloads, and by real-world measurements gathered from an image rendering application and a scientific workflow for RNA sequencing. Evaluation shows that in most cases the self-adaptive approach outperforms the static approach.

Yongyi Ran,Jian Yang,Shuben Zhang,Hongsheng Xi

DOI: https://doi.org/10.1109/glocomw.2013.6825022

2013-01-01

Abstract:Cloud Computing provides a convenient means of remote and pay-per-use access to computing resources in forms of Virtual Machines (VMs). Specially, with cloud computing, service providers no longer need to maintain a large number of expensive physical machines, which can significantly reduce the cost. However, due to the fluctuation and uncertainty of the future demands, it is still a challenge for service providers to dynamically determine the optimal resource provisioning to save cost while guaranteeing the Service Level Agreement (SLA). Overload may result in the service unavailable for the latter service requests while over-provisioning naturally increases the cost. To address the problem, in this paper, by defining the unavailability probability of the service as a metric of SLA, we propose a SLA-driven dynamic VMs provisioning strategy based on the large deviation principle, which is capable of proactive calculating the optimal number of VMs for the upcoming demands subject to the unavailability probability below a desired threshold. Finally, the experiments are performed based on real workload traces to show the attainable performance of the proposed resource provisioning strategy and verify that the proposed strategy can make a good tradeoff between saving cost and guaranteeing SLA.

Hootan Alavizadeh,Hooman Alavizadeh,Dong Seong Kim,Julian Jang-Jaccard,Masood Niazi Torshiz

DOI: https://doi.org/10.48550/arXiv.1904.01758

2019-04-03

Abstract:Cloud service providers offer their customers with on-demand and cost-effective services, scalable computing, and network infrastructures. Enterprises migrate their services to the cloud to utilize the benefit of cloud computing such as eliminating the capital expense of their computing need. There are security vulnerabilities and threats in the cloud. Many researches have been proposed to analyze the cloud security using Graphical Security Models (GSMs) and security metrics. In addition, it has been widely researched in finding appropriate defensive strategies for the security of the cloud. Moving Target Defense (MTD) techniques can utilize the cloud elasticity features to change the attack surface and confuse attackers. Most of the previous work incorporating MTDs into the GSMs are theoretical and the performance was evaluated based on the simulation. In this paper, we realized the previous framework and designed, implemented and tested a cloud security assessment tool in a real cloud platform named UniteCloud. Our security solution can (1) monitor cloud computing in real-time, (2) automate the security modeling and analysis and visualize the GSMs using a Graphical User Interface via a web application, and (3) deploy three MTD techniques including Diversity, Redundancy, and Shuffle on the real cloud infrastructure. We analyzed the automation process using the APIs and showed the practicality and feasibility of automation of deploying all the three MTD techniques on the UniteCloud.

Cryptography and Security

Taher Labidi,Achraf Mtibaa,Walid Gaaloul,Faiez Gargouri

DOI: https://doi.org/10.1002/cpe.5315

2019-05-16

Concurrency and Computation: Practice and Experience

Abstract:<p>Service Level Agreement (SLA) has recently garnered increasing attention in cloud computing due to its capability in the definition and the monitoring of the Quality of Service (QoS). SLA is generally generated following a process of negotiation in which the client chooses a subset of clauses among choices predefined by the provider on a "take it or leave it" basis. However, the heterogeneity between client requests and provider offers may result in inappropriate SLA. In addition, the cloud service context may change over the time, which causes a client requirement adjustment, and therefore, the SLA becomes unsatisfactory. In this paper, we propose a cloud SLA negotiation and re‐negotiation approach. Our aim is to ameliorate the SLA negotiation phase by adding the ability to integrate a semantic mapping between client requests and provider offers to generate a suitable SLA document. Moreover, our approach includes a context‐aware system to adapt the SLA throughout reasoning techniques and automatically ensure the re‐negotiation. We develop a prototype, and we test its performance. The results of a case study also show the efficiency of our approach.</p>