Cloud Computing Security
Please email the guest editors with a brief description of the article you plan to submit by 5 Feb. 2010.
Final submissions due 5 Mar. 2010
Publication data: November/December 2010
Cloud computing may become the dominant enterprise and business-to-consumer computing paradigm within the next 10 years. For software developers and vendors, cloud computing offers the promise of efficient resource utilization and on-demand scalability with minimal capital investment. For consumers, cloud computing offers infrastructure-free computing, where users access their ‘desktop’ and data from any location, work, home, on the road, or from within other organizations. For enterprise businesses, cloud computing offers the potential to out-source computing infrastructure to focus on core competencies with higher efficiencies. For computing infrastructure providers, cloud computing offers the ability to decrease the marginal cost of providing service with a shared infrastructure. One common denominator to all of these different constituencies is higher efficiencies and lower cost, which is one reason why cloud computing is gaining so much traction during a recessionary period.
In spite of these attractive properties, security and privacy issues loom large for cloud computing. Cloud computing provides both opportunity to develop more secure computing paradigms as well as risk for greater exposure to security threats and privacy risks. For example, it is frequently opaque or unclear who governs data when the information is no longer under the control of the enterprise and may reside in a location with differing laws. In this special issue, we seek articles that explore the security and privacy opportunities and threats of cloud computing, including, but not limited to the following topics:
- security applications/services of cloud computing (e.g., anti-virus in the cloud)
- assured infrastructures for cloud computing
- technical diversity & resiliency using cloud
- scalable defenses via cloud computing
- security vulnerabilities created by cloud computing
- vulnerability research applied to the cloud
- shared infrastructure risks (e.g., data leakage/contamination prevention)
- exploitation of cloud computing (DDoS, next gen botnets/malware)
- privacy risks created by cloud computing (for example, data leakage, correlation)
- identity management in cloud computing
- policy & compliance issues (such as data provenance and liability issues)
- government regulation of cloud computing (as it pertains to security and privacy)
- privacy-enhancing technologies for use in cloud computing
- applications of cloud computing for malware
Submissions will be subject to the peer-review methodology for refereed papers. Articles should be 6,000 words, maximum, with a maximum of 15 references. Articles should be understandable to a broad audience of people interested in security and privacy. The writing should be down to earth, practical, and original. Authors should not assume that the audience will have specialized experience in a particular subfield. All accepted articles will be edited according to the IEEE Computer Society style guide. Submit your papers to Manuscript Central at https://mc.manuscriptcentral.com/cs-ieee.
Questions?
Contact the Guest Editors:
- Anup Ghosh (Secure Command) and
- Iván Arce (Core Security)