Cloud computing services: taxonomy and comparison

Cloud computing is a highly discussed topic in the technical and economic world, and many of the big players of the software industry have entered the development of cloud services. Several companies what to explore the possibilities and benefits of incorporating such cloud computing services in their business, as well as the possibilities to offer own cloud services. However, with the amount of cloud computing services increasing quickly, the need for a taxonomy framework rises. This paper examines the available cloud computing services and identifies and explains their main characteristics. Next, this paper organizes these characteristics and proposes a tree-structured taxonomy. This taxonomy allows quick classifications of the different cloud computing services and makes it easier to compare them. Based on existing taxonomies, this taxonomy provides more detailed characteristics and hierarchies. Additionally, the taxonomy offers a common terminology and baseline information for easy communication. Finally, the taxonomy is explained and verified using existing cloud services as examples

Secure Identification in Social Wireless Networks

The applications based on social networking have brought revolution towards social life and are continuously gaining popularity among the Internet users. Due to the advanced computational resources offered by the innovative hardware and nominal subscriber charges of network operators, most of the online social networks are transforming into the mobile domain by offering exciting applications and games exclusively designed for users on the go. Moreover, the mobile devices are considered more personal as compared to their desktop rivals, so there is a tendency among the mobile users to store sensitive data like contacts, passwords, bank account details, updated calendar entries with key dates and personal notes on their devices. The Project Social Wireless Network Secure Identification (SWIN) is carried out at Swedish Institute of Computer Science (SICS) to explore the practicality of providing the secure mobile social networking portal with advanced security features to tackle potential security threats by extending the existing methods with more innovative security technologies. In addition to the extensive background study and the determination of marketable use-cases with their corresponding security requirements, this thesis proposes a secure identification design to satisfy the security dimensions for both online and offline peers. We have implemented an initial prototype using PHP Socket and OpenSSL library to simulate the secure identification procedure based on the proposed design. The design is in compliance with 3GPP‟s Generic Authentication Architecture (GAA) and our implementation has demonstrated the flexibility of the solution to be applied independently for the applications requiring secure identification. Finally, the thesis provides strong foundation for the advanced implementation on mobile platform in future

Security of Supply for Natural Gas Markets. What is it and What is it not?

The issue of security of gas supplies is frequently discussed on the basis of intuitive and non-systematic arguments. Greater import dependence is normally equated with greater insecurity, and strategic stocks are the risk management tool most commonly considered. This paper strives to offer a systematic framework of analysis and shows that import dependence does not necessarily entail greater insecurity – actually, the opposite may well be the case. It also discusses several alternatives to strategic stocks for risk management, which are more interesting and promising.Natural gas market, Security of supply

Market-based Options for Security of Energy Supply

Energy market liberalization and international economic interdependence have affected governments’ ability to react to security of supply challenges. On the other side, whereas in the past security of supply was largely seen as a national responsibility, the frame of reference has increasingly become the EU in which liberation increases security of supply mainly by increasing the number of markets participants and improving the flexibility of energy systems. In this logic, security of supply becomes a risk management strategy with a strong inclination towards cost effectiveness, involving both the supply and the demand side. Security of supply has two major components that interrelate: cost and risk. This paper focus the attention on costs in the attempt to develop a market compatible approach geared towards security of supply.Energy supply, Market-based options

Child Exploitation and the FIFA World Cup: A review of risks and protective interventions

This review was commissioned by the Child Abuse Programme (CAP) of Oak Foundation, a large international philanthropic organisation. It forms part of CAP’s effort to win societal rejection of practices such as the sexual exploitation of children and adolescents around major sporting events (MSEs), and to embed prevention and protection from exploitation as a permanent concern for global sports-related bodies. This review is intended to inform action in countries that host MSEs and to provide some suggestions on how hosting countries can avoid past pitfalls and mistakes in relation to child exploitation, especially economic and sexual exploitation. Importantly, it also acts as a call to action by those responsible for commissioning and staging MSEs, such as FIFA and the IOC, to anticipate, prepare for and adopt risk mitigation strategies and interventions. Positive leadership from these culturally powerful bodies could prove decisive in shifting hearts, minds and actions in the direction of improved safety for children

Applying Lessons from Cyber Attacks on Ukrainian Infrastructures to Secure Gateways onto the Industrial Internet of Things

Previous generations of safety-related industrial control systems were ‘air gapped’. In other words, process control components including Programmable Logic Controllers (PLCs) and smart sensor/actuators were disconnected and isolated from local or wide area networks. This provided a degree of protection; attackers needed physical access to compromise control systems components. Over time this ‘air gap’ has gradually been eroded. Switches and gateways have subsequently interfaced industrial protocols, including Profibus and Modbus, so that data can be drawn from safety-related Operational Technology into enterprise information systems using TCP/IP. Senior management uses these links to monitor production processes and inform strategic planning. The Industrial Internet of Things represents another step in this evolution – enabling the coordination of physically distributed resources from a centralized location. The growing range and sophistication of these interconnections create additional security concerns for the operation and management of safety-critical systems. This paper uses lessons learned from recent attacks on Ukrainian critical infrastructures to guide a forensic analysis of an IIoT switch. The intention is to identify and mitigate vulnerabilities that would enable similar attacks to be replicated across Europe and North America

Online advertising: analysis of privacy threats and protection approaches

Online advertising, the pillar of the “free” content on the Web, has revolutionized the marketing business in recent years by creating a myriad of new opportunities for advertisers to reach potential customers. The current advertising model builds upon an intricate infrastructure composed of a variety of intermediary entities and technologies whose main aim is to deliver personalized ads. For this purpose, a wealth of user data is collected, aggregated, processed and traded behind the scenes at an unprecedented rate. Despite the enormous value of online advertising, however, the intrusiveness and ubiquity of these practices prompt serious privacy concerns. This article surveys the online advertising infrastructure and its supporting technologies, and presents a thorough overview of the underlying privacy risks and the solutions that may mitigate them. We first analyze the threats and potential privacy attackers in this scenario of online advertising. In particular, we examine the main components of the advertising infrastructure in terms of tracking capabilities, data collection, aggregation level and privacy risk, and overview the tracking and data-sharing technologies employed by these components. Then, we conduct a comprehensive survey of the most relevant privacy mechanisms, and classify and compare them on the basis of their privacy guarantees and impact on the Web.Peer ReviewedPostprint (author's final draft

Investments in Gas Pipelines and Liquefied Natural Gas Infrastructure. What is the Impact on the Security of Supply?

This paper addresses the question of the infrastructure investment required for gas pipeline and liquefied natural gas (LNG) connections to meet growing gas demand in an enlarged EU over the next 20 years. Several issues are presented, bearing in mind the major objective of the security of supply for EU countries. First, to set the scene, recent projections of gas demand in an enlarged EU are presented along with the corresponding need for additional imports. Then a scenario is developed showing possible supply routes to meet the import gap, relying on increasingly remote routes. An impressive bill of $150 to 200 billion will have to be paid for extending and building the required infrastructure in pipeline links and LNG-receiving facilities. The expected major development of LNG markets is subject to a particular discussion, as far as the progressive globalisation of this market and its inherent flexibility provide major advantages in terms of the security of supply, despite more costly infrastructure than pipeline links. The impact of technological progress is expected to reduce both capital investment and unit transport costs, offering access to new supply opportunities. Finally, the question of major obstacles to the realisation of the required huge investments in gas infrastructure over the next 20 years is addressed, opening hot debate on the subjects of future gas price, market liberalisation and financing issues.Investment, Gas pipelines, Liquefied natural gas, Security of supply