{"id":"https://openalex.org/W4285163152","doi":"https://doi.org/10.1109/access.2022.3190545","title":"Toward Automated Security Analysis and Enforcement for Cloud Computing Using Graphical Models for Security","display_name":"Toward Automated Security Analysis and Enforcement for Cloud Computing Using Graphical Models for Security","publication_year":2022,"publication_date":"2022-01-01","ids":{"openalex":"https://openalex.org/W4285163152","doi":"https://doi.org/10.1109/access.2022.3190545"},"language":"en","primary_location":{"id":"doi:10.1109/access.2022.3190545","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2022.3190545","pdf_url":"https://ieeexplore.ieee.org/ielx7/6287639/6514899/09828397.pdf","source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://ieeexplore.ieee.org/ielx7/6287639/6514899/09828397.pdf","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5060344741","display_name":"Seongmo An","orcid":"https://orcid.org/0009-0006-1823-3162"},"institutions":[{"id":"https://openalex.org/I24456540","display_name":"Korea Aerospace University","ror":"https://ror.org/05jmm0651","country_code":"KR","type":"education","lineage":["https://openalex.org/I24456540"]}],"countries":["KR"],"is_corresponding":false,"raw_author_name":"Seongmo An","raw_affiliation_strings":["Department of Computer Engineering, Korea Aerospace University, Goyang, South Korea"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Computer Engineering, Korea Aerospace University, Goyang, South Korea","institution_ids":["https://openalex.org/I24456540"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5030170350","display_name":"Asher Leung","orcid":null},"institutions":[{"id":"https://openalex.org/I160993911","display_name":"Queensland University of Technology","ror":"https://ror.org/03pnv4752","country_code":"AU","type":"education","lineage":["https://openalex.org/I160993911"]},{"id":"https://openalex.org/I165143802","display_name":"The University of Queensland","ror":"https://ror.org/00rqy9422","country_code":"AU","type":"education","lineage":["https://openalex.org/I165143802"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"Asher Leung","raw_affiliation_strings":["School of Information Technology and Electrical Engineering, The University of Queensland, Brisbane, QLD, Australia"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"School of Information Technology and Electrical Engineering, The University of Queensland, Brisbane, QLD, Australia","institution_ids":["https://openalex.org/I160993911","https://openalex.org/I165143802"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5011163136","display_name":"Jin B. Hong","orcid":"https://orcid.org/0000-0003-1359-3813"},"institutions":[{"id":"https://openalex.org/I177877127","display_name":"The University of Western Australia","ror":"https://ror.org/047272k79","country_code":"AU","type":"education","lineage":["https://openalex.org/I177877127"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"Jin B. Hong","raw_affiliation_strings":["Department of Computer Science and Software Engineering, The University of Western Australia, Perth, WA, Australia"],"raw_orcid":"https://orcid.org/0000-0003-1359-3813","affiliations":[{"raw_affiliation_string":"Department of Computer Science and Software Engineering, The University of Western Australia, Perth, WA, Australia","institution_ids":["https://openalex.org/I177877127"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5007095677","display_name":"Taehoon Eom","orcid":"https://orcid.org/0000-0001-5409-1567"},"institutions":[{"id":"https://openalex.org/I24456540","display_name":"Korea Aerospace University","ror":"https://ror.org/05jmm0651","country_code":"KR","type":"education","lineage":["https://openalex.org/I24456540"]}],"countries":["KR"],"is_corresponding":false,"raw_author_name":"Taehoon Eom","raw_affiliation_strings":["Department of Computer Engineering, Korea Aerospace University, Goyang, South Korea"],"raw_orcid":"https://orcid.org/0000-0001-5409-1567","affiliations":[{"raw_affiliation_string":"Department of Computer Engineering, Korea Aerospace University, Goyang, South Korea","institution_ids":["https://openalex.org/I24456540"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5065963028","display_name":"Jong Sou Park","orcid":null},"institutions":[{"id":"https://openalex.org/I24456540","display_name":"Korea Aerospace University","ror":"https://ror.org/05jmm0651","country_code":"KR","type":"education","lineage":["https://openalex.org/I24456540"]}],"countries":["KR"],"is_corresponding":false,"raw_author_name":"Jong Sou Park","raw_affiliation_strings":["Department of Computer Engineering, Korea Aerospace University, Goyang, South Korea"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Computer Engineering, Korea Aerospace University, Goyang, South Korea","institution_ids":["https://openalex.org/I24456540"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":4,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":{"value":1850,"currency":"USD","value_usd":1850},"apc_paid":{"value":1850,"currency":"USD","value_usd":1850},"fwci":7.428,"has_fulltext":true,"cited_by_count":26,"citation_normalized_percentile":{"value":0.97269986,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":94,"max":99},"biblio":{"volume":"10","issue":null,"first_page":"75117","last_page":"75134"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11614","display_name":"Cloud Data Security Solutions","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11614","display_name":"Cloud Data Security Solutions","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9987000226974487,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.781387448310852},{"id":"https://openalex.org/keywords/cloud-computing-security","display_name":"Cloud computing security","score":0.7390962839126587},{"id":"https://openalex.org/keywords/cloud-computing","display_name":"Cloud computing","score":0.7353515028953552},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.7171252369880676},{"id":"https://openalex.org/keywords/countermeasure","display_name":"Countermeasure","score":0.6874747276306152},{"id":"https://openalex.org/keywords/computer-security-model","display_name":"Computer security model","score":0.5551109313964844},{"id":"https://openalex.org/keywords/security-information-and-event-management","display_name":"Security information and event management","score":0.5421032309532166},{"id":"https://openalex.org/keywords/security-service","display_name":"Security service","score":0.44621074199676514},{"id":"https://openalex.org/keywords/security-through-obscurity","display_name":"Security through obscurity","score":0.43711310625076294},{"id":"https://openalex.org/keywords/usability","display_name":"Usability","score":0.435912549495697},{"id":"https://openalex.org/keywords/security-analysis","display_name":"Security analysis","score":0.4202686846256256},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.33431729674339294},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.08914530277252197},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.0656827986240387}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.781387448310852},{"id":"https://openalex.org/C184842701","wikidata":"https://www.wikidata.org/wiki/Q370563","display_name":"Cloud computing security","level":3,"score":0.7390962839126587},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.7353515028953552},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.7171252369880676},{"id":"https://openalex.org/C21593369","wikidata":"https://www.wikidata.org/wiki/Q1032176","display_name":"Countermeasure","level":2,"score":0.6874747276306152},{"id":"https://openalex.org/C121822524","wikidata":"https://www.wikidata.org/wiki/Q5157582","display_name":"Computer security model","level":2,"score":0.5551109313964844},{"id":"https://openalex.org/C103377522","wikidata":"https://www.wikidata.org/wiki/Q3493999","display_name":"Security information and event management","level":4,"score":0.5421032309532166},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.44621074199676514},{"id":"https://openalex.org/C114869243","wikidata":"https://www.wikidata.org/wiki/Q133735","display_name":"Security through obscurity","level":5,"score":0.43711310625076294},{"id":"https://openalex.org/C170130773","wikidata":"https://www.wikidata.org/wiki/Q216378","display_name":"Usability","level":2,"score":0.435912549495697},{"id":"https://openalex.org/C38369872","wikidata":"https://www.wikidata.org/wiki/Q7445009","display_name":"Security analysis","level":2,"score":0.4202686846256256},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.33431729674339294},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.08914530277252197},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0656827986240387},{"id":"https://openalex.org/C146978453","wikidata":"https://www.wikidata.org/wiki/Q3798668","display_name":"Aerospace engineering","level":1,"score":0.0}],"mesh":[],"locations_count":4,"locations":[{"id":"doi:10.1109/access.2022.3190545","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2022.3190545","pdf_url":"https://ieeexplore.ieee.org/ielx7/6287639/6514899/09828397.pdf","source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},{"id":"pmh:oai:pure.atira.dk:openaire/c6ec9033-558d-442e-afc0-d2f74afac25b","is_oa":true,"landing_page_url":"https://admin.research-repository.uwa.edu.au/en/publications/c6ec9033-558d-442e-afc0-d2f74afac25b","pdf_url":null,"source":{"id":"https://openalex.org/S4306402523","display_name":"UWA Profiles and Research Repository (University of Western Australia)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I177877127","host_organization_name":"The University of Western Australia","host_organization_lineage":["https://openalex.org/I177877127"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"An, S, Leung, A, Hong, J B, Eom, T & Park, J S 2022, 'Toward Automated Security Analysis and Enforcement for Cloud Computing using Graphical Models for Security', IEEE Access, vol. 10, pp. 75117-75134. https://doi.org/10.1109/ACCESS.2022.3190545","raw_type":"info:eu-repo/semantics/article"},{"id":"pmh:oai:pure.atira.dk:publications/c6ec9033-558d-442e-afc0-d2f74afac25b","is_oa":true,"landing_page_url":"https://research-repository.uwa.edu.au/en/publications/c6ec9033-558d-442e-afc0-d2f74afac25b","pdf_url":null,"source":{"id":"https://openalex.org/S4306402492","display_name":"UWA Profiles and Research Repository (UWA)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I177877127","host_organization_name":"The University of Western Australia","host_organization_lineage":["https://openalex.org/I177877127"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"An , S , Leung , A , Hong , J B , Eom , T &amp; Park , J S 2022 , ' Toward Automated Security Analysis and Enforcement for Cloud Computing using Graphical Models for Security ' , IEEE Access , vol. 10 , pp. 75117-75134 . https://doi.org/10.1109/ACCESS.2022.3190545","raw_type":"article"},{"id":"pmh:oai:doaj.org/article:b7e070fe219b4f24902a2297a5699487","is_oa":true,"landing_page_url":"https://doaj.org/article/b7e070fe219b4f24902a2297a5699487","pdf_url":null,"source":{"id":"https://openalex.org/S4306401280","display_name":"DOAJ (DOAJ: Directory of Open Access Journals)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-sa","license_id":"https://openalex.org/licenses/cc-by-sa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IEEE Access, Vol 10, Pp 75117-75134 (2022)","raw_type":"article"}],"best_oa_location":{"id":"doi:10.1109/access.2022.3190545","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2022.3190545","pdf_url":"https://ieeexplore.ieee.org/ielx7/6287639/6514899/09828397.pdf","source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4285163152.pdf","grobid_xml":"https://content.openalex.org/works/W4285163152.grobid-xml"},"referenced_works_count":23,"referenced_works":["https://openalex.org/W1995761541","https://openalex.org/W2027941036","https://openalex.org/W2029500603","https://openalex.org/W2030367271","https://openalex.org/W2031175798","https://openalex.org/W2061973751","https://openalex.org/W2071593097","https://openalex.org/W2156607688","https://openalex.org/W2275530856","https://openalex.org/W2503869749","https://openalex.org/W2515955240","https://openalex.org/W2527760048","https://openalex.org/W2611452836","https://openalex.org/W2766228646","https://openalex.org/W2803482271","https://openalex.org/W2901302072","https://openalex.org/W2904014272","https://openalex.org/W2913966487","https://openalex.org/W2980390258","https://openalex.org/W2982620932","https://openalex.org/W3012325793","https://openalex.org/W3111430790","https://openalex.org/W6635235395"],"related_works":["https://openalex.org/W2030343105","https://openalex.org/W2165898552","https://openalex.org/W2353811196","https://openalex.org/W2372674753","https://openalex.org/W1528506334","https://openalex.org/W8370799","https://openalex.org/W833563683","https://openalex.org/W2008985775","https://openalex.org/W2290724697","https://openalex.org/W1857002762"],"abstract_inverted_index":{"Cloud":[0],"computing":[1],"has":[2,28],"become":[3],"widely":[4],"adopted":[5],"by":[6,71,172],"businesses":[7],"for":[8,52,68,132],"hosting":[9],"applications":[10,27],"with":[11,31,127],"improved":[12],"performance":[13],"at":[14],"a":[15,45],"fraction":[16],"of":[17,25,82,136,143],"the":[18,53,69,78,133,141,152],"operational":[19],"costs":[20],"and":[21,38,49,63,80,87,110,118,158],"complexity.":[22],"The":[23],"rise":[24],"cloud":[26,54,70,171],"been":[29],"coupled":[30],"an":[32,59,174],"increase":[33],"in":[34,91,102,160],"security":[35,47,61,66,74,89,99,162,176],"threat":[36],"vectors":[37],"vulnerabilities.":[39],"In":[40],"this":[41],"paper,":[42],"we":[43,84,95],"propose":[44],"new":[46],"assessment":[48,62,90],"enforcement":[50],"tool":[51,154],"named":[55],"CloudSafe,":[56,83],"which":[57],"provides":[58],"automated":[60],"enforce":[64],"best":[65],"control":[67],"collating":[72],"various":[73],"tools.":[75],"To":[76],"demonstrate":[77],"applicability":[79],"usability":[81],"implemented":[85],"CloudSafe":[86,155],"conducted":[88],"Amazon":[92],"AWS.":[93],"Also,":[94],"analyzed":[96],"four":[97],"different":[98],"countermeasure":[100,146],"options":[101],"depth;":[103],"Vulnerability":[104],"Patching,":[105,107,115],"Virtual":[106,114],"Network":[108,116],"Hardening":[109,117],"Moving":[111,119],"Target":[112,120],"Defence.":[113],"Defence":[121],"were":[122,138],"determined":[123],"to":[124,129,164,168],"be":[125],"feasible":[126,145],"regards":[128],"deployment":[130],"implementation":[131],"project.":[134],"Proof":[135],"concepts":[137],"developed":[139],"demonstrating":[140],"effectiveness":[142],"each":[144],"option.":[147],"These":[148],"results":[149],"indicate":[150],"that":[151],"proposed":[153],"is":[156],"effective":[157],"efficient":[159],"helping":[161],"administrators":[163],"select":[165],"optimal":[166],"countermeasures":[167],"secure":[169],"their":[170],"conducting":[173],"in-depth":[175],"assessment.":[177]},"counts_by_year":[{"year":2026,"cited_by_count":2},{"year":2025,"cited_by_count":12},{"year":2024,"cited_by_count":7},{"year":2023,"cited_by_count":3},{"year":2022,"cited_by_count":2}],"updated_date":"2026-07-02T09:51:11.867554","created_date":"2025-10-10T00:00:00"}
