TY - GEN
T1 - Validating Secure Cloud Communication Mechanisms of Graphene with CSP-based Modeling
AU - Liu, Jianhao
AU - Hou, Zhiru
AU - Zhu, Huibiao
N1 - Publisher Copyright:
© 2024 Knowledge Systems Institute Graduate School. All rights reserved.
PY - 2024
Y1 - 2024
N2 - Cloud communication, as a core component of the cloud computing architecture, relies on the communication mechanism of TCP/UDP protocols. However, with the popularity of cloud communication, the security threats that it faces are also becoming increasingly severe. Graphene is a new cloud communication security architecture that targets both TCP and UDP communication. It provides security assurance during data transmission and authentication for cloud users and cloud service providers, effectively addressing some of the shortcomings of traditional security protocols. In light of Graphene’s advantages, it is gaining increasing attention from industries. Hence, ensuring the reliability of Graphene becomes paramount. In this paper, we first use process algebra CSP to model the TCP-based communication process of the Graphene architecture. Then, we use the model checker PAT to run the CSP model of Graphene and subsequently verify six properties, including Deadlock Freedom, Divergence Freedom, Data Reachability, Cloud User Faking, Cloud Instance Faking, and Central Key Server Faking. According to the verification results, our model satisfies all the above six properties. Therefore, we can conclude that the TCP communication execution process in the Graphene architecture fulfills the anticipated security standards, thus indicating that the system is reliable.
AB - Cloud communication, as a core component of the cloud computing architecture, relies on the communication mechanism of TCP/UDP protocols. However, with the popularity of cloud communication, the security threats that it faces are also becoming increasingly severe. Graphene is a new cloud communication security architecture that targets both TCP and UDP communication. It provides security assurance during data transmission and authentication for cloud users and cloud service providers, effectively addressing some of the shortcomings of traditional security protocols. In light of Graphene’s advantages, it is gaining increasing attention from industries. Hence, ensuring the reliability of Graphene becomes paramount. In this paper, we first use process algebra CSP to model the TCP-based communication process of the Graphene architecture. Then, we use the model checker PAT to run the CSP model of Graphene and subsequently verify six properties, including Deadlock Freedom, Divergence Freedom, Data Reachability, Cloud User Faking, Cloud Instance Faking, and Central Key Server Faking. According to the verification results, our model satisfies all the above six properties. Therefore, we can conclude that the TCP communication execution process in the Graphene architecture fulfills the anticipated security standards, thus indicating that the system is reliable.
KW - Cloud Communication
KW - Graphene Architecture
KW - Modeling
KW - TCP
KW - Verification
UR - https://www.scopus.com/pages/publications/85218636746
U2 - 10.18293/SEKE2024-126
DO - 10.18293/SEKE2024-126
M3 - 会议稿件
AN - SCOPUS:85218636746
T3 - Proceedings of the International Conference on Software Engineering and Knowledge Engineering, SEKE
SP - 42
EP - 47
BT - Proceedings - SEKE 2024
PB - Knowledge Systems Institute Graduate School
T2 - 36th International Conference on Software Engineering and Knowledge Engineering, SEKE 2024
Y2 - 26 October 2024 through 4 November 2024
ER -