{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,3]],"date-time":"2026-06-03T05:54:21Z","timestamp":1780466061804,"version":"3.54.1"},"publisher-location":"New York, NY, USA","reference-count":14,"publisher":"ACM","license":[{"start":{"date-parts":[[2023,3,27]],"date-time":"2023-03-27T00:00:00Z","timestamp":1679875200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2023,3,27]]},"DOI":"10.1145\/3555776.3577600","type":"proceedings-article","created":{"date-parts":[[2023,6,7]],"date-time":"2023-06-07T17:16:29Z","timestamp":1686158189000},"page":"24-33","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":3,"title":["A Semantic Evidence-based Approach to Continuous Cloud Service Certification"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-4874-0273","authenticated-orcid":false,"given":"Christian","family":"Banse","sequence":"first","affiliation":[{"name":"Fraunhofer AISEC, Garching b. M\u00fcnchen, Germany"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-4669-0030","authenticated-orcid":false,"given":"Immanuel","family":"Kunz","sequence":"additional","affiliation":[{"name":"Fraunhofer AISEC, Garching b. M\u00fcnchen, Germany"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-8446-8692","authenticated-orcid":false,"given":"Nico","family":"Haas","sequence":"additional","affiliation":[{"name":"Fraunhofer AISEC, Garching b. M\u00fcnchen, Germany"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-8962-3276","authenticated-orcid":false,"given":"Angelika","family":"Schneider","sequence":"additional","affiliation":[{"name":"Fraunhofer AISEC, Garching b. M\u00fcnchen, Germany"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2023,6,7]]},"reference":[{"key":"e_1_3_2_1_1_1","doi-asserted-by":"crossref","first-page":"30","DOI":"10.1109\/TSC.2017.2657505","article-title":"A Semi-Automatic and Trustworthy Scheme for Continuous Cloud Service Certification","volume":"13","author":"Anisetti Marco","year":"2020","unstructured":"Marco Anisetti , Claudio Agostino Ardagna , Ernesto Damiani , and Filippo Gaudenzi . 2020 . A Semi-Automatic and Trustworthy Scheme for Continuous Cloud Service Certification . IEEE Transactions on Services Computing 13 , 1 (2020), 30 -- 43 . Marco Anisetti, Claudio Agostino Ardagna, Ernesto Damiani, and Filippo Gaudenzi. 2020. A Semi-Automatic and Trustworthy Scheme for Continuous Cloud Service Certification. IEEE Transactions on Services Computing 13, 1 (2020), 30--43.","journal-title":"IEEE Transactions on Services Computing"},{"key":"e_1_3_2_1_2_1","volume-title":"Toward Security and Performance Certification of Open Stack. In 8th IEEE International Conference on Cloud Computing, CLOUD 2015","author":"Anisetti Marco","year":"2015","unstructured":"Marco Anisetti , Claudio Agostino Ardagna , Ernesto Damiani , Filippo Gaudenzi , and Roberto Veca . 2015 . Toward Security and Performance Certification of Open Stack. In 8th IEEE International Conference on Cloud Computing, CLOUD 2015 . 10.1109\/CLOUD.2015.81 Marco Anisetti, Claudio Agostino Ardagna, Ernesto Damiani, Filippo Gaudenzi, and Roberto Veca. 2015. Toward Security and Performance Certification of Open Stack. In 8th IEEE International Conference on Cloud Computing, CLOUD 2015. 10.1109\/CLOUD.2015.81"},{"key":"e_1_3_2_1_3_1","volume-title":"Cloud Property Graph: Connecting Cloud Security Assessments with Static Code Analysis. In 2021 IEEE 14th International Conference on Cloud Computing (CLOUD).","author":"Banse Christian","year":"2021","unstructured":"Christian Banse , Immanuel Kunz , Angelika Schneider , and Konrad Weiss . 2021 . Cloud Property Graph: Connecting Cloud Security Assessments with Static Code Analysis. In 2021 IEEE 14th International Conference on Cloud Computing (CLOUD). Christian Banse, Immanuel Kunz, Angelika Schneider, and Konrad Weiss. 2021. Cloud Property Graph: Connecting Cloud Security Assessments with Static Code Analysis. In 2021 IEEE 14th International Conference on Cloud Computing (CLOUD)."},{"key":"e_1_3_2_1_8_1","first-page":"2013","article-title":"Information technology --- Security techniques --- Information security management systems --- Requirements","volume":"27001","author":"Central Secretary ISO","year":"2013","unstructured":"ISO Central Secretary . 2013 . Information technology --- Security techniques --- Information security management systems --- Requirements . Standard ISO\/IEC 27001 : 2013 . International Organization for Standardization, Geneva, CH. ISO Central Secretary. 2013. Information technology --- Security techniques --- Information security management systems --- Requirements. Standard ISO\/IEC 27001:2013. International Organization for Standardization, Geneva, CH.","journal-title":"Standard ISO\/IEC"},{"key":"e_1_3_2_1_9_1","first-page":"2014","article-title":"Information technology --- Cloud computing --- Overview and vocabulary","volume":"17788","author":"Central Secretary ISO","year":"2014","unstructured":"ISO Central Secretary . 2014 . Information technology --- Cloud computing --- Overview and vocabulary . Standard ISO\/IEC 17788 : 2014 . International Organization for Standardization, Geneva, CH. ISO Central Secretary. 2014. Information technology --- Cloud computing --- Overview and vocabulary. Standard ISO\/IEC 17788:2014. International Organization for Standardization, Geneva, CH.","journal-title":"Standard ISO\/IEC"},{"key":"e_1_3_2_1_10_1","volume-title":"2019 IEEE 28th International Conference on Enabling Technologies: Infrastructure for Collaborative Enterprises (WETICE). 10","author":"Knoblauch Dorian","year":"2019","unstructured":"Dorian Knoblauch and Christian Banse . 2019 . Reducing Implementation Efforts in Continuous Auditing Certification Via an Audit API . In 2019 IEEE 28th International Conference on Enabling Technologies: Infrastructure for Collaborative Enterprises (WETICE). 10 .1109\/WETICE.2019.00025 Dorian Knoblauch and Christian Banse. 2019. Reducing Implementation Efforts in Continuous Auditing Certification Via an Audit API. In 2019 IEEE 28th International Conference on Enabling Technologies: Infrastructure for Collaborative Enterprises (WETICE). 10.1109\/WETICE.2019.00025"},{"key":"e_1_3_2_1_11_1","volume-title":"Privacy Smells: Detecting Privacy Problems in Cloud Architectures. In 19th International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom).","author":"Kunz Immanuel","year":"2020","unstructured":"Immanuel Kunz , Angelika Schneider , and Christian Banse . 2020 . Privacy Smells: Detecting Privacy Problems in Cloud Architectures. In 19th International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom). Immanuel Kunz, Angelika Schneider, and Christian Banse. 2020. Privacy Smells: Detecting Privacy Problems in Cloud Architectures. In 19th International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom)."},{"key":"e_1_3_2_1_12_1","first-page":"25","article-title":"Designing Monitoring Systems for Continuous Certification of Cloud Services: Deriving Meta-requirements and Design Guidelines","volume":"44","author":"Lins Sebastian","year":"2019","unstructured":"Sebastian Lins , Stephan Schneider , Jakub Szefer , Shafeeq Ibraheem , and Ali Sunyaev . 2019 . Designing Monitoring Systems for Continuous Certification of Cloud Services: Deriving Meta-requirements and Design Guidelines . Commun. Assoc. Inf. Syst. 44 (2019), 25 . Sebastian Lins, Stephan Schneider, Jakub Szefer, Shafeeq Ibraheem, and Ali Sunyaev. 2019. Designing Monitoring Systems for Continuous Certification of Cloud Services: Deriving Meta-requirements and Design Guidelines. Commun. Assoc. Inf. Syst. 44 (2019), 25.","journal-title":"Commun. Assoc. Inf. Syst."},{"key":"e_1_3_2_1_13_1","volume-title":"Towards a Security Stress-Test for Cloud Configurations. arXiv preprint arXiv:2205.14498","author":"Minna Francesco","year":"2022","unstructured":"Francesco Minna , Fabio Massacci , and Katja Tuma . 2022. Towards a Security Stress-Test for Cloud Configurations. arXiv preprint arXiv:2205.14498 ( 2022 ). Francesco Minna, Fabio Massacci, and Katja Tuma. 2022. Towards a Security Stress-Test for Cloud Configurations. arXiv preprint arXiv:2205.14498 (2022)."},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"crossref","unstructured":"Philipp Stephanow and Niels Fallenbeck. 2015. Towards Continuous Certification of Infrastructure-as-a-Service Using Low-Level Metrics. In UIC\/ATC\/ScalCom.  Philipp Stephanow and Niels Fallenbeck. 2015. Towards Continuous Certification of Infrastructure-as-a-Service Using Low-Level Metrics. In UIC\/ATC\/ScalCom.","DOI":"10.1109\/UIC-ATC-ScalCom-CBDCom-IoP.2015.268"},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1109\/AINA.2017.107"},{"key":"e_1_3_2_1_16_1","volume-title":"2017 IEEE International Conference on Cloud Computing Technology and Science (CloudCom). 255--262","author":"Stephanow Philipp","year":"2017","unstructured":"Philipp Stephanow , Mohammad Moein , and Christian Banse . 2017 . Continuous location validation of cloud service components . In 2017 IEEE International Conference on Cloud Computing Technology and Science (CloudCom). 255--262 . Philipp Stephanow, Mohammad Moein, and Christian Banse. 2017. Continuous location validation of cloud service components. In 2017 IEEE International Conference on Cloud Computing Technology and Science (CloudCom). 255--262."},{"key":"e_1_3_2_1_17_1","volume-title":"9th International Conference on Cloud Computing (CLOUD). 843--848","author":"Stephanow Philipp","year":"2016","unstructured":"Philipp Stephanow , Gaurav Srivastava , and Julian Sch\u00fctte . 2016 . Test-based cloud service certification of opportunistic providers . In 9th International Conference on Cloud Computing (CLOUD). 843--848 . Philipp Stephanow, Gaurav Srivastava, and Julian Sch\u00fctte. 2016. Test-based cloud service certification of opportunistic providers. In 9th International Conference on Cloud Computing (CLOUD). 843--848."},{"key":"e_1_3_2_1_18_1","unstructured":"W3C. 2014. RDF 1.1 Concepts and Abstract Syntax. Technical Report. W3C. https:\/\/www.w3.org\/TR\/2014\/REC-rdf11-concepts-20140225\/  W3C. 2014. RDF 1.1 Concepts and Abstract Syntax. Technical Report. W3C. https:\/\/www.w3.org\/TR\/2014\/REC-rdf11-concepts-20140225\/"}],"event":{"name":"SAC '23: 38th ACM\/SIGAPP Symposium on Applied Computing","location":"Tallinn Estonia","acronym":"SAC '23","sponsor":["SIGAPP ACM Special Interest Group on Applied Computing"]},"container-title":["Proceedings of the 38th ACM\/SIGAPP Symposium on Applied Computing"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3555776.3577600","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3555776.3577600","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T17:49:19Z","timestamp":1750182559000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3555776.3577600"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,3,27]]},"references-count":14,"alternative-id":["10.1145\/3555776.3577600","10.1145\/3555776"],"URL":"https:\/\/doi.org\/10.1145\/3555776.3577600","relation":{},"subject":[],"published":{"date-parts":[[2023,3,27]]},"assertion":[{"value":"2023-06-07","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}