Cloud computing is the delivery of on-demand computing resources. It shares the resources or provides vir-utilization that enables single user to access various Cloud services such as CPU, memory, storage devices, network, and so on. However, more commercial cloud services offered by several cloud service providers (CSPs) are available in the market place. Most CSPs must, therefore, deal with the dynamic resource allocation where the mobile services are migrating from one cloud to another cloud environment to provide heterogeneous resources based on user needs. There is still a lack of heuristics that are able to check requested resources and available resources to allocate and deallocate before it begins the secure service migration. We proposed a resource allocation security protocol that allows resources to be allocated and migrated efficiently in a secure service migration between cloud infrastructures. Furthermore, formal methods can be used for protocols to verify the desired properties, detecting attacks and producing accurate outcomes. This article presents formal modeling and verification of this abstract protocol using ProVerif cryptographic tool to validate the security properties such as secrecy of resources, authentication from both parties and key exchange in order to securely migrate resources in commercial cloud environments.

中文翻译：

---

商业云系统安全服务迁移的资源分配算法建模与验证

云计算是按需提供计算资源。它共享资源或提供 vir-utilization 使单个用户能够访问各种云服务，例如 CPU、内存、存储设备、网络等。但是，市场上有更多由多个云服务提供商 (CSP) 提供的商业云服务。因此，大多数 CSP 必须处理移动服务从一个云迁移到另一个云环境的动态资源分配，以根据用户需求提供异构资源。仍然缺乏能够在开始安全服务迁移之前检查请求的资源和可用资源以分配和解除分配的启发式方法。我们提出了一种资源分配安全协议，允许在云基础设施之间的安全服务迁移中有效地分配和迁移资源。此外，形式化方法可用于协议验证所需属性、检测攻击并产生准确结果。本文介绍了使用 ProVerif 加密工具对该抽象协议进行形式化建模和验证，以验证资源保密性、双方身份验证和密钥交换等安全属性，以便在商业云环境中安全地迁移资源。