Cloud Service Feature driven Security Policies for Virtualized Infrastructures
نویسنده
چکیده
With the increasing maturity of various cloud service delivery models ( Software as a Service (SaaS), Platform as a Service (PaaS), Infrastructure as a Service (IaaS)) and deployment models (Private, Community, Public, Hybrid), the security risk profile of each cloud service configuration is coming into focus. In this paper, we take up the example of a Public Infrastructure as a Service (Iaas) cloud provider who provides computing services through a data center with a virtualized infrastructure. In order to provide the needed security assurance for its IaaS cloud offering, the cloud provider needs to implement various security measures as part of the infrastructure configuration. A precursor to developing security measures is a comprehensive security policy. Now these policies are dependent upon the set of service features that the IaaS cloud provider provides as part of its offering as well as internal administrative capabilities needed to support those features. The focus of this paper is to illustrate an approach for derivation of appropriate security policies based on the security goals of functions associated with internal administration capabilities and cloud service features.
منابع مشابه
An Efficient Role-based Access Control on Encrypted Data in Cloud
Cloud Computing is a virtualized compute power and storage delivered via platform-agnostic infrastructures of abstracted hardware and software accessed over the Internet. Cloud Computing involves delivering hosted services over the internet. These services are broadly categorized into three types, Infrastructure-as-a –Service (IaaS), Platform-as-a-Service(PaaS) and Software-as-a-Service(SaaS). ...
متن کاملCloudSim: A Novel Framework for Modeling and Simulation of Cloud Computing Infrastructures and Services
Cloud computing focuses on delivery of reliable, secure, fault-tolerant, sustainable, and scalable infrastructures for hosting Internet-based application services. These applications have different composition, configuration, and deployment requirements. Quantifying the performance of scheduling and allocation policy on a Cloud infrastructure (hardware, software, services) for different applica...
متن کاملEnergy Aware Resource Management of Cloud Data Centers
Cloud Computing, the long-held dream of computing as a utility, has the potential to transform a large part of the IT industry, making software even more attractive as a service and shaping the way IT hardware is designed and purchased. Virtualization technology forms a key concept for new cloud computing architectures. The data centers are used to provide cloud services burdening a significant...
متن کاملTwo-Level Cooperation in Autonomic Cloud Resource Management
Virtualized cloud infrastructures are becoming very popular as they allow separation of hardware and software management. Infrastructure as a Service (IaaS) is the model providing many advantages to both provider and customer. Minimizing the number of resource (and power consumption) in use is one of the main services that such an cloud model must ensure. This objective can be done either by th...
متن کاملNOVI Tools and Algorithms for Federating Virtualized Infrastructures
The EC FP7/FIRE STREP project NOVI Network Innovation over Virtualized Infrastructures explores efficient approaches to compose virtualized e-Infrastructures towards a holistic Future Internet (FI) cloud service. Resources belonging to various levels, i.e. networking, storage and processing are in principle managed by separate yet inter-working providers. In this ecosystem NOVI aspires to devel...
متن کامل