Preliminary Design of a Platform-as-a-Service to Provide Security in Cloud

Valentina Casola, Alessandra De Benedictis, Massimiliano Rak, Umberto Villano

2014

Abstract

Cloud computing is an emerging paradigm, widely adopted in distributed and business computing. Nevertheless, the biggest issue with the large adoption of cloud computing is the perception of loss of security and control over resources that are dynamically acquired in the cloud and that reside on remote providers, and the strong integration of security mechanisms into system architectures. This paper deals with the integration of security features into cloud applications by an as-a-service approach, using Service Level Agreements as a means to clearly define rights and constraints of both customers and providers. The goal is to show the main requirements of a platform dedicated to security and to present the global architecture, in terms of components and their interactions, devoted to negotiate, monitor and enforce the security mechanisms to be applied over existing cloud providers.

References

  1. Battista, E., Casola, V., Mazzocca, N., Ficco, M., and Rak, M. (2013). Developing secure cloud applications:a case study.
  2. Catteddu, D. (2011). Security & resilience in governmental clouds. Technical report.
  3. Commission, E. (2011). Unleashing the potential of cloud computing in europe. Technical report.
  4. Dekker, M. (2012). Critical cloud computing a ciip perspective on cloud computing services. Technical report.
  5. ETSI (2013). Cloud standards coordination. Technical report.
  6. Pannetrat, A., Hogben, G., Katopodis, S., Spanoudakis, G., and Cazorla, C. (2013). D2.1: Security-aware sla specification language and cloud security dependency model. technical report, certification infrastructure for multi-layer cloud services (cumulus).
  7. Pearson, S. (2011). Toward accountability in the cloud. Internet Computing, IEEE, 15(4):64-69.
  8. Petcu, D., Martino, B. D., S., V., Rak, M., Mhr, T., Lopez, G. E., Brito, F., Cossu, R., Stopar, M., Sperka, S., and Stankovski, V. (2013). Experiences in building a mosaic of clouds. JOURNAL OF CLOUD COMPUTING, 2:-.
  9. Pierre, G. and Stratan, C. (2012). ConPaaS: a platform for hosting elastic cloud applications. IEEE Internet Computing, 16(5):88-92.
  10. Rak, M., Suri, N., Luna, J., Petcu, D., Casola, V., and Villano, U. (2013). Security as a service using an slabased approach via specs. In IEEE, editor, Proceedings of IEEE CloudCom Conference 2013.
  11. Zeginis, D., D'Andria, F., Bocconi, S., Cruz, J. G., Martin, O. C., Gouvas, P., Ledakis, G., and Tarabanis, K. A. (2013). A user-centric multi-paas application management solution for hybrid multi-cloud scenarios. Scalable Computing: Practice and Experience, 14(1).
Download


Paper Citation


in Harvard Style

Casola V., De Benedictis A., Rak M. and Villano U. (2014). Preliminary Design of a Platform-as-a-Service to Provide Security in Cloud . In Proceedings of the 4th International Conference on Cloud Computing and Services Science - Volume 1: MultiCloud, (CLOSER 2014) ISBN 978-989-758-019-2, pages 752-757. DOI: 10.5220/0004979307520757


in Bibtex Style

@conference{multicloud14,
author={Valentina Casola and Alessandra De Benedictis and Massimiliano Rak and Umberto Villano},
title={Preliminary Design of a Platform-as-a-Service to Provide Security in Cloud},
booktitle={Proceedings of the 4th International Conference on Cloud Computing and Services Science - Volume 1: MultiCloud, (CLOSER 2014)},
year={2014},
pages={752-757},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0004979307520757},
isbn={978-989-758-019-2},
}


in EndNote Style

TY - CONF
JO - Proceedings of the 4th International Conference on Cloud Computing and Services Science - Volume 1: MultiCloud, (CLOSER 2014)
TI - Preliminary Design of a Platform-as-a-Service to Provide Security in Cloud
SN - 978-989-758-019-2
AU - Casola V.
AU - De Benedictis A.
AU - Rak M.
AU - Villano U.
PY - 2014
SP - 752
EP - 757
DO - 10.5220/0004979307520757