Multi-Cloud Governance Service based on Model Driven Policy Generation

Juan Li, Wendpanga Francis Ouedraogo, Frédérique Biennier

Abstract

Cloud computing is an innovative and promising paradigm that is leading to remarkable changes in the way we manage our business. Cloud computing can provide scalable IT infrastructure, QoS-assured services and customizable computing environment. Such scalable and agile environment increases the call for agile and dynamic deployment and governance environments over multi-cloud infrastructure. Unfortunately, by now, governance and Non Functional Properties (such as security, QoS…) are managed in a static way, limiting the global benefits of deploying service-based information system over multi-cloud environments. To overcome this limit, we propose a contextualised policy generation process to allow both an agile management NFP in a multi-cloud context and a secured deployment of the service-based information system. Thanks to the generation of these NFP policies, NFP management functions can be orchestrated at runtime so that the exact execution context can be taken into account.

References

  1. Alhamad, M., Dillon, T., Chang, E., 2011. a survey on SLA and performance measurement in cloud computing, on the move to meaningful internet systems: OTM 201, springer Berlin, 7045, 469-477.
  2. Basin, D., Doser J., Lodderstedt, T., 2003. Model Driven Security for Process Oriented Systems, In SACMAT 7803: Proceedings of the eighth ACM symposium on Access control models and technologies.
  3. Clayman, S., Galis, A., Chapman, C., Toffetti, G., RoderoMerino, L., Vaquero, L. M., Nagin, K., Rochwerger B., 2010. Monitoring Service Clouds in the Future Internet. In: Tselentis, G and Galis, A and Gavras, A and Krco, S and Lotz, V and Simperl, E and Stiller, B and Zahariadis, T, (eds.) Towards the Future Internet - Emerging Trends from European Research.,pp. 115 - 126
  4. Cloud security alliance, 2012. Security Guidance for Critical Areas of Focus in Cloud Computing V3, https://cloudsecurityalliance.org/wp-content/themes/ csa/guidance-download-box.php.
  5. Clavel, M., Silva, V., Braga, C., Egea, M., 2008. ModelDriven Security in Practice: An Industrial Experience, ECMDA-FA 7808 Proceedings of the 4th European conference on Model Driven Architecture: Foundations and Applications, pp.326 - 337.
  6. DMTF Informational, 2009. Interoperable Clouds - A White Paper from the Open Cloud Standards Incubator
  7. Freitas A.L., Parlavantzas N., Pazat J., 2012. An Integrated Approach for Specifying and Enforcing SLAs for Cloud Services.; In Proceedings of IEEE CLOUD. pp. 376-383.
  8. Gartner, Inc. analysts, 2012. Gartner Report. Top 10 Strategic Technologies for 2012.
  9. Garrison, G., Kim, S., Wakefield, R. L., 2012, Success factors for deploying cloud computing. Commun. ACM 55(9) pp., 62-68.
  10. Gogouvitis, S., Konstanteli, K., Waldschmidt, S., Kousiouris, G., Katsaros G., Menychtas A., Kyriazis D., Varvarigou, T., 2012. Workflow management for soft Real-time Interactive applications in virtualized environments. Future Generation Computer Systems 28 (1), 193-209.
  11. Heward, G., 2010. Assessing the Performance Impact of Service Monitoring. In Proceedings of the 2010 21st Australian Software Engineering Conference (ASWEC 7810). IEEE Computer Society, Washington, DC, USA.
  12. Jureta, J.I., Herssens, C., Faulkner S., 2009. A comprehensive quality model for service-oriented systems. Software Quality Control 17 (1), , 65-98.
  13. Jericho Forum, 2009. “Cloud Cube Model: Selecting Cloud Formations for Secure Collaboration,” Jericho Forum, Version 1.0, http://www.opengroup.org/ jericho/cloud_cube_model_v1.0.pdf.
  14. Jürjens, J., 2005. Model-Based Security Engineering with UML, FOSAD 2004/2005, Springer-Verlag Berlin Heidelberg, pp.42-77.
  15. Jayasinghe D., Swint G., Malkowski S.,Li J., Wang Q, Park J., Pu C., 2012. Expertus: A Generator Approach to Automate Performance Testing in IaaS Clouds, IEEE Fifth International Conference on Cloud Computing, pp. 115-122,
  16. Katsaros, G., Kousiouris, G., Gogouvitis, S.V., Kyriazis D., Menychtas, A., Varvarigou T., 2012. A Selfadaptive hierarchical monitoring mechanism for Clouds, Journal of Systems and Software, 85 (5), 1029-1041,
  17. Li, J., Biennier, F., Amghar, Y., 2012. Business as a Service governance in a Cloud organization. Proceedings of the I-ESA Conferences 6, Enterprise Interoperability V, pp. 355-365.
  18. Loganayagi, B., Sjuatha, S., 2012. Enhance Cloud Security by Combining Virtualization and Policy Monitoring Techniques, Procedia Engineering, 30, 654-661,
  19. Mell, P., Grance, T., 2011. The NIST Definition of Cloud Computing, NIST Special Publication 800-145.
  20. Marcos, E., Acuria, C., Cuesta C., 2006. Integrating Software Architecture into a MDA Framework, sofware architecture, pp 127-143.
  21. Mülle, J, von Stackelberg, S., Böhm, K., 2011. Security Language for BPMN Process Models, Karlsruhe institute of technology, Germany.
  22. Moran, D., Vaquero, L.M., Galan, F., 2011. Elastically Ruling the cloud: specifying application's behavior in federated clouds. in: IEEE International Conference on Cloud Computing - CLOUD, pp. 89-96,
  23. Ouedraogo, W.F., Biennier, F., Ghodous, P., 2012. Adaptive security policy model to deploy business process in cloud infrastructure. The 2nd International Conference on Cloud Computing and Services Science, CLOSER 2012. Porto, Portugal, pp. 287-290.
  24. Organization for the Advancement of Structured Information Standards (OASIS), 2009.OASIS: Reference Architecture Foundation for Service Oriented Architecture, Version 1.0.
  25. Papazoglou M., Van Den W., Heuvel, 2006. Serviceoriented design and development methodology. Int. J. Web Eng. Technol. 2, 4, 412-442.
  26. Rodero-Merino L., M. Vaquero L., Gil V., Galán F, Javier Fontán J., Montero R. S., Llorente I. M., 2010. From infrastructure delivery to service management in clouds, Future Generation Computer Systems, Volume 26, Issue 8, 1226-1240.
  27. Souza, A., Silva B., Lins F., Damasceno J., Rosa N., 2009. Sec-MoSC Tooling - Incorporating Security Requirements into Service Composition. Proceeding ICSOC-ServiceWave 7809 Proceedings of the 7th International Joint Conference on Service-Oriented Computing, pp 649 - 650.
  28. Torres, V., Giner, P., Pelechano, V., 2012. Developing BP-driven web applications through the use of MDE techniques, Software & Systems Modeling, SpringerVerlag Volume 11, Issue 4, pp 609-631
  29. Uzunov, A. V., Fernandez, E. B., Falkner, K., 2012. Securing distributed systems using patterns: A survey, Computers & Security, Volume 31, Issue 5, pp.681- 703.
  30. Van Der Straeten, R., Mens, T., Van Baelen, S., 2009. Models in Software Engineering: challenges in ModelDriven Software Engineering, Springer-Verlag Berlinpp. 35 - 47 .
  31. Vaquero L. M., Morán D., Galán F., Alcaraz-Calero,J. M., 2012.Towards Runtime Reconfiguration of Application Control Policies in the Cloud, Journal of Network and Systems Management,Volume 20, Issue 4, pp 489-512.
  32. Wolter, C., Menzel M., Schaad A., Miseldine P, 2009. Model-driven business process security requirement specification, Journal of Systems Architecture JSA, 211-223.
  33. Yoshioka, N., Washizaki, H., 2008. A survey on security patterns, Progress in Informatics, No. 5 pp. 35-47.
  34. Zhu Q., Tung, T., 2012. A Performance Interference Model for Managing Consolidated Workloads in QoSAware Clouds, Cloud Computing (CLOUD), 2012 IEEE 5th International Conference, pp.170-179,
  35. Zhang, Q., Cheng, L., Boutaba R.., 2010. Cloud Computing: state-of-the-art and research challenges, J: Internet Services and Applications,1(1), 7-18
Download


Paper Citation


in Harvard Style

Li J., Francis Ouedraogo W. and Biennier F. (2013). Multi-Cloud Governance Service based on Model Driven Policy Generation . In Proceedings of the 3rd International Conference on Cloud Computing and Services Science - Volume 1: CLOSER, ISBN 978-989-8565-52-5, pages 165-174. DOI: 10.5220/0004365001650174


in Bibtex Style

@conference{closer13,
author={Juan Li and Wendpanga Francis Ouedraogo and Frédérique Biennier},
title={Multi-Cloud Governance Service based on Model Driven Policy Generation},
booktitle={Proceedings of the 3rd International Conference on Cloud Computing and Services Science - Volume 1: CLOSER,},
year={2013},
pages={165-174},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0004365001650174},
isbn={978-989-8565-52-5},
}


in EndNote Style

TY - CONF
JO - Proceedings of the 3rd International Conference on Cloud Computing and Services Science - Volume 1: CLOSER,
TI - Multi-Cloud Governance Service based on Model Driven Policy Generation
SN - 978-989-8565-52-5
AU - Li J.
AU - Francis Ouedraogo W.
AU - Biennier F.
PY - 2013
SP - 165
EP - 174
DO - 10.5220/0004365001650174