Policy-based Security Provisioning and Performance Control in the Cloud
Viswanath Nandina, José Marcio Luna, Edward J. Nava, Christopher C. Lamb, Gregory L. Heileman, Chaouki T. Abdallah
2013
Abstract
In this paper we describe the development of a system that provides security provisioning and performance controls over content in a cloud environment. Using an approach grounded in Usage Management and Control theory we are able to successfully provision resources in multiple cloud systems. Providing increased security comes with a cost of reduced performance. Therefore a variable performance control model for different levels of security is proposed. This control model allocates Virtual Machines adaptively so that a desired performance measure lies between predefined upper and lower bounds as agreed in the Service Level Agreement.
References
- Haykin, S. (2002). Adaptive Filter Theory. Prentice Hall.
- Hellerstein, J., Diao, Y., Parekh, S., and Tilbury, D. M. (2004). Feedback Control of Computing Systems. John Wiley & Sons.
- Jamkhedkar, P. A., Heileman, G. L., and Lamb, C. C. (2010). An interoperable usage management framework. In Proceedings of the tenth annual ACM workshop on Digital rights management, DRM 7810, pages 73-88, New York, NY, USA. ACM.
- Jamkhedkar, P. A., Lamb, C. C., and Heileman, G. L. (2011). Usage management in cloud computing. In IEEE CLOUD, pages 525-532.
- KulhavÉ, R. (1987). Restricted exponential forgetting in real-time identification. Automatica, 25(5):589-600.
- Lim, H., Babu, S., Chase, J., and Parekh, S. (2009). Automated control in cloud computing: Challenges and opportunities. In Proc. of 1st Workshop on Autom. Ctrl for Datacenters & Clouds., pages 13-18, Barcelona.
- Luna, J. M. and Abdallah, C. T. (2011). Control in computing systems: Part ii. In IEEE Multi-Conference on Systems and Control, Denver, CO.
- Nathuji, R., Kansal, A., and Ghaffarkhah, A. (2010). Qclouds: Managing performance interference effects for qos-aware clouds. In Proceedings of the ACM European Society in Systems Conference 2010, pages 237-250, Paris, France.
- Takabi, H. and Joshi, J. B. D. (2012). Policy management as a service: An approach to manage policy heterogeneity in cloud computing environment. In HICSS, pages 5500-5508. IEEE Computer Society.
- Takabi, H., Joshi, J. B. D., and Ahn, G.-J. (2010). Security and privacy challenges in cloud computing environments. IEEE Security and Privacy, 8(6):24-31.
- Vliet, J. V. and Paganelli, F. (2011). Programming Amazon EC2. Oreilly Media Inc.
- Yao, J., Liu, X., Chen, X., Wang, X., and Li, J. (2010). Online decentralized adaptive optimal controller design of cpu utilization for distributed real-time embedded systems. In Proceedings of the 2010 American Control Conference (ACC'10), pages 283-288, Baltimore, MD.
- Zissis, D. and Lekkas, D. (2012). Addressing cloud computing security issues. Future Gener. Comput. Syst., 28(3):583-592.
Paper Citation
in Harvard Style
Nandina V., Luna J., Nava E., Lamb C., Heileman G. and Abdallah C. (2013). Policy-based Security Provisioning and Performance Control in the Cloud . In Proceedings of the 3rd International Conference on Cloud Computing and Services Science - Volume 1: CLOSER, ISBN 978-989-8565-52-5, pages 502-508. DOI: 10.5220/0004378705020508
in Bibtex Style
@conference{closer13,
author={Viswanath Nandina and José Marcio Luna and Edward J. Nava and Christopher C. Lamb and Gregory L. Heileman and Chaouki T. Abdallah},
title={Policy-based Security Provisioning and Performance Control in the Cloud},
booktitle={Proceedings of the 3rd International Conference on Cloud Computing and Services Science - Volume 1: CLOSER,},
year={2013},
pages={502-508},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0004378705020508},
isbn={978-989-8565-52-5},
}
in EndNote Style
TY - CONF
JO - Proceedings of the 3rd International Conference on Cloud Computing and Services Science - Volume 1: CLOSER,
TI - Policy-based Security Provisioning and Performance Control in the Cloud
SN - 978-989-8565-52-5
AU - Nandina V.
AU - Luna J.
AU - Nava E.
AU - Lamb C.
AU - Heileman G.
AU - Abdallah C.
PY - 2013
SP - 502
EP - 508
DO - 10.5220/0004378705020508