Towards a Generic Security Framework for Cloud Data Management Environments

Towards a Generic Security Framework for Cloud Data Management Environments

Alexandra Carpen-Amarie (Inria Rennes – Bretagne Atlantique, France), Alexandru Costan (Inria Rennes – Bretagne Atlantique, France), Catalin Leordeanu (University Politehnica Bucharest, Romania), Cristina Basescu (University Politehnica Bucharest, Romania) and Gabriel Antoniu (Inria Rennes – Bretagne Atlantique, France)
Copyright: © 2012 |Pages: 18
DOI: 10.4018/jdst.2012010102
OnDemand PDF Download:
$30.00
List Price: $37.50

Abstract

Providing an adequate security level in Cloud Environments is currently an extremely active research area. More specifically, malicious behaviors targeting large-scale Cloud data repositories (e.g., Denial of Service attacks) may drastically degrade the overall performance of such systems and cannot be detected by typical authentication mechanisms. This article proposes a generic security management framework allowing providers of Cloud data management systems to define and enforce complex security policies. This security framework is designed to detect and stop a large array of attacks defined through an expressive policy description language and to be easily interfaced with various data management systems. The authors show that they can efficiently protect a data storage system by evaluating the security framework on top of the BlobSeer data management platform. The authors evaluate the benefits of preventing a DoS attack targeted towards BlobSeer through experiments performed on the Grid’5000 testbed.
Article Preview

Moving data into the Cloud offers great convenience to users since they don’t have to handle the complexities of the storage management, but it also raises several security concerns highlighted by a number of research works. Most of them only focus on ensuring data privacy and correctness and don’t tackle the additional security concerns about control policies raised by the need of the clients to rely on the security tools of the Cloud service providers.

Complete Article List

Search this Journal:
Reset
Open Access Articles
Volume 8: 4 Issues (2017)
Volume 7: 4 Issues (2016)
Volume 6: 4 Issues (2015)
Volume 5: 4 Issues (2014)
Volume 4: 4 Issues (2013)
Volume 3: 4 Issues (2012)
Volume 2: 4 Issues (2011)
Volume 1: 4 Issues (2010)
View Complete Journal Contents Listing