Welcome to the InfoSci Platform
Securing the External Interfaces of a Federated Infrastructure Cloud

Securing the External Interfaces of a Federated Infrastructure Cloud

Philippe Massonet, Arnaud Michot, Syed Naqvi, Massimo Villari, Joseph Latanicki
Copyright: © 2013 |Pages: 28
ISBN13: 9781466629196|ISBN10: 1466629193|EISBN13: 9781466629202
DOI: 10.4018/978-1-4666-2919-6.ch082
Cite Chapter Cite Chapter

MLA

Massonet, Philippe, et al. "Securing the External Interfaces of a Federated Infrastructure Cloud." IT Policy and Ethics: Concepts, Methodologies, Tools, and Applications, edited by Information Resources Management Association, IGI Global, 2013, pp. 1876-1903. https://doi.org/10.4018/978-1-4666-2919-6.ch082

APA

Massonet, P., Michot, A., Naqvi, S., Villari, M., & Latanicki, J. (2013). Securing the External Interfaces of a Federated Infrastructure Cloud. In I. Management Association (Ed.), IT Policy and Ethics: Concepts, Methodologies, Tools, and Applications (pp. 1876-1903). IGI Global. https://doi.org/10.4018/978-1-4666-2919-6.ch082

Chicago

Massonet, Philippe, et al. "Securing the External Interfaces of a Federated Infrastructure Cloud." In IT Policy and Ethics: Concepts, Methodologies, Tools, and Applications, edited by Information Resources Management Association, 1876-1903. Hershey, PA: IGI Global, 2013. https://doi.org/10.4018/978-1-4666-2919-6.ch082

Export Reference

Mendeley
Favorite

Abstract

This chapter describes an open source solution for securing the Claudia service manager and the OpenNebula virtual execution environment manager when combined in a federated RESERVOIR architecture. The security services provide confidentiality, authentication, and integrity by securing the external API. The chapter describes how to integrate the security solution in an open source cloud computing system, how to install it, and provides an illustrative case study showing its potential for the community. The aim of the chapter is to help those who want to build their own secure infrastructure clouds. The open source security code provides mutual authentication between clients and the Claudia service manager, and secures the SMI interface with role based access control. The same security services can also secure the VMI with role based access control and X509 certificates. Finally the federation can be secured by combining an LDAP server to manage the federation and XACML security policies, and using policy matching to guarantee the respect of security policies within the federation.

Request Access

You do not own this content. Please login to recommend this title to your institution's librarian or purchase it from the IGI Global bookstore.