AUTHORS: Tom Kirkham, Kyriakos Kritikos, Bartosz Kryza, Philippe Massonet, Franky Vanraes

ABSTRACT

Taking a model driven approach catering for automation and integration capabilities, multi-site security can be applied to Clouds which consist of various infrastructure services provided by different service providers. The proposed solution ensures attribute based access control and security policy integration across multi-cloud deployments integrating providers using common standards for identity management. Models are used as carriers of security information in terms of user attributes and security policies which are then used for the proper authentication and authorization of user requests in the developed PaaS platform. Models are also used to express domain specific security requirements which are then satisfied during the deployment planning and provisioning of applications that span multiple Cloud Providers.

Read article