Towards a Generic Security Framework for Cloud Data Management Environments

Alexandra Carpen-Amarie 1 Alexandru Costan 1 Catalin Leordeanu 2 Cristina Basescu 2 Gabriel Antoniu 1, *
* Corresponding author
1 KerData - Scalable Storage for Clouds and Beyond
IRISA-D1 - SYSTÈMES LARGE ÉCHELLE, Inria Rennes – Bretagne Atlantique
Abstract : Providing an adequate security level in Cloud environments is currently an extremely active research area. More specifically, malicious behaviors targeting large-scale Cloud data repositories (e.g. Denial of Service attacks) may drastically degrade the overall performance of such systems and cannot be detected by typical authentication mechanisms. In this paper we propose a generic security management framework allowing providers of Cloud data management systems to define and enforce complex security policies. This security framework is designed to detect and stop a large array of attacks defined through an expressive policy description language and to be easily interfaced with various data management systems. We show that we can efficiently protect a data storage system by evaluating our security framework on top of the BlobSeer data management platform. We evaluate the benefits of preventing a DoS attack targeted towards BlobSeer through experiments performed on the Grid'5000 testbed.
Complete list of metadatas

https://hal.inria.fr/hal-00670923
Contributor : Gabriel Antoniu <>
Submitted on : Thursday, February 16, 2012 - 1:32:38 PM
Last modification on : Friday, November 16, 2018 - 1:38:37 AM

Identifiers

  • HAL Id : hal-00670923, version 1

Citation

Alexandra Carpen-Amarie, Alexandru Costan, Catalin Leordeanu, Cristina Basescu, Gabriel Antoniu. Towards a Generic Security Framework for Cloud Data Management Environments. International Journal of Distributed Systems and Technologies (IJDST), Special Issue on Security, Privacy and Trust, IGI Publishing, 2012. ⟨hal-00670923⟩

Share

Metrics

Record views

832