Towards a Generic Security Framework for Cloud Data Management Environments

Alexandra Carpen-Amarie 1 Alexandru Costan 1 Catalin Leordeanu 2 Cristina Basescu 2 Gabriel Antoniu 1, *
* Auteur correspondant
1 KerData - Scalable Storage for Clouds and Beyond
Inria Rennes – Bretagne Atlantique , IRISA-D1 - SYSTÈMES LARGE ÉCHELLE
Abstract : Providing an adequate security level in Cloud environments is currently an extremely active research area. More specifically, malicious behaviors targeting large-scale Cloud data repositories (e.g. Denial of Service attacks) may drastically degrade the overall performance of such systems and cannot be detected by typical authentication mechanisms. In this paper we propose a generic security management framework allowing providers of Cloud data management systems to define and enforce complex security policies. This security framework is designed to detect and stop a large array of attacks defined through an expressive policy description language and to be easily interfaced with various data management systems. We show that we can efficiently protect a data storage system by evaluating our security framework on top of the BlobSeer data management platform. We evaluate the benefits of preventing a DoS attack targeted towards BlobSeer through experiments performed on the Grid'5000 testbed.
Type de document :
Article dans une revue
International Journal of Distributed Systems and Technologies (IJDST), Special Issue on Security, Privacy and Trust, IGI Publishing, 2012
Liste complète des métadonnées

https://hal.inria.fr/hal-00670923
Contributeur : Gabriel Antoniu <>
Soumis le : jeudi 16 février 2012 - 13:32:38
Dernière modification le : vendredi 25 mai 2018 - 01:29:11

Identifiants

  • HAL Id : hal-00670923, version 1

Citation

Alexandra Carpen-Amarie, Alexandru Costan, Catalin Leordeanu, Cristina Basescu, Gabriel Antoniu. Towards a Generic Security Framework for Cloud Data Management Environments. International Journal of Distributed Systems and Technologies (IJDST), Special Issue on Security, Privacy and Trust, IGI Publishing, 2012. 〈hal-00670923〉

Partager

Métriques

Consultations de la notice

773