Towards Automating Security Enhancement for Cloud Services - Archive ouverte HAL Access content directly
Conference Papers Year :

Towards Automating Security Enhancement for Cloud Services

(1) , (1) , (1)
1

Abstract

Cloud infrastructures provide new facilities (elasticity, load balancing, easy integration) to build and maintain elaborated services built from multiple resources in a flexible manner. The changes that continuously affect these services, in particular the migration of resources amongst such cloud infrastructures, induce configuration changes. These latter may generate new vulnerabilities that can compromise the confidentiality, integrity and availability of services. Our approach aims at automating the security enhancement of cloud composite services during the migration of their elementary resources. In that context, it first relies on investigating to what extent orchestration languages can be extended to support such automation. It then requires the design of a framework enabling security automation, in order to adapt and complement the configuration of these elementary resources. This includes specifying dedicated algorithms for selecting adequate security mechanisms before, during and after the migration of one or several resources composing an elaborated service. Finally, it should exploit the complementary of endogenous and exogenous mechanisms for supporting such security enhancement.
Fichier principal
Vignette du fichier
Towards Automating Security Enhancementfor Cloud Services.pdf (153.04 Ko) Télécharger le fichier
Origin : Files produced by the author(s)

Dates and versions

hal-03454868 , version 1 (29-11-2021)

Identifiers

  • HAL Id : hal-03454868 , version 1

Cite

Mohamed Oulaaffart, Remi Badonnel, Olivier Festor. Towards Automating Security Enhancement for Cloud Services. IM 2021 - 17th IFIP/IEEE International Symposium on Integrated Network Management, May 2021, Lyon / Virtuel, France. ⟨hal-03454868⟩
63 View
31 Download

Share

Gmail Facebook Twitter LinkedIn More