Skip to main content

A Security and Privacy-Preserving Path for Enhancing Information Systems that Manage Cross-Cloud Applications

  • Conference paper
  • First Online:
Web, Artificial Intelligence and Network Applications (WAINA 2020)

Abstract

Security is one of the most crucial elements of cloud solutions and at the same time one of the most important obstacles towards cloud adoption. This paper recommends a set of security-related guidelines for adoption by any advanced information system that aspires to offer DevOps capabilities for deploying and reconfiguring cross-cloud applications. These guidelines address several security challenges organised against three categories: user and component authentication, advanced access control and secure communication enablers. This paper also presents how specific security enhancements were designed, implemented and integrated for serving a PaaS platform that supports the lifecycle management of cross-cloud applications.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 229.00
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 299.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Notes

  1. 1.

    https://cloudsecurityalliance.org/research/working-groups/top-threats/.

  2. 2.

    https://fim4r.org/.

References

  1. Verginadis, Y., Patiniotakis, I., Mentzas, G.: Metadata schema for data-aware multi-cloud computing. In: IEEE (SMC) INISTA, pp. 1–9 (2018)

    Google Scholar 

  2. Horn, G., Skrzypek, P.: MELODIC: utility based cross cloud deployment optimisation. In: Proceedings of the 32nd International Conference on Advanced Information Networking and Applications Workshops (WAINA) (2018)

    Google Scholar 

  3. Woo, T.Y.C., Simon, S.L.: Authentication for distributed systems. Computer 25(1), 39–52 (1992)

    Article  Google Scholar 

  4. Baskerville, R.: Information systems security design methods: implications for information systems development. ACM Comput. Surv. 25(4), 375–414 (1993)

    Article  Google Scholar 

  5. Hu, V.C., Ferraiolo, D., Kuhn, R., Friedman, A.R., Lang, A.J., Cogdell, M.M., Schnitzer, A., Sandlin, K., Miller, R., Scarfone, K.: Guide to attribute based access control (ABAC) definition and considerations (draft). NIST Spec. Publ. 800(162), 1–52 (2013)

    Google Scholar 

  6. Ferraiolo, D., Chandramouli, R., Kuhn, R., Hu, V.: Extensible access control markup language (XACML) and next generation access control (NGAC). In: Proceedings of the ACM International Workshop on Attribute Based Access Control, pp. 13–24. ACM (2016)

    Google Scholar 

  7. Horn, G., Skrzypek, P., Prusinski, M., Materka, K., Stefanidis, V., Verginadis, Y.: MELODIC: selection and integration of open source to build an autonomic cross-cloud deployment platform. In: International Conference on TOOLS 50+1: Technology of Object-Oriented Languages and System, Innopolis, Russia (2019)

    Google Scholar 

  8. Bergmayr, A., Rossini, A., Ferry, N., Horn, G., Orue-Echevarria, L., Solberg, A. Wimmer, M.: The evolution of CloudML and its applications. In: Proceedings of the 3rd International Workshop on Model-Driven Engineering (MoDELS 2015), vol. 1563, pp. 13–18 (2015)

    Google Scholar 

  9. Verginadis, Y., Patiniotakis, I., Gouvas, G. Mantzouratos, S., Veloudis, S., Schork, S., Seitz, L., Paraskakis, I., Mentzas, G.: Context-aware policy enforcement for PaaS-enabled access control. IEEE Trans. Cloud Comput. 1–16 (2019). https://doi.org/10.1109/tcc.2019.2927341

Download references

Acknowledgments

The research leading to these results has received funding from the EU’s Horizon 2020 research and innovation programme under grant agreement No. 731664 (MELODIC project). The authors would also like to thank A. Michalas, A. Kuligowski and S. Kobus for their valuable insights.

Author information

Authors and Affiliations

Authors

Corresponding author

Correspondence to Yiannis Verginadis .

Editor information

Editors and Affiliations

Rights and permissions

Reprints and permissions

Copyright information

© 2020 Springer Nature Switzerland AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Verginadis, Y., Patiniotakis, I., Prusinski, M., Rozanska, M., Schork, S., Mentzas, G. (2020). A Security and Privacy-Preserving Path for Enhancing Information Systems that Manage Cross-Cloud Applications. In: Barolli, L., Amato, F., Moscato, F., Enokido, T., Takizawa, M. (eds) Web, Artificial Intelligence and Network Applications. WAINA 2020. Advances in Intelligent Systems and Computing, vol 1150. Springer, Cham. https://doi.org/10.1007/978-3-030-44038-1_103

Download citation

Publish with us

Policies and ethics