Warning: pg_query(): Query failed: ERROR: missing chunk number 0 for toast value 29512337 in pg_toast_2619 in /dati/webiit-old/includes/database.pgsql.inc on line 138 Warning: ERROR: missing chunk number 0 for toast value 29512337 in pg_toast_2619 query: SELECT data, created, headers, expire, serialized FROM cache_page WHERE cid = 'https://www-old.iit.cnr.it/node/39213' in /dati/webiit-old/includes/database.pgsql.inc on line 159 Warning: pg_query(): Query failed: ERROR: missing chunk number 0 for toast value 29512337 in pg_toast_2619 in /dati/webiit-old/includes/database.pgsql.inc on line 138 Warning: ERROR: missing chunk number 0 for toast value 29512337 in pg_toast_2619 query: SELECT data, created, headers, expire, serialized FROM cache_page WHERE cid = 'https://www-old.iit.cnr.it/node/39213' in /dati/webiit-old/includes/database.pgsql.inc on line 159 Usage Control on Cloud Systems | IIT - CNR - Istituto di Informatica e Telematica
IIT Home Page CNR Home Page

Usage Control on Cloud Systems

Cloud Computing is becoming increasingly popular because of its peculiarities, such as the availability on demand of (a large amount of) resources, even for a long time.
For this reason, Cloud Computing represents a good solution for those companies that want to outsource part of their software processes. 
However, Cloud Computing introduces new security and management challenges with respect to traditional systems exposed on the Internet. 
This paper presents an advanced authorization service based on the Usage Control model to regulate the usage of Cloud resources, focussing on IaaS services. 

Our framework addresses the issue of long lasting usage of resources, because it allows to define Usage Control policies which are continuously enforced while the access is in progress.
In particular, our framework is able to interrupt the usage of such resources when the corresponding policy is not satisfied any more.
In this paper, we present the architecture of the proposed framework describing the integration of a Usage Control based authorization service within one of the most popular software for running Cloud services: OpenNebula. 
Moreover, we describe the implementation of a prototype of the whole framework, along with some performance figures. 

 


Future Generation Computer Systems, 2016

Autori IIT:

Enrico Carniani

Foto di Enrico Carniani

Davide D'Arenzo

Foto di Davide DArenzo

Aliaksandr Lazouski

Foto di Aliaksandr Lazouski

Tipo: Contributo in rivista ISI
Area di disciplina: Information Technology and Communication Systems

File: UXACML-Cloud.pdf

Attività: Sicurezza nel Cloud Computing