Info: Zenodo’s user support line is staffed on regular business days between Dec 23 and Jan 5. Response times may be slightly longer than normal.

Published October 1, 2016 | Version v1
Journal article Open

Usage Control on Cloud Systems

  • 1. Consiglio Nazionale delle Ricerche

Description

Cloud Computing is becoming increasingly popular because of its peculiarities, such as the availability on demand of (a large amount of) resources, even for a long time. For this reason, Cloud Computing represents a good solution for those companies that want to outsource part of their software processes. However, Cloud Computing introduces new security and management challenges with respect to traditional systems exposed on the Internet. This paper presents an advanced authorization service based on the Usage Control model to regulate the usage of Cloud resources, focussing on IaaS services.

Our framework addresses the issue of long lasting usage of resources, because it allows to define Usage Control policies which are continuously enforced while the access is in progress. In particular, our framework is able to interrupt the usage of such resources when the corresponding policy is not satisfied any more. In this paper, we present the architecture of the proposed framework describing the integration of a Usage Control based authorization service within one of the most popular software for running Cloud services: OpenNebula. Moreover, we describe the implementation of a prototype of the whole framework, along with some performance figures.

Files

1-s2.0-S0167739X16300875-main.pdf

Files (1.4 MB)

Name Size Download all
md5:e3b809ec22a4b694f9eb88b478b0c9d7
1.4 MB Preview Download