A security criteria regulation middleware using security policy for Web Services on multi-Cloud tenancies
| Title | A security criteria regulation middleware using security policy for Web Services on multi-Cloud tenancies |
| Publication Type | Conference Paper |
| Year of Publication | 2017 |
| Authors | Su, Z., Song, C., Dai, L., Ge, F., Yang, R., Biennier, F. |
| Conference Name | 2017 3rd International Conference on Computational Intelligence Communication Technology (CICT) |
| Publisher | IEEE |
| ISBN Number | 978-1-5090-6218-8 |
| Keywords | asset consumer security profiles, attribute-based security policy, attribute-based security policy model, cloud computing, Collaboration, colosum scaling property, complex composite service, component, Computer architecture, computing functionality, computing power, cumbersome policy files, ESB-integrated middleware, middleware, Mobile Cloud middleware, multicloud tenancies, Organizations, PDP, PGP, policy, Policy Based Governance, policy-based governance, pubcrawl, security, security criteria regulation, security criteria regulation middleware, security of data, Web service governance, web services |
| Abstract | In the multi-cloud tenancy environments, Web Service offers an standard approach for discovering and using capabilities in an environment that transcends ownership domains. This brings into concern the ownership and security related to Web Service governance. Our approach for this issue involves an ESB-integrated middleware for security criteria regulation on Clouds. It uses an attribute-based security policy model for the exhibition of assets consumers' security profiles and deducing service accessing decision. Assets represent computing power/functionality and information/data provided by entities. Experiments show the middleware to bring minor governance burdens on the hardware aspect, as well as better performance with colosum scaling property, dealing well with cumbersome policy files, which is probably the situation of complex composite service scenarios. |
| URL | https://ieeexplore.ieee.org/document/7977320/ |
| DOI | 10.1109/CIACT.2017.7977320 |
| Citation Key | su_security_2017 |
- Mobile Cloud middleware
- web services
- Web service governance
- security of data
- security criteria regulation middleware
- security criteria regulation
- security
- pubcrawl
- policy-based governance
- Policy Based Governance
- Policy
- PGP
- PDP
- Organizations
- multicloud tenancies
- asset consumer security profiles
- middleware
- ESB-integrated middleware
- cumbersome policy files
- computing power
- computing functionality
- computer architecture
- component
- complex composite service
- colosum scaling property
- collaboration
- Cloud Computing
- attribute-based security policy model
- attribute-based security policy