Building a security reference architecture for cloud systems

被引:0
作者
Eduardo B. Fernandez
Raul Monge
Keiko Hashizume
机构
[1] Florida Atlantic University,Department of Computer and Electrical Engineering and Computer Science
[2] Universidad Técnica Federico Santa María,Departament of Informatics
来源
Requirements Engineering | 2016年 / 21卷
关键词
Security reference architecture; Security patterns ; Reference architecture; Security requirements; Secure software development; Cloud computing; IaaS security;
D O I
暂无
中图分类号
学科分类号
摘要
Reference architectures (RAs) are useful tools to understand and build complex systems, and many cloud providers and software product vendors have developed versions of them. RAs describe at an abstract level (no implementation details) the main features of their cloud systems. Security is a fundamental concern in clouds and several cloud vendors provide security reference architectures (SRAs) to describe the security features of their services. A SRA is an abstract architecture describing a conceptual model of security for a cloud system and provides a way to specify security requirements for a wide range of concrete architectures. We propose here a method to build a SRA for clouds defined using UML models and patterns, which goes beyond existing models in providing a global view and a more precise description. We present a metamodel as well as security and misuse patterns for this purpose. We validate our approach by showing that it can describe more precisely existing models and that it has a variety of uses. We describe in detail one of these uses, a way of evaluating the security level of a SRA.
引用
收藏
页码:225 / 249
页数:24
相关论文
共 26 条
[21]  
Fernández EB(undefined)undefined undefined undefined undefined-undefined
[22]  
Ajaj O(undefined)undefined undefined undefined undefined-undefined
[23]  
Buckley I(undefined)undefined undefined undefined undefined-undefined
[24]  
Delessy-Gassant N(undefined)undefined undefined undefined undefined-undefined
[25]  
Hashizume K(undefined)undefined undefined undefined undefined-undefined
[26]  
Larrondo-Petrie MM(undefined)undefined undefined undefined undefined-undefined