SLA-Based continuous security assurance in multi-cloud devops

Thumbnail Image
Files
SLA.pdf (375.4 KB)
Identifiers
ISSN: 1613-0073
Publication date
2017
Authors
Advisors
Journal Title
Journal ISSN
Volume Title
Publisher
Citations
Google Scholar
Export
Research Projects
Organizational Units
Journal Issue
Abstract
Multi-cloud applications, i.e.Those that are deployed over multiple independent Cloud providers, pose a number of challenges to the security-Aware development and operation. Security assurance in such applications is hard due to the lack of insights of security controls ap-plied by Cloud providers and the need of controlling the security levels of all the components and layers at a time. This paper presents the MUSA approach to Service Level Agreement (SLA)-based continuous security assurance in multi-cloud applications. The paper details the proposed model for capturing the security controls in the offered application Se-curity SLA and the approach to continuously monitor and asses the controls at operation phase. This new approach enables to easily align development security requirements with controls monitored at operation as well as early react at operation to any possible security incident or SLA violation.
Description
Publisher Copyright: © 2017 by the paper's authors.
Keywords
Cloud security controls , Cloud security SLA , Multi-cloud monitoring , Multi-cloud security , Security assurance , Security in DevOps , General Computer Science , Project ID , info:eu-repo/grantAgreement/EC/H2020/644429/EU/MUlti-cloud Secure Applications/MUSA , info:eu-repo/grantAgreement/EC/H2020/644429/EU/MUlti-cloud Secure Applications/MUSA , Funding Info , The MUSA project leading to this paper has received funding from the European Union's Horizon 2020 research and innovation programme under grant agreement No. 644429. , The MUSA project leading to this paper has received funding from the European Union's Horizon 2020 research and innovation programme under grant agreement No. 644429.
Type
conference output
Citation
Rios , E , Rak , M , Iturbe , E & Mallouli , W 2017 , ' SLA-Based continuous security assurance in multi-cloud devops ' , CEUR Workshop Proceedings , vol. 1977 , pp. 50-68 .