RT Conference Proceedings
T1 SLA-Based continuous security assurance in multi-cloud devops
A1 Rios, Erkuden
A1 Rak, Massimiliano
A1 Iturbe, Eider
A1 Mallouli, Wissam
AB Multi-cloud applications, i.e.Those that are deployed over multiple independent Cloud providers, pose a number of challenges to the security-Aware development and operation. Security assurance in such applications is hard due to the lack of insights of security controls ap-plied by Cloud providers and the need of controlling the security levels of all the components and layers at a time. This paper presents the MUSA approach to Service Level Agreement (SLA)-based continuous security assurance in multi-cloud applications. The paper details the proposed model for capturing the security controls in the offered application Se-curity SLA and the approach to continuously monitor and asses the controls at operation phase. This new approach enables to easily align development security requirements with controls monitored at operation as well as early react at operation to any possible security incident or SLA violation.
SN 1613-0073
YR 2017
FD 2017
LA eng
NO Rios , E , Rak , M , Iturbe , E & Mallouli , W 2017 , ' SLA-Based continuous security assurance in multi-cloud devops ' , CEUR Workshop Proceedings , vol. 1977 , pp. 50-68 .
NO Publisher Copyright: © 2017 by the paper's authors.
NO The MUSA project leading to this paper has received funding from the European Union’s Horizon 2020 research and innovation programme under grant agreement No 644429. We would also like to acknowledge all the Consortium for their valuable help.
DS TECNALIA Publications
RD 3 jul 2024