A multi-layered policy generation and management engine for semantic policy mapping in clouds
The long awaited cloud computing concept is a reality now due to the transformation of computer generations. However, security challenges have become the biggest obstacles for the advancement of this emerging technology. A well-established policy framework is defined in this paper to generate securi...
| Main Authors: | , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
KeAi Communications Co., Ltd.
2020-02-01
|
| Series: | Digital Communications and Networks |
| Online Access: | http://www.sciencedirect.com/science/article/pii/S2352864817301931 |
| _version_ | 1818658070271623168 |
|---|---|
| author | Faraz Fatemi Moghaddam Philipp Wieder Ramin Yahyapour |
| author_facet | Faraz Fatemi Moghaddam Philipp Wieder Ramin Yahyapour |
| author_sort | Faraz Fatemi Moghaddam |
| collection | DOAJ |
| description | The long awaited cloud computing concept is a reality now due to the transformation of computer generations. However, security challenges have become the biggest obstacles for the advancement of this emerging technology. A well-established policy framework is defined in this paper to generate security policies which are compliant to requirements and capabilities. Moreover, a federated policy management schema is introduced based on the policy definition framework and a multi-level policy application to create and manage virtual clusters with identical or common security levels. The proposed model consists in the design of a well-established ontology according to security mechanisms, a procedure which classifies nodes with common policies into virtual clusters, a policy engine to enhance the process of mapping requests to a specific node as well as an associated cluster and matchmaker engine to eliminate inessential mapping processes. The suggested model has been evaluated according to performance and security parameters to prove the efficiency and reliability of this multi-layered engine in cloud computing environments during policy definition, application and mapping procedures. Keywords: Cloud computing, Security, Security management, Policy management, Access control, Policy mapping |
| first_indexed | 2024-12-17T03:51:31Z |
| format | Article |
| id | doaj.art-ad5fcf4b1bd8456baa15ccc21ddd4662 |
| institution | Directory Open Access Journal |
| issn | 2352-8648 |
| language | English |
| last_indexed | 2024-12-17T03:51:31Z |
| publishDate | 2020-02-01 |
| publisher | KeAi Communications Co., Ltd. |
| record_format | Article |
| series | Digital Communications and Networks |
| spelling | doaj.art-ad5fcf4b1bd8456baa15ccc21ddd46622022-12-21T22:04:45ZengKeAi Communications Co., Ltd.Digital Communications and Networks2352-86482020-02-01613850A multi-layered policy generation and management engine for semantic policy mapping in cloudsFaraz Fatemi Moghaddam0Philipp Wieder1Ramin Yahyapour2Gesellschaft für wissenschaftliche Datenverarbeitung mbH Göttingen (GWDG), Germany; Institute of Informatics, Georg-August-Universität, Göttingen, Germany; Corresponding author.Gesellschaft für wissenschaftliche Datenverarbeitung mbH Göttingen (GWDG), GermanyGesellschaft für wissenschaftliche Datenverarbeitung mbH Göttingen (GWDG), Germany; Institute of Informatics, Georg-August-Universität, Göttingen, GermanyThe long awaited cloud computing concept is a reality now due to the transformation of computer generations. However, security challenges have become the biggest obstacles for the advancement of this emerging technology. A well-established policy framework is defined in this paper to generate security policies which are compliant to requirements and capabilities. Moreover, a federated policy management schema is introduced based on the policy definition framework and a multi-level policy application to create and manage virtual clusters with identical or common security levels. The proposed model consists in the design of a well-established ontology according to security mechanisms, a procedure which classifies nodes with common policies into virtual clusters, a policy engine to enhance the process of mapping requests to a specific node as well as an associated cluster and matchmaker engine to eliminate inessential mapping processes. The suggested model has been evaluated according to performance and security parameters to prove the efficiency and reliability of this multi-layered engine in cloud computing environments during policy definition, application and mapping procedures. Keywords: Cloud computing, Security, Security management, Policy management, Access control, Policy mappinghttp://www.sciencedirect.com/science/article/pii/S2352864817301931 |
| spellingShingle | Faraz Fatemi Moghaddam Philipp Wieder Ramin Yahyapour A multi-layered policy generation and management engine for semantic policy mapping in clouds Digital Communications and Networks |
| title | A multi-layered policy generation and management engine for semantic policy mapping in clouds |
| title_full | A multi-layered policy generation and management engine for semantic policy mapping in clouds |
| title_fullStr | A multi-layered policy generation and management engine for semantic policy mapping in clouds |
| title_full_unstemmed | A multi-layered policy generation and management engine for semantic policy mapping in clouds |
| title_short | A multi-layered policy generation and management engine for semantic policy mapping in clouds |
| title_sort | multi layered policy generation and management engine for semantic policy mapping in clouds |
| url | http://www.sciencedirect.com/science/article/pii/S2352864817301931 |
| work_keys_str_mv | AT farazfatemimoghaddam amultilayeredpolicygenerationandmanagementengineforsemanticpolicymappinginclouds AT philippwieder amultilayeredpolicygenerationandmanagementengineforsemanticpolicymappinginclouds AT raminyahyapour amultilayeredpolicygenerationandmanagementengineforsemanticpolicymappinginclouds AT farazfatemimoghaddam multilayeredpolicygenerationandmanagementengineforsemanticpolicymappinginclouds AT philippwieder multilayeredpolicygenerationandmanagementengineforsemanticpolicymappinginclouds AT raminyahyapour multilayeredpolicygenerationandmanagementengineforsemanticpolicymappinginclouds |