CYCLONE presented a poster EGI2017 Conference and INDIGO DataCloud Summit 2017 in Catania, Italy
CYCLONE presented a poster titled “Intercloud Security Framework and Architecture Components for Multi-Cloud Data Intensive Applications”, EGI2017 Conference and INDIGO DataCloud Summit 2017 on 9-12 May 2017 in Catania, Italy.
The EGI Conferences are important event for connecting with the European research community and European and national cloud and data infrastructure operators. This year event joined two big European projects and initiatives EGI and INDIGO DataCloud what allowed the CYCLONE project to effectively promote the CYCLONE platform for both infrastructure operators and research application developers.
Poster abstract is published on the event website at https://indico.egi.eu/indico/event/3249/contribution/171.
This paper presents results of the ongoing development of the Intercloud Security Framework (ICSF), that is a part of the Intercloud Architecture Framework (ICAF), and provides an architectural basis for building security infrastructure services for multi-cloud applications. The paper refers to general use case of the data intensive applications that indicate need for multi-cloud applications platforms that will require corresponding multi-cloud security services. The paper presents analysis of the general multi-cloud use case that helps eliciting the general requirement to ICSF and identifying the security infrastructure functional components that would allow using distributed cloud based resources and data sets. The paper defines the main ICSF services and functional components, and explains importance of consistent implementation of the Security Services Lifecycle Management in cloud based applications. The paper provides overview of the cloud compliance standards and their role in cloud security. The paper refers to the security infrastructure development in the CYCLONE project that implements federated identify management, secure logging service, and multi-domain Attribute Based Access Control, security services lifecycle management. The paper discusses implementation of the Trust Bootstrapping Protocol as an important mechanism to ensure consistent security in the virtualised inter-cloud environment.