Contents Intro.

Cloud computing provides many advantages for both the cloud service provider and the clients. It is also infamous for being highly dynamic and for having numerous security issues. The dynamicity of cloud computing implies that dynamic security mechanisms are being employed to enforce its security, especially in regards to access decisions. However, this is surprisingly not the case. Static traditional authorization mechanisms are being used in cloud environments, leading to legitimate doubts on their ability to fulfill the security needs of the cloud. I propose a Risk-Adaptive Authorization Mechnanism (RAdAM) for a simple cloud deployment, collaboration in cloud computing and federation in cloud computing. I use a fuzzy inference system to demonstrate the practicability of RAdAM. I complement RAdAM with a Vulnerability Based Authorization Mechanism (VBAM) which is a real-time authorization model based on the average vulnerability scores of the objects present in the cloud. Finally, i demonstrate the usefulness of VBAM in a case featuring OpenStack.

Details

Publication year

2016

Form

電子化映像資料(31分37秒)

Series title

情報科学研究科・ゼミナール講演 ; 平成28年度

Note

講演者所属: 奈良先端科学技術大学院大学情報科学研究科

講演日: 平成28年4月18日

講演場所: 情報科学研究科大講義室L1

Country of publication

Japan

Title language

English (eng)

Language of texts

English (eng)

Author information

Doudou, Fall