Multi-Layered Policy Generation and Management in Clouds
by Faraz Fatemi Moghaddam
Date of Examination:2017-12-12
Date of issue:2018-01-25
Advisor:Prof. Dr. Ramin Yahyapour
Referee:Prof. Dr. Ramin Yahyapour
Referee:Prof. Dr. Delphine Reinhardt
Files in this item
Name: Thesis OP.pdf
Size:3.98Mb
Format:PDF
Description:Thesis
Abstract
English
The long awaited Cloud computing concept is a reality now due to the transformation of computer generations. However, security challenges are most important obstacles for the advancement of this emerging technology. A well-established policy framework is defined in this thesis to generate security policies which are compliant to requirements and capabilities. Moreover, a federated policy management schema is introduced based on the policy definition framework and multi-level policy application to create and manage virtual clusters with identical or common security levels. The proposed model consists in the design of a well-established ontology according to security mechanisms, a procedure which classifies nodes with common policies into virtual clusters, a policy engine to enhance the process of mapping requests to specific node as well as associated cluster and matchmaker engine to eliminate inessential mapping processes. The suggested model has been evaluated according to performance and security parameters to prove the efficiency and reliability of this multi-layered engine in cloud computing environments during policy definition, application and mapping procedures.
Keywords: Cloud Computing+ Security+ Security Management+ Policy Management+ Access Control+ Policy Mapping+ Privacy+ Ontology