Multi-Layered Policy Generation and Management in Clouds

Fatemi Moghaddam, Faraz

by Faraz Fatemi Moghaddam

Doctoral thesis

Date of Examination:2017-12-12

Date of issue:2018-01-25

Advisor:Prof. Dr. Ramin Yahyapour

Referee:Prof. Dr. Ramin Yahyapour

Referee:Prof. Dr. Delphine Reinhardt

Persistent Address: http://dx.doi.org/10.53846/goediss-6694

Files in this item

Name: Thesis OP.pdf

Size:3.98Mb

Format:PDF

Description:Thesis

ViewOpen

The following license files are associated with this item:

Abstract

English

The long awaited Cloud computing concept is a reality now due to the transformation of computer generations. However, security challenges are most important obstacles for the advancement of this emerging technology. A well-established policy framework is defined in this thesis to generate security policies which are compliant to requirements and capabilities. Moreover, a federated policy management schema is introduced based on the policy definition framework and multi-level policy application to create and manage virtual clusters with identical or common security levels. The proposed model consists in the design of a well-established ontology according to security mechanisms, a procedure which classifies nodes with common policies into virtual clusters, a policy engine to enhance the process of mapping requests to specific node as well as associated cluster and matchmaker engine to eliminate inessential mapping processes. The suggested model has been evaluated according to performance and security parameters to prove the efficiency and reliability of this multi-layered engine in cloud computing environments during policy definition, application and mapping procedures.

Keywords: Cloud Computing+ Security+ Security Management+ Policy Management+ Access Control+ Policy Mapping+ Privacy+ Ontology

Statistik