Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cloud Service Feature Driven Security Policies for Virtualized Infrastructures

Published

Author(s)

Ramaswamy Chandramouli

Abstract

With the increasing maturity of various cloud service delivery models (Software as a Service (SaaS), Platform as a Service (PaaS), Infrastructure as a Service (IaaS)) and deployment models (Private, Community, Public, Hybrid), the security risk profile of each cloud service configuration is coming into focus. In this paper, we take up the example of a Public Infrastructure as a Service (Iaas) cloud provider who provides storage and computing services through a data center with a virtualized infrastructure. In order to provide the needed security assurance for its IaaS cloud offering, the cloud provider needs to implement various security measures as part of the infrastructure configuration. A precursor to developing security measures is a comprehensive security policy. Now these policies are directly related to the features and functions that the IaaS cloud provider provides as part of its offering. The focus of this paper is to illustrate an approach for derivation of security policies for the virtualized infrastructure used by an IaaS cloud provider based on its service feature set.
Proceedings Title
World Multi-Conference on Systemics, Cybernetics and Informatics 2011 (WMSCI 2011)
Conference Dates
July 19-22, 2011
Conference Location
Orlando, FL

Keywords

cloud computing, Infrastructure as a Service, public cloud, security policy

Citation

Chandramouli, R. (2011), Cloud Service Feature Driven Security Policies for Virtualized Infrastructures, World Multi-Conference on Systemics, Cybernetics and Informatics 2011 (WMSCI 2011), Orlando, FL (Accessed May 19, 2024)

Issues

If you have any questions about this publication or are having problems accessing it, please contact reflib@nist.gov.

Created July 19, 2011, Updated February 19, 2017