Security assurance provides a wealth of techniques to demonstrate that a target system holds some nonfunctional properties and behaves as expected. These techniques have been recently applied to the cloud ecosystem, while encountering some critical issues that reduced their benefit when hybrid systems, mixing public and private infrastructures, are considered. In this paper, we present a new assurance framework that evaluates the trustworthiness of hybrid systems, from traditional private networks to public clouds. It implements an assurance process that relies on a Virtual Private Network (VPN)-based solution to smoothly integrate with the target systems. The assurance process provides a transparent and non-invasive solution that does not interfere with the working of the target system. The performance of the framework have been experimentally evaluated in a simulated scenario.
Stay Thrifty, Stay Secure: A VPN-based Assurance Framework for Hybrid Systems / E. Damiani, N. Bena, C. Ardagna, M. Anisetti - In: Proceedings of the 17th International Joint Conference on e-Business and Telecommunications. 3 / [a cura di] P. Samarati, S. De Capitani di Vimercati, M. Obaidat, J. Ben-Othman. - [s.l] : ScitePress, 2020. - ISBN 9789897584466. - pp. 98-109 (( Intervento presentato al 17. convegno International Conference on Security and Cryptography nel 2020 [10.5220/0009822600980109].
Stay Thrifty, Stay Secure: A VPN-based Assurance Framework for Hybrid Systems
E. Damiani;N. Bena;C. Ardagna;M. Anisetti
2020
Abstract
Security assurance provides a wealth of techniques to demonstrate that a target system holds some nonfunctional properties and behaves as expected. These techniques have been recently applied to the cloud ecosystem, while encountering some critical issues that reduced their benefit when hybrid systems, mixing public and private infrastructures, are considered. In this paper, we present a new assurance framework that evaluates the trustworthiness of hybrid systems, from traditional private networks to public clouds. It implements an assurance process that relies on a Virtual Private Network (VPN)-based solution to smoothly integrate with the target systems. The assurance process provides a transparent and non-invasive solution that does not interfere with the working of the target system. The performance of the framework have been experimentally evaluated in a simulated scenario.
| File | Dimensione | Formato | |
|---|---|---|---|
|
main.pdf
accesso aperto
Tipologia:
Publisher's version/PDF
Dimensione
406.7 kB
Formato
Adobe PDF
|
406.7 kB | Adobe PDF | Visualizza/Apri |
Pubblicazioni consigliate
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
