Information Flow Control for Secure Cloud Computing
View/ Open
Author
Bacon, Jean
Eyers, David
Singh, Jatinder
Papagiannis, Ioannis
Pietzuch, Peter
Published Version
https://doi.org/10.1109/TNSM.2013.122313.130423Metadata
Show full item recordCitation
Bacon, Jean, David Eyers, Thomas F. J.-M. Pasquier, Jatinder Singh, Ioannis Papagiannis, and Peter Pietzuch. 2014. “Information Flow Control for Secure Cloud Computing.” IEEE Transactions on Network and Service Management 11 (1) (March): 76–89. doi:10.1109/tnsm.2013.122313.130423.Abstract
Security concerns are widely seen as an obstacle to the adoption of cloud computing solutions. Information Flow Control (IFC) is a well understood Mandatory Access Control methodology. The earliest IFC models targeted security in a centralised environment, but decentralised forms of IFC have been designed and implemented, often within academic research projects. As a result, there is potential for decentralised IFC to achieve better cloud security than is available today.In this paper we describe the properties of cloud computing— Platform-as-a-Service clouds in particular—and review a range of IFC models and implementations to identify opportunities for using IFC within a cloud computing context. Since IFC security is linked to the data that it protects, both tenants and providers of cloud services can agree on security policy, in a manner that does not require them to understand and rely on the particulars of the cloud software stack in order to effect enforcement.
Index Terms—Cloud, data security, information flow, informa- tion flow control (IFC).
Terms of Use
This article is made available under the terms and conditions applicable to Other Posted Material, as set forth at http://nrs.harvard.edu/urn-3:HUL.InstRepos:dash.current.terms-of-use#LAACitable link to this page
http://nrs.harvard.edu/urn-3:HUL.InstRepos:37140362
Collections
- FAS Scholarly Articles [18292]
Contact administrator regarding this item (to report mistakes or request changes)