Secure cloud multi-tenant applications with cache in PaaS

Abstract

Multi-tenant applications come into existence in clouds, which aims “better resource utilization” for application provider. Today most of the present application optimizations are based on Service Level Agreements which focuses on virtual machine (VM) based computing service, while other services such as storage and cache are often neglected. This paper mainly focuses on cache based approach for multi-tenant application on PaaS. Currently in multi-tenant cloud applications data are often evicted mistakenly by cache service, which is managed by existing algorithms such as LRU. It keeps the query information to reload the evicted data from storage which might be sensitive. Hence there is a possibility of data breach when these data are accessed improperly by other tenants. For faster access caching of the data is common in cloud based applications while the security is an important area that should not be neglected when these systems uses other third party systems/networks as caching servers. Also security of the tenant’s data/information is also a crucial component of the SLA between cloud service provider and tenant. So this paper proposes a DES based information security framework within Platform as a Service (PaaS) for better security and Quality of Service (QoS).